nbtscan 說明

作者: -
****** nbtscan(查詢LAN裏頭使用smb協定的設備) ******
透過IP掃描方式找LAN裏頭 NetBIOS設備相關資料
———————
掃描192.168.8.***所有設備
指令: sudo nbtscan -r 192.168.8.0/24
———————
掃描192.168.8.***所有設備且MAC address 00:00:00:00:00:00(可自設定)
指令: sudo nbtscan -r 192.168.8.0/24 |grep "00:00:00:00:00:00"
———————
用來檢查網路window電腦基本資料
例如: 電腦名稱, 使用者, IP, Mac address, services(服務)


nbtscan -h
"Human-readable service names" (-h) option cannot be used without verbose (-v) option.
Usage:
nbtscan [-v] [-d] [-e] [-l] [-t timeout] [-b bandwidth] [-r] [-q] [-s separator] [-m retransmits] (-f filename)|(<scan_range>) 
 -v  verbose output. Print all names received
   from each host
 -d  dump packets. Print whole packet contents.
 -e  Format output in /etc/hosts format.
 -l  Format output in lmhosts format.
   Cannot be used with -v, -s or -h options.
 -t timeout wait timeout milliseconds for response.
   Default 1000.
 -b bandwidth Output throttling. Slow down output
   so that it uses no more that bandwidth bps.
   Useful on slow links, so that ougoing queries
   don't get dropped.
 -r  use local port 137 for scans. Win95 boxes
   respond to this only.
   You need to be root to use this option on Unix.
 -q  Suppress banners and error messages,
 -s separator Script-friendly output. Don't print
   column and record headers, separate fields with separator.
 -h  Print human-readable names for services.
   Can only be used with -v option.
 -m retransmits Number of retransmits. Default 0.
 -f filename Take IP addresses to scan from file filename.
   -f - makes nbtscan take IP addresses from stdin.
 <scan_range> what to scan. Can either be single IP
   like 192.168.1.1 or
   range of addresses in one of two forms: 
   xxx.xxx.xxx.xxx/xx or xxx.xxx.xxx.xxx-xxx.
Examples:
 nbtscan -r 192.168.1.0/24
  Scans the whole C-class network.
 nbtscan 192.168.1.25-137
  Scans a range from 192.168.1.25 to 192.168.1.137
 nbtscan -v -s : 192.168.1.0/24
  Scans C-class network. Prints results in script-friendly
  format using colon as field separator.
  Produces output like that:
  192.168.0.1:NT_SERVER:00U
  192.168.0.1:MY_DOMAIN:00G
  192.168.0.1:ADMINISTRATOR:03U
  192.168.0.2:OTHER_BOX:00U
  ...
 nbtscan -f iplist
  Scans IP addresses specified in file iplist.
































留言











張貼留言



















這個網誌中的熱門文章









用趨勢偵測 log4j







作者:







-














圖片







 ***************************************************** 電腦設備有安裝log4j套件(可能 Apache性質居多) 可能就被當成入侵跳板 以公司對外主機 為主 ***************************************************** 趨勢 提供 免費偵測 (有限天數, 不限台數) 以自己 公司或私人 都可 註冊登入 使用 ***************************************************** 使用 chrome開啟網頁 https://www.trendmicro.com/zh_tw/apache-log4j-vulnerability.html 按 免費 掃描工具   輸入 右邊基本資料 (email 要正確) (會寄發 認證 號碼)  註冊登入成功 後, 出現  按 Get start 可選擇 下載 軟體~ 在其自己 主機(window 或 Linux 或 MacOS) 執行 執行畫面(window版)(免安裝) 偵測後 畫面 下方出現結果 可以趁機電腦 逐台執行偵測 , 都會產生報表 於 這畫面 最後建議:  1. 若 主機加裝特定 防毒防火牆軟體 可以 阻止 2. 防火牆 設定禁止這樣 字串 可阻止 3. 更新這套件的修補程式 ========================================================== 登入這網址 就可以看檢測 https://login.xdr.trendmicro.com/idp/clp/xdr?RelayState=/http%3A%2F%2Fsuccess%2F%3Frs%3D%2F%23%2Fapp%2Fasm ==========================================================








閱讀完整內容











urlcrazy 真的很crazy







作者:







-














圖片







 透過輸入網址,去推敲組合道網域前面,測試是否存在該網址位置,這可以當假訊息釣魚網站或一些名稱特性的猜測 安裝 sudo apt-get install urlcrazy 執行: sudo urlcrazy  <網域> URLCrazy version 0.7.1 by Andrew Horton (urbanadventurer)                                        Visit http://www.morningstarsecurity.com/research/urlcrazy Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage. Supports the following domain variations: Character omission, character repeat, adjacent character swap, adjacent character replacement, double  character replacement, adjacent character insertion, missing dot, strip dashes, insert dash, singular or pluralise, common misspellings, vowel swaps, homophones, bit flipping (cosmic rays), homoglyphs, wrong top level domain, and wrong second level domain. Usage: ./urlcrazy [options] domain Options -k, --keyboard=LAYOUT  Options are: qwerty, azerty, qwertz, dvorak (default: qwerty) -p, --popularity       Check domain popularity with Google -r, -








閱讀完整內容