nmap常用参数详解
作者:尹正杰
版权声明:原创作品,谢绝转载!否则将追究法律责任。
借用英雄联盟的一个英雄赵信的一句话:“即使敌众我寡,末将亦能万军丛中取敌将首级!”。三国关羽,万军丛中斩了颜良,枭首而还。我打一个比方啊,如果攻击一台服务器,做为一名优秀的黑客是拿着菜刀去把服务器的电源线切断就叫攻击服务器吗?很显然并不是。先说明,黑一个商业站点不是一两个软件就可以保证成功的,也不是一天两天的“黑客”技术学习就可以做到的。如果以上两点都不成,不要讲“黑”了。有钱的话请人来黑吧。
告诉你三点入侵前要做到的事情。如果你都可以完成,再谈具体的吧:
1>.取得对方IP,获取对方OS类型,所打过的安全补丁,以及运行的服务程序;
2>.针对上面的情况,扫描其漏洞;
3>.分析所得到的情报,找出可以利用的漏洞,再进行入侵;
总之,想黑人家的服务器,得具有比对方的网管更加利害的网络技术及应对复杂情况的能力。否则,是黑不到人的哟~
今天我要给大家推荐一款很牛逼的软件,即Nmap。我推荐这个软件的目的是为了工作的方便,而不是为了让你去一些坏事情。所谓道高一尺魔高一丈,你如果能够战胜自己的心魔就会做一些正义的事情!所以,我们不能怪一些软件功能太逆天了,而是取决于使用该软件的人。
一.什么是Nmap
Nmap是一款网络扫描和主机检测的非常有用的工具。Nmap是不局限于仅仅收集信息和枚举,同时可以用来作为一个漏洞探测器或安全扫描器。它可以适用于winodws,linux,mac等操作系统。本篇博客针对linux操作系统进行解说。
二.安装Nmap
[root@yinzhengjie ~]# yum -y install nmap
三.Nmap的常用姿势
1.扫描单一的一个主机
#!/bin/bash
#@author :yinzhengjie
#Blog:http://www.cnblogs.com/yinzhengjie
#EMAIL:y1053419035@qq.com [root@yinzhengjie ~]# nmap 172.16.96.133 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 12:16 CST
Nmap scan report for bogon (172.16.96.133)
Host is up (0.00060s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap done: 1 IP address (1 host up) scanned in 0.07 seconds
[root@yinzhengjie ~]#
2.扫描整个子网
[root@yinzhengjie ~]# nmap 172.16.96.1/24 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 13:12 CST
Nmap scan report for bogon (172.16.96.1)
Host is up (0.00073s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain
3306/tcp open mysql Nmap scan report for bogon (172.16.96.40)
Host is up (0.0014s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.53)
Host is up (0.00085s latency).
Not shown: 964 filtered ports, 32 closed ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
888/tcp open accessbuilder
8888/tcp open sun-answerbook Nmap scan report for bogon (172.16.96.60)
Host is up (0.00092s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49156/tcp open unknown
49158/tcp open unknown
49160/tcp open unknown
49161/tcp open unknown Nmap scan report for bogon (172.16.96.61)
Host is up (0.00079s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
3389/tcp open ms-term-serv
8009/tcp open ajp13
8080/tcp open http-proxy
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49159/tcp open unknown Nmap scan report for bogon (172.16.96.80)
Host is up (0.0012s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.90)
Host is up (0.0013s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
1720/tcp closed H.323/Q.931
8080/tcp closed http-proxy
9943/tcp open unknown
9944/tcp open unknown Nmap scan report for bogon (172.16.96.91)
Host is up (0.00095s latency).
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
8080/tcp closed http-proxy Nmap scan report for bogon (172.16.96.100)
Host is up (0.0016s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
5988/tcp open wbem-http
5989/tcp open wbem-https Nmap scan report for bogon (172.16.96.116)
Host is up (0.0012s latency).
