对于很多安全爱好者来说,在linux下面扫描远程计算机,给别人做安全评估的时候.新手容易迷糊,偶去哪里找工具啊?别担心,人家自带了,而且功能还不是一般的强.推荐Nmap.

 

[root@localhost ~]# Nmap -sS -vv -P0 www.sina.com.cn

Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2007-01-15 10:43 CST
Initiating SYN Stealth Scan against 202.108.33.32 [1660 ports] at 10:43
Discovered open port 80/tcp on 202.108.33.32
The SYN Stealth Scan took 3.01s to scan 1660 total ports.
Host 202.108.33.32 appears to be up ... good.
Interesting ports on 202.108.33.32:
(The 1657 ports scanned but not shown below are in state: closed)
PORT    STATE    SERVICE
22/tcp  filtered ssh
80/tcp  open     http
161/tcp filtered snmp

 

看不懂的同学有没?解释一下,上面扫描了www.sina.com.cn这个站点,看看开放了哪些端口.结果是只开放了22,80,161....(防护很严密)

 

Nmap -sS -vv -P0 www.sina.com.cn -p 1-65535

这个命令是全面扫描,很费时间.偶就不实验了.....谢谢观赏.