First, let’s determine what hosts had port 80 open according to Nmap. msf > search portscanĪuxiliary/scanner/natpmp/natpmp_portscan normal NAT-PMP External Port ScannerĪuxiliary/scanner/portscan/ack normal TCP ACK Firewall ScannerĪuxiliary/scanner/portscan/ftpbounce normal FTP Bounce Port ScannerĪuxiliary/scanner/portscan/syn normal TCP SYN Port ScannerĪuxiliary/scanner/portscan/tcp normal TCP Port ScannerĪuxiliary/scanner/portscan/xmas normal TCP "XMas" Port Scannerįor the sake of comparison, we’ll compare our Nmap scan results for port 80 with a Metasploit scanning module. In addition to running Nmap, there are a variety of other port scanners that are available to us within the framework. Nmap done: 256 IP addresses (16 hosts up) scanned in 499.41 seconds The example below would then be db_nmap -v -sV 192.168.1.0/24.
If we wished for our scan to be saved to our database, we would omit the output flag and use db_nmap. Run Nmap with the options you would normally use from the command line. So we can run the Nmap scan using the -oA flag followed by the desired filename to generate the three output files, then issue the db_import command to populate the Metasploit database. It is always nice to have all three Nmap outputs (xml, grepable, and normal). However, if you also wish to import the scan results into another application or framework later on, you will likely want to export the scan results in XML format. We can use the db_nmap command to run Nmap against our targets and our scan results would than be stored automatically in our database. Security Operations for Beginners (SOC-100).Exploit Development Prerequisites (EXP-100).
0 kommentar(er)