Not shown: 985 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
593/tcp open http-rpc-epmap
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49157/tcp open unknown
49159/tcp open unknown
49160/tcp open unknown Nmap scan report for bogon (172.16.96.117)
Host is up (0.00097s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
1433/tcp open ms-sql-s
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49157/tcp open unknown
49999/tcp open unknown
50000/tcp open ibm-db2
50002/tcp open iiimsf Nmap scan report for bogon (172.16.96.119)
Host is up (0.00070s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
389/tcp open ldap
443/tcp open https
636/tcp open ldapssl
3306/tcp open mysql
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.121)
Host is up (0.00099s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
21/tcp open ftp
135/tcp open msrpc
139/tcp open netbios-ssn
1025/tcp open NFS-or-IIS
1433/tcp open ms-sql-s Nmap scan report for bogon (172.16.96.124)
Host is up (0.0017s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.125)
Host is up (0.00084s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.126)
Host is up (0.0014s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.127)
Host is up (0.0011s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.128)
Host is up (0.00092s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.129)
Host is up (0.00092s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.130)
Host is up (0.0016s latency).
Not shown: 993 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
912/tcp open apex-mesh
1026/tcp open LSA-or-nterm
1044/tcp open dcutility
3389/tcp open ms-term-serv Nmap scan report for bogon (172.16.96.131)
Host is up (0.0013s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy
8180/tcp open unknown Nmap scan report for bogon (172.16.96.133)
Host is up (0.0011s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap scan report for bogon (172.16.96.135)
Host is up (0.00082s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.136)
Host is up (0.00090s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.137)
Host is up (0.00093s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy
9200/tcp open wap-wsp Nmap scan report for bogon (172.16.96.138)
Host is up (0.00090s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.139)
Host is up (0.00096s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http Nmap scan report for bogon (172.16.96.140)
Host is up (0.00095s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.141)
Host is up (0.00091s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
3306/tcp open mysql Nmap scan report for bogon (172.16.96.143)
Host is up (0.0012s latency).
Not shown: 996 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp closed https
3306/tcp open mysql Nmap scan report for bogon (172.16.96.188)
Host is up (0.00058s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
1234/tcp open hotline
1521/tcp open oracle
2809/tcp open corbaloc
9100/tcp open jetdirect
32768/tcp open filenet-tms
32776/tcp open sometimes-rpc15 Nmap scan report for bogon (172.16.96.200)
Host is up (0.00089s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
80/tcp open http
81/tcp open hosts2-ns
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
1688/tcp open nsjtp-data
3389/tcp open ms-term-serv
4000/tcp open remoteanything
4001/tcp open newoak
8011/tcp open unknown
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49158/tcp open unknown Nmap scan report for bogon (172.16.96.205)
Host is up (0.00089s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.222)
Host is up (0.00085s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap scan report for bogon (172.16.96.235)
Host is up (0.00096s latency).
Not shown: 987 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1025/tcp open NFS-or-IIS
1026/tcp open LSA-or-nterm
1027/tcp open IIS
1074/tcp open warmspotMgmt
1433/tcp open ms-sql-s
2382/tcp open ms-olap3
3372/tcp open msdtc
5120/tcp open unknown
9001/tcp open tor-orport Nmap scan report for bogon (172.16.96.236)
Host is up (0.00076s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
443/tcp open https
8080/tcp open http-proxy
8088/tcp open radan-http
49154/tcp open unknown Nmap scan report for bogon (172.16.96.250)
Host is up (0.00079s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
5120/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown Nmap scan report for bogon (172.16.96.254)
Host is up (0.0016s latency).
