Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

FW: Windows scan localhost in version 6

From: Larry P <saaz2 () hotmail com>
Date: Wed, 14 Nov 2012 08:48:11 -0500
Yes it looks like a tcp connect scan works.  I'm pretty sure that in general that I did not get accurate results in my 
environment unless I ran a syn scan. 

In this particular case though the primary purpose of this scan is to gather the mac addresses for all devices on the 
local subnet.  I have this running on about 100 subnets for change detection.  A connect scan does not return the 
target mac address as far as I can tell so I need to run a syn.  There certainly are a dozen ways to get my own mac 
address, but consistency and simplicity are key.


From: gvanem () broadpark no
To: nmap-dev () insecure org
Subject: Re: Windows scan localhost in version 6
Date: Wed, 14 Nov 2012 12:33:56 +0100

"Larry P" <saaz2 () hotmail com> wrote:


I have been using the source spoof technique in attached link to 
scan the localhost for awhile now. When I upgraded to version 6 on 
Nmap this no longer works for me,


Why do you need to spoof anything to figure out open ports
on localhost? Normal '-sT' scan works fine here:

nmap -P0 -sT -p7,9,13,80,135 localhost

Starting Nmap 6.02 ( http://nmap.org ) at 2012-11-14 11:25 CET
Nmap scan report for localhost (127.0.0.1)
Host is up (0.00s latency).
PORT    STATE    SERVICE
7/tcp   open     echo
9/tcp   open     discard
13/tcp  open     daytime
80/tcp  filtered http
135/tcp open     msrpc

--gv
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

                                          
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: