1, to detect whether the specified network segment FTP service host, do not do DNS reverse analysis<\/p>\n
nmap -sS \u2013n \u2013p 21 192.168.0.0\/24
\n2, to detect whether the specified server has a specific port services<\/p>\n
nmap \u2013n \u2013p T:21-25,80,110,3389\u2013sS 192.168.0.1<\/p>\n
3, the use of TCP connection scan to detect the specified server, even if it can not ping ? still continue to detect<\/p>\n
4, nmap -sT \u2013PO 192.168.0.1<\/p>\n
5, detect the specified server operating system type<\/p>\n
nmap \u2013O \u2013n 192.168.0.1<\/p>\n
6, the detection of local area network in which the mainframe to open the service<\/p>\n
nmap \u2013sS 192.168.0.0\/24<\/p>\n
7, detection 192.168.0.0 and 172.16.0.0\/16 network which are running in the host<\/p>\n
nmap \u2013sP \u2013n 192.168.0.0\/24 172.16.0.0\/16
\n8, fast scan host open port<\/p>\n
Nmap -F 192.168.0.1<\/p>\n
1, intercepted eth0 card 10 times to send and receive all the data packets and packet capture results will be saved to the test file, and then read test packet results file<\/p>\n
Tcpdump -i eth0 -c 10 -w test<\/p>\n
Tcpdump -r test<\/p>\n
2, intercepted to access all the packets at port 80 (port range specified port port 1-1024)<\/p>\n
Tcpdump port 80<\/p>\n
3, intercept all from the host 192.168.1.100 access to all data packets<\/p>\n
Tcpdump host 192.168.1.100<\/p>\n
4, intercepted ip packet source address is 192.168.1.100 (the purpose is dst)<\/p>\n
Tcpdump src 192.168.1.100<\/p>\n
5, intercept host 192.168.1.100 and host 192.168.1.102 communication<\/p>\n
Tcpdump host 192.168.1.100 and 192.168.1.102<\/p>\n
6, intercepted tcp protocol and the source address 192.168.1.100 to access the port 80<\/p>\n
Tcpdump tcp and src 192.168.1.100 and port 80<\/p>\n
7, intercept host 192.168.1.100 addition and 192.168.1.102 addition to all ip packets<\/p>\n
Tcpdump ip host 192.168.1.100 and! 192.168.1.102<\/p>\n
8, intercept length greater than 1000 packets, for DDOS attacks, you can use<\/p>\n
Tcpdump -i eth0 greater 1000<\/p>\n","protected":false},"excerpt":{"rendered":"
1, to detect whether the specified network segment FTP service host, do not do DNS reverse analysis<\/p>\n
nmap -sS \u2013n \u2013p 21 192.168.0.0\/24 2, to detect whether the specified server has a specific port services<\/p>\n
nmap \u2013n \u2013p T:21-25,80,110,3389\u2013sS 192.168.0.1<\/p>\n
3, the use of TCP connection scan to detect the specified server, even if it […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[17],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6651"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6651"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6651\/revisions"}],"predecessor-version":[{"id":6652,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6651\/revisions\/6652"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6651"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6651"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6651"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}