Not shown: 989 closed ports
PORT STATE SERVICE
23/tcp open telnet
50300/tcp filtered unknown
50389/tcp filtered unknown
50500/tcp filtered unknown
50636/tcp filtered unknown
50800/tcp filtered unknown
51493/tcp filtered unknown
52673/tcp filtered unknown
52822/tcp filtered unknown
52848/tcp filtered unknown
52869/tcp filtered unknown Nmap done: 256 IP addresses (38 hosts up) scanned in 18.86 seconds
[root@yinzhengjie ~]#
[root@yinzhengjie ~]# nmap 172.16.96.1/24
3.扫描多个目标
直接跟需要扫描的目标IP就好,nmap后面跟多少个IP就会去扫描你手写的这些IP
#!/bin/bash
#@author :yinzhengjie
#Blog:http://www.cnblogs.com/yinzhengjie
#EMAIL:y1053419035@qq.com [root@yinzhengjie ~]# nmap 172.16.96.1 172.16.96.200 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 13:17 CST
Nmap scan report for bogon (172.16.96.1)
Host is up (0.00075s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain
3306/tcp open mysql Nmap scan report for bogon (172.16.96.200)
Host is up (0.00089s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
80/tcp open http
81/tcp open hosts2-ns
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
1688/tcp open nsjtp-data
3389/tcp open ms-term-serv
4000/tcp open remoteanything
4001/tcp open newoak
8011/tcp open unknown
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49158/tcp open unknown Nmap done: 2 IP addresses (2 hosts up) scanned in 1.28 seconds
[root@yinzhengjie ~]#
4.扫描一个范围内的目标
需要你指定起始范围,他只会在这个范围进行扫描。
#!/bin/bash
#@author :yinzhengjie
#Blog:http://www.cnblogs.com/yinzhengjie
#EMAIL:y1053419035@qq.com [root@yinzhengjie ~]# nmap 172.16.96.1-100 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 13:20 CST
Nmap scan report for bogon (172.16.96.1)
Host is up (0.0011s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain
3306/tcp open mysql Nmap scan report for bogon (172.16.96.40)
Host is up (0.0010s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.53)
Host is up (0.0011s latency).
Not shown: 964 filtered ports, 32 closed ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
888/tcp open accessbuilder
8888/tcp open sun-answerbook Nmap scan report for bogon (172.16.96.60)
Host is up (0.0012s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49156/tcp open unknown
49158/tcp open unknown
49160/tcp open unknown
49161/tcp open unknown Nmap scan report for bogon (172.16.96.61)
Host is up (0.00079s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
3389/tcp open ms-term-serv
8009/tcp open ajp13
8080/tcp open http-proxy
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49159/tcp open unknown Nmap scan report for bogon (172.16.96.80)
Host is up (0.0011s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.90)
Host is up (0.0012s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
1720/tcp closed H.323/Q.931
8080/tcp closed http-proxy
9943/tcp open unknown
9944/tcp open unknown Nmap scan report for bogon (172.16.96.91)
Host is up (0.0015s latency).
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
8080/tcp closed http-proxy Nmap scan report for bogon (172.16.96.100)
Host is up (0.0011s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
5988/tcp open wbem-http
5989/tcp open wbem-https Nmap done: 100 IP addresses (9 hosts up) scanned in 26.18 seconds
[root@yinzhengjie ~]#
5.如果你有一个ip地址列表,将这个保存为一个txt文件,和namp在同一目录下,扫描这个txt内的所有主机
#!/bin/bash
#@author :yinzhengjie
#Blog:http://www.cnblogs.com/yinzhengjie
#EMAIL:y1053419035@qq.com [root@yinzhengjie ~]# cat ip.txt
172.16.96.1
172.16.96.133
172.16.96.51
172.16.96.205
[root@yinzhengjie ~]#
[root@yinzhengjie ~]# nmap -iL ip.txt Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 13:36 CST
Nmap scan report for bogon (172.16.96.1)
Host is up (0.00065s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain
3306/tcp open mysql Nmap scan report for bogon (172.16.96.133)
Host is up (0.00070s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap scan report for bogon (172.16.96.205)
Host is up (0.00069s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap done: 4 IP addresses (3 hosts up) scanned in 1.44 seconds
[root@yinzhengjie ~]#
6.扫描除过某一个ip外的所有子网主机
[root@yinzhengjie ~]#
[root@yinzhengjie ~]# nmap 172.16.96.1/24-exclude 172.16.96.1 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 13:53 CST
Illegal netmask value, must be /0 - /32 . Assuming /32 (one host)
Nmap scan report for bogon (172.16.96.1)
Host is up (0.00060s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain
3306/tcp open mysql Nmap scan report for bogon (172.16.96.1)
Host is up (0.00044s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
53/tcp open domain
3306/tcp open mysql Nmap done: 2 IP addresses (2 hosts up) scanned in 0.10 seconds
[root@yinzhengjie ~]# nmap 172.16.96.1/24 -exclude 172.16.96.1 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 13:53 CST
Nmap scan report for bogon (172.16.96.40)
Host is up (0.00088s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.53)
Host is up (0.00089s latency).
