Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

No information on open ( Fake) ports

From: skynetonsecurity () gmail com
Date: 19 Sep 2008 09:12:25 -0000
Hi all,

While conducting pentest I found nmap giving some open ports with -sS scan & -sV scan giving status open|filtered. But 
when I tried to telnet the ports for banner, I was not able gather any information timeout happened.

I think this is because of IPtables with tarpit or kernal hardning?

what could be the other reasons for this?

scan result as follows for -sS:

22/tcp    open     
23/tcp    open     
25/tcp    open  
42/tcp    open     
53/tcp    open     
57/tcp    open     
68/tcp    open     
80/tcp    open     
88/tcp    open     
98/tcp    open     
110/tcp   open     
111/tcp   open     
135/tcp   filtered 
137/tcp   filtered 
138/tcp   filtered 
139/tcp   filtered 
143/tcp   open     
389/tcp   open     
443/tcp   open     
445/tcp   filtered 
464/tcp   open     
522/tcp   open     
563/tcp   open     
593/tcp   filtered 
636/tcp   open     
999/tcp   open     
1023/tcp  filtered 

& for -Sv


22/tcp    open     tcpwrapped
23/tcp    open     tcpwrapped
25/tcp    open     tcpwrapped
42/tcp    open     tcpwrapped
53/tcp    open     tcpwrapped
57/tcp    open     tcpwrapped
68/tcp    open     tcpwrapped
80/tcp    open     tcpwrapped
88/tcp    open     tcpwrapped
98/tcp    open     tcpwrapped
110/tcp   open     tcpwrapped
111/tcp   open     tcpwrapped
113/tcp   open     tcpwrapped
119/tcp   open     tcpwrapped
135/tcp   filtered msrpc
137/tcp   filtered netbios-ns
138/tcp   filtered netbios-dgm
139/tcp   filtered netbios-ssn
143/tcp   open     tcpwrapped
389/tcp   open     tcpwrapped
443/tcp   open     tcpwrapped
445/tcp   filtered microsoft-ds
464/tcp   open     tcpwrapped
522/tcp   open     tcpwrapped
543/tcp   open     tcpwrapped
563/tcp   open     tcpwrapped
593/tcp   filtered http-rpc-epmap
636/tcp   open     tcpwrapped


Thanx in advance

Em see


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: