一、背景介绍

nmap是一个网络连接端扫描软件,用来扫描网上电脑开放的网络连接端。确定哪些服务运行在哪些连接端,并且推断计算机运行哪个操作系统(这是亦称 fingerprinting)。它是网络管理员必用的软件之一,以及用以评估网络系统安全。

Nmap is a network connection scanning software, used to scan the open network connection of computers on the network. Determine which services are running on which connections, and infer which operating system the computer is running on (this is also called fingerprinting). It is a network administrator must use one of the software, and to evaluate the network system security.

正如大多数被用于网络安全的工具,nmap也是不少黑客及骇客(又称脚本小子)爱用的工具 。系统管理员可以利用nmap来探测工作环境中未经批准使用的服务器,但是黑客会利用nmap来搜集目标电脑的网络设定,从而计划攻击的方法。

Like most of the tools used for network security, nmap is a favorite tool of many hackers and crackers (aka scripting kids). System administrators can use NMap to detect unapproved servers in their work environments, but hackers can use NMap to gather information about the network Settings of target computers to plan attacks.

Nmap常被跟评估系统漏洞软件Nessus混为一谈。Nmap以隐秘的手法,避开闯入检测系统的监视,并尽可能不影响目标系统的日常操作。

NMAP is often confused with Nessus, the software that evaluates system vulnerabilities.NMAP uses stealth methods to avoid intrusion detection system monitoring and does not affect the daily operation of the target system as much as possible.

二、资源装备

1.安装好Kali Linux的虚拟机一台;
2.整装待发的小白一个。

  1. Install a virtual machine of Kali Linux;
  2. You're ready to go.

三、战略安排

3.1 nmap基本语法使用查看

命令:nmap --help

用Nmap探测目标主机操作系统类型 (Probe the target host operating system type with Nmap)

3.2 主机操作系统探测帮助信息

-O:Enable os detection
对主机操作系统进行探测。
--osscan-guess:Guess os more aggressively
对主机操作系统进行模糊探测
优点:对主机操作系统探测结果给出更多的可能性;
缺点:追求速度使得扫描结果的准确性降低。

用Nmap探测目标主机操作系统类型 (Probe the target host operating system type with Nmap)

3.3 实战扫描

3.3.1 扫描目标主机信息

          
      命令:nmap -O 192.168.1.30
      扫描结果:
      Host is up:表示该主机存活
      Running:主机操作系统信息
      Os  details:操作系统信息
      Network Distance:网络距离(以跳为单位)

用Nmap探测目标主机操作系统类型 (Probe the target host operating system type with Nmap)

3.3.2 不同的系统查看系统内核信息的命令

    Linux系统:uname -a
    Windows系统:systeminfo

用Nmap探测目标主机操作系统类型 (Probe the target host operating system type with Nmap)
用Nmap探测目标主机操作系统类型 (Probe the target host operating system type with Nmap)