Not shown: 964 filtered ports, 32 closed ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
888/tcp open accessbuilder
8888/tcp open sun-answerbook Nmap scan report for bogon (172.16.96.60)
Host is up (0.00067s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49156/tcp open unknown
49158/tcp open unknown
49160/tcp open unknown
49161/tcp open unknown Nmap scan report for bogon (172.16.96.61)
Host is up (0.00071s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
3389/tcp open ms-term-serv
8009/tcp open ajp13
8080/tcp open http-proxy
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49159/tcp open unknown Nmap scan report for bogon (172.16.96.80)
Host is up (0.0012s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.90)
Host is up (0.00093s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
1720/tcp closed H.323/Q.931
8080/tcp closed http-proxy
9943/tcp open unknown
9944/tcp open unknown Nmap scan report for bogon (172.16.96.91)
Host is up (0.00091s latency).
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
8080/tcp closed http-proxy Nmap scan report for bogon (172.16.96.100)
Host is up (0.00099s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
5988/tcp open wbem-http
5989/tcp open wbem-https Nmap scan report for bogon (172.16.96.116)
Host is up (0.00070s latency).
Not shown: 985 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
593/tcp open http-rpc-epmap
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49157/tcp open unknown
49159/tcp open unknown
49160/tcp open unknown Nmap scan report for bogon (172.16.96.117)
Host is up (0.00062s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
1433/tcp open ms-sql-s
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49157/tcp open unknown
49999/tcp open unknown
50000/tcp open ibm-db2
50002/tcp open iiimsf Nmap scan report for bogon (172.16.96.119)
Host is up (0.00059s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
389/tcp open ldap
443/tcp open https
636/tcp open ldapssl
3306/tcp open mysql
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.121)
Host is up (0.00071s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
21/tcp open ftp
135/tcp open msrpc
139/tcp open netbios-ssn
1025/tcp open NFS-or-IIS
1433/tcp open ms-sql-s Nmap scan report for bogon (172.16.96.124)
Host is up (0.00058s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.125)
Host is up (0.00059s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.126)
Host is up (0.00063s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.127)
Host is up (0.00057s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.128)
Host is up (0.00060s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.129)
Host is up (0.00062s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.130)
Host is up (0.00056s latency).
Not shown: 993 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
912/tcp open apex-mesh
1026/tcp open LSA-or-nterm
1044/tcp open dcutility
3389/tcp open ms-term-serv Nmap scan report for bogon (172.16.96.131)
Host is up (0.00059s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy
8180/tcp open unknown Nmap scan report for bogon (172.16.96.133)
Host is up (0.00061s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap scan report for bogon (172.16.96.135)
Host is up (0.00061s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.136)
Host is up (0.00064s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.137)
Host is up (0.00062s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy
9200/tcp open wap-wsp Nmap scan report for bogon (172.16.96.138)
Host is up (0.00060s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.139)
Host is up (0.00062s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http Nmap scan report for bogon (172.16.96.140)
Host is up (0.00072s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.141)
Host is up (0.00058s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
3306/tcp open mysql Nmap scan report for bogon (172.16.96.143)
Host is up (0.00087s latency).
Not shown: 996 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp closed https
3306/tcp open mysql Nmap scan report for bogon (172.16.96.188)
Host is up (0.00064s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
1234/tcp open hotline
1521/tcp open oracle
2809/tcp open corbaloc
9100/tcp open jetdirect
32768/tcp open filenet-tms
32776/tcp open sometimes-rpc15 Nmap scan report for bogon (172.16.96.200)
Host is up (0.00061s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
80/tcp open http
81/tcp open hosts2-ns
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
1688/tcp open nsjtp-data
3389/tcp open ms-term-serv
4000/tcp open remoteanything
4001/tcp open newoak
8011/tcp open unknown
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49158/tcp open unknown Nmap scan report for bogon (172.16.96.205)
Host is up (0.00060s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.222)
Host is up (0.00059s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap scan report for bogon (172.16.96.235)
Host is up (0.00064s latency).
