Re: Scan until open port is found

["Hans Nilsson" <hasse_gg () ftml net>]

Ok, thanks. I did know about that option. But unfortunately you can't
do:

sudo nmap -sP -PS22-200 hostname

and doing 

sudo nmap -sP -PS1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 hostname
etc.

is tedious. Also how can I make Nmap wait one second between each packet
sent? Even with scan-delay 2s it sends the two first packets the exact
same time. max-parallelism doesn't help either and I can't use it with
scan-delay even though it says so in the manual.

On Sat, 11 Nov 2006 12:45:25 +0100, "Diman Todorov"
<diman.todorov () chello at> said:
> On 10.11.2006, at 10:54, Hans Nilsson wrote:
>
> > Hello! Is there any way to just scan until one open port is found and
> > then stop?
>
> Yes there is a way:
> sudo nmap -sP -PS22,80,113 hostname
>
> This will send SYN packets to all three ports and will stop if any of  
> the ports replies with a SYN/ACK. Alternatively you can use -PA which  
> will do a three way handshake. If you want to know which port was  
> open you need to use --packet-trace (at least until the --reason  
> project is incorporated into the nmap core)
>
> cheers
> Diman
-- 
  Hans Nilsson
  hasse_gg () ftml net

-- 
http://www.fastmail.fm - Access all of your messages and folders
                          wherever you are


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org