nmap 端口扫描 · PHP/Python/前端/Linux 等等学习笔记

[TOC] ## 概述 ``` nmap -T4 -A -v -Pn IP #最常用的一种扫描 -T4 #设置时序，越高扫描越快 -A #启用操作系统检测，版本检测，脚本扫描和跟踪路由 -v #增加详细级别（使用-vv或更高级别以获得更好的效果） -Pn #无ping扫描 ``` ## 示例 ### 扫描单个IP ``` root@localhost ~]# nmap 192.168.0.57 Starting Nmap 6.40 ( http://nmap.org ) at 2023-09-27 17:10 CST Nmap scan report for 192.168.0.57 Host is up (0.0000020s latency). Not shown: 985 closed ports PORT STATE SERVICE 22/tcp open ssh 3306/tcp open mysql 5432/tcp open postgresql 5500/tcp open hotline 5901/tcp open vnc-1 6666/tcp open irc 6667/tcp open irc 6668/tcp open irc 6669/tcp open irc 8000/tcp open http-alt 8001/tcp open vcom-tunnel 8081/tcp open blackice-icecap 8082/tcp filtered blackice-alerts 8083/tcp filtered us-srv 8084/tcp filtered unknown Nmap done: 1 IP address (1 host up) scanned in 2.66 seconds ``` ### 扫描主机范围 ``` nmap 192.168.0.1-50 ``` ### 扫描特定端口范围 ``` nmap -p 80-100 192.168.0.50 ```