Not shown: 987 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1025/tcp open NFS-or-IIS
1026/tcp open LSA-or-nterm
1027/tcp open IIS
1074/tcp open warmspotMgmt
1433/tcp open ms-sql-s
2382/tcp open ms-olap3
3372/tcp open msdtc
5120/tcp open unknown
9001/tcp open tor-orport Nmap scan report for bogon (172.16.96.236)
Host is up (0.00099s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
443/tcp open https
8080/tcp open http-proxy
8088/tcp open radan-http
49154/tcp open unknown Nmap scan report for bogon (172.16.96.250)
Host is up (0.00098s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
5120/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown Nmap scan report for bogon (172.16.96.254)
Host is up (0.0014s latency).
Not shown: 989 closed ports
PORT STATE SERVICE
23/tcp open telnet
50300/tcp filtered unknown
50389/tcp filtered unknown
50500/tcp filtered unknown
50636/tcp filtered unknown
50800/tcp filtered unknown
51493/tcp filtered unknown
52673/tcp filtered unknown
52822/tcp filtered unknown
52848/tcp filtered unknown
52869/tcp filtered unknown Nmap done: 255 IP addresses (37 hosts up) scanned in 55.17 seconds
[root@yinzhengjie ~]#
[root@yinzhengjie ~]# nmap 172.16.96.1/24 -exclude 172.16.96.1
7.扫描除过某一个文件中的ip外的子网主机命令
[root@yinzhengjie ~]# nmap 172.16.96.1/24 -excludefile ip.txt Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 13:57 CST
Nmap scan report for bogon (172.16.96.40)
Host is up (0.00089s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.53)
Host is up (0.00087s latency).
Not shown: 964 filtered ports, 32 closed ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
888/tcp open accessbuilder
8888/tcp open sun-answerbook Nmap scan report for bogon (172.16.96.60)
Host is up (0.00054s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49156/tcp open unknown
49158/tcp open unknown
49160/tcp open unknown
49161/tcp open unknown Nmap scan report for bogon (172.16.96.61)
Host is up (0.00064s latency).
Not shown: 988 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
3389/tcp open ms-term-serv
8009/tcp open ajp13
8080/tcp open http-proxy
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49159/tcp open unknown Nmap scan report for bogon (172.16.96.80)
Host is up (0.00089s latency).
Not shown: 999 filtered ports
PORT STATE SERVICE
22/tcp open ssh Nmap scan report for bogon (172.16.96.90)
Host is up (0.00082s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
1720/tcp closed H.323/Q.931
8080/tcp closed http-proxy
9943/tcp open unknown
9944/tcp open unknown Nmap scan report for bogon (172.16.96.91)
Host is up (0.00089s latency).
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
8080/tcp closed http-proxy Nmap scan report for bogon (172.16.96.100)
Host is up (0.00092s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
5988/tcp open wbem-http
5989/tcp open wbem-https Nmap scan report for bogon (172.16.96.116)
Host is up (0.00070s latency).
Not shown: 985 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
593/tcp open http-rpc-epmap
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49157/tcp open unknown
49159/tcp open unknown
49160/tcp open unknown Nmap scan report for bogon (172.16.96.117)
Host is up (0.00082s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
1433/tcp open ms-sql-s
3389/tcp open ms-term-serv
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49156/tcp open unknown
49157/tcp open unknown
49999/tcp open unknown
50000/tcp open ibm-db2
50002/tcp open iiimsf Nmap scan report for bogon (172.16.96.119)
Host is up (0.00065s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
389/tcp open ldap
443/tcp open https
636/tcp open ldapssl
3306/tcp open mysql
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.121)
Host is up (0.00083s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
21/tcp open ftp
135/tcp open msrpc
139/tcp open netbios-ssn
1025/tcp open NFS-or-IIS
1433/tcp open ms-sql-s Nmap scan report for bogon (172.16.96.124)
Host is up (0.00060s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.125)
Host is up (0.00075s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.126)
Host is up (0.00073s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.127)
Host is up (0.00060s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.128)
Host is up (0.00055s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.129)
Host is up (0.00065s latency).
Not shown: 996 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.130)
Host is up (0.00067s latency).
Not shown: 993 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
912/tcp open apex-mesh
1026/tcp open LSA-or-nterm
1044/tcp open dcutility
3389/tcp open ms-term-serv Nmap scan report for bogon (172.16.96.131)
Host is up (0.00066s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy
8180/tcp open unknown Nmap scan report for bogon (172.16.96.135)
Host is up (0.00061s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.136)
Host is up (0.00061s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.137)
Host is up (0.00057s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
8009/tcp open ajp13
8080/tcp open http-proxy
9200/tcp open wap-wsp Nmap scan report for bogon (172.16.96.138)
Host is up (0.00056s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind Nmap scan report for bogon (172.16.96.139)
Host is up (0.00066s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http Nmap scan report for bogon (172.16.96.140)
Host is up (0.00073s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
8080/tcp open http-proxy Nmap scan report for bogon (172.16.96.141)
Host is up (0.00060s latency).
Not shown: 998 closed ports
PORT STATE SERVICE
22/tcp open ssh
3306/tcp open mysql Nmap scan report for bogon (172.16.96.143)
Host is up (0.00086s latency).
Not shown: 996 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp closed https
3306/tcp open mysql Nmap scan report for bogon (172.16.96.188)
Host is up (0.00064s latency).
Not shown: 991 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
1234/tcp open hotline
1521/tcp open oracle
2809/tcp open corbaloc
9100/tcp open jetdirect
32768/tcp open filenet-tms
32776/tcp open sometimes-rpc15 Nmap scan report for bogon (172.16.96.200)
Host is up (0.00062s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
80/tcp open http
81/tcp open hosts2-ns
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1521/tcp open oracle
1688/tcp open nsjtp-data
3389/tcp open ms-term-serv
4000/tcp open remoteanything
4001/tcp open newoak
8011/tcp open unknown
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
49158/tcp open unknown Nmap scan report for bogon (172.16.96.222)
Host is up (0.00064s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap scan report for bogon (172.16.96.235)
Host is up (0.00070s latency).
Not shown: 987 closed ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1025/tcp open NFS-or-IIS
1026/tcp open LSA-or-nterm
1027/tcp open IIS
1074/tcp open warmspotMgmt
1433/tcp open ms-sql-s
2382/tcp open ms-olap3
3372/tcp open msdtc
5120/tcp open unknown
9001/tcp open tor-orport Nmap scan report for bogon (172.16.96.236)
Host is up (0.00097s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
443/tcp open https
8080/tcp open http-proxy
8088/tcp open radan-http
49154/tcp open unknown Nmap scan report for bogon (172.16.96.250)
Host is up (0.00090s latency).
Not shown: 994 filtered ports
PORT STATE SERVICE
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
5120/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown Nmap scan report for bogon (172.16.96.254)
Host is up (0.0016s latency).
Not shown: 989 closed ports
PORT STATE SERVICE
23/tcp open telnet
50300/tcp filtered unknown
50389/tcp filtered unknown
50500/tcp filtered unknown
50636/tcp filtered unknown
50800/tcp filtered unknown
51493/tcp filtered unknown
52673/tcp filtered unknown
52822/tcp filtered unknown
52848/tcp filtered unknown
52869/tcp filtered unknown Nmap done: 252 IP addresses (35 hosts up) scanned in 55.38 seconds
[root@yinzhengjie ~]#
[root@yinzhengjie ~]# nmap 172.16.96.1/24 -excludefile ip.txt
8.扫描特定主机上的端口
[root@yinzhengjie ~]# nmap -p80,20,21,23 172.16.96.205 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 14:01 CST
Nmap scan report for bogon (172.16.96.205)
Host is up (0.00064s latency).
PORT STATE SERVICE
20/tcp closed ftp-data
21/tcp open ftp
23/tcp closed telnet
80/tcp closed http Nmap done: 1 IP address (1 host up) scanned in 0.03 seconds
[root@yinzhengjie ~]#
四.Nmap的高逼格使用方法
1.Tcp SYN Scan (sS) 这是一个基本的扫描方式,它被称为半开放扫描,因为这种技术使得Nmap不需要通过完整的握手,就能获得远程主机的信息。Nmap发送SYN包到远程主机,但是它不会产生任何会话.因此不会在目标主机上产生任何日志记录,因为没有形成会话。这个就是SYN扫描的优势.如果Nmap命令中没有指出扫描类型,默认的就是Tcp SYN.但是它需要root/administrator权限.
[root@yinzhengjie ~]# nmap -sS 172.16.96.133 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 14:05 CST
Nmap scan report for bogon (172.16.96.133)
Host is up (0.00048s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp open mysql Nmap done: 1 IP address (1 host up) scanned in 0.07 seconds
[root@yinzhengjie ~]#
2.想要通过Nmap准确的检测到远程操作系统是比较困难的,需要使用到Nmap的猜测功能选项,–osscan-guess猜测认为最接近目标的匹配操作系统类型。
[root@yinzhengjie ~]# nmap -O --osscan-guess 172.16.96.205 Starting Nmap 5.51 ( http://nmap.org ) at 2017-08-11 14:11 CST
Nmap scan report for bogon (172.16.96.205)
Host is up (0.00097s latency).
Not shown: 997 closed ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
111/tcp open rpcbind
Device type: WAP|general purpose|firewall|webcam|specialized|storage-misc
Running (JUST GUESSING): Netgear embedded (96%), Linux 2.6.X|2.4.X (93%), Check Point embedded (91%), AXIS Linux 2.6.X (91%), Crestron 2-Series (89%), Citrix Linux 2.6.X (89%), IBM embedded (88%), Linksys embedded (88%)
Aggressive OS guesses: Netgear DG834G WAP (96%), Linux 2.6.24 - 2.6.35 (93%), Linux 2.6.32 (92%), Linux 2.6.9 - 2.6.18 (92%), Check Point VPN-1 UTM appliance (91%), Linux 2.4.26 (Slackware 10.0.0) (91%), AXIS 211A Network Camera (Linux 2.6) (91%), AXIS 211A Network Camera (Linux 2.6.20) (91%), Linux 2.6.24 (90%), Linux 2.6.17 - 2.6.35 (90%)
No exact OS matches for host (If you know what OS is running on it, see http://nmap.org/submit/ ).
TCP/IP fingerprint:
OS:SCAN(V=5.51%D=8/11%OT=21%CT=1%CU=31252%PV=Y%DS=1%DC=I%G=Y%TM=598D4AB9%P=
OS:x86_64-redhat-linux-gnu)SEQ(SP=105%GCD=1%ISR=10C%TI=Z%CI=Z%II=I%TS=A)OPS
OS:(O1=M5B4ST11NW7%O2=M5B4ST11NW7%O3=M5B4NNT11NW7%O4=M5B4ST11NW7%O5=M5B4ST1
OS:1NW7%O6=M5B4ST11)WIN(W1=3890%W2=3890%W3=3890%W4=3890%W5=3890%W6=3890)ECN
OS:(R=Y%DF=Y%T=40%W=3908%O=M5B4NNSNW7%CC=Y%Q=)T1(R=Y%DF=Y%T=40%S=O%A=S+%F=A
OS:S%RD=0%Q=)T2(R=N)T3(R=N)T4(R=Y%DF=Y%T=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T5(R
OS:=Y%DF=Y%T=40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)T6(R=Y%DF=Y%T=40%W=0%S=A%A=Z%F
OS:=R%O=%RD=0%Q=)T7(R=Y%DF=Y%T=40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)U1(R=Y%DF=N%
OS:T=40%IPL=164%UN=0%RIPL=G%RID=G%RIPCK=G%RUCK=G%RUD=G)IE(R=Y%DFI=N%T=40%CD
OS:=S) Network Distance: 1 hop OS detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 11.94 seconds
[root@yinzhengjie ~]#
更多详情可参考:http://jingyan.baidu.com/article/47a29f24312010c0142399f1.html