Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- msf > db_nmap -A 10.11.1.1-254
- [*] Nmap: Starting Nmap 7.70 ( https://nmap.org ) at 2019-09-11 05:30 EDT
- [*] Nmap: Warning: 10.11.1.133 giving up on port because retransmission cap hit (10).
- [*] Nmap: Nmap scan report for 10.11.1.5
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 997 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 445/tcp open microsoft-ds Windows XP microsoft-ds
- [*] Nmap: 1025/tcp open NFS-or-IIS?
- [*] Nmap: MAC Address: 00:50:56:89:1D:93 (VMware)
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows XP
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp
- [*] Nmap: OS details: Microsoft Windows XP
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OSs: Windows, Windows XP; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_xp
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -59m54s, deviation: 0s, median: -59m54s
- [*] Nmap: |_nbstat: NetBIOS name: ALICE, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:1d:93 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows XP (Windows 2000 LAN Manager)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_xp::-
- [*] Nmap: | NetBIOS computer name: ALICE\x00
- [*] Nmap: | Workgroup: THINC\x00
- [*] Nmap: |_ System time: 2019-09-11T12:28:07+01:00
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 240.04 ms 10.11.1.5
- [*] Nmap: Nmap scan report for 10.11.1.7
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 999 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: MAC Address: 00:50:56:89:2F:72 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: WAP|general purpose
- [*] Nmap: Running (JUST GUESSING): Apple embedded (90%), Microsoft Windows XP (88%)
- [*] Nmap: OS CPE: cpe:/h:apple:airport_extreme cpe:/o:microsoft:windows_xp
- [*] Nmap: Aggressive OS guesses: Apple AirPort Extreme WAP (90%), Microsoft Windows XP (88%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.19 ms 10.11.1.7
- [*] Nmap: Nmap scan report for 10.11.1.8
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 990 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp vsftpd 2.0.1
- [*] Nmap: | ftp-anon: Anonymous FTP login allowed (FTP code 230)
- [*] Nmap: |_Can't get directory listing: ERROR
- [*] Nmap: | ftp-syst:
- [*] Nmap: | STAT:
- [*] Nmap: | FTP server status:
- [*] Nmap: | Connected to 10.11.0.96
- [*] Nmap: | Logged in as ftp
- [*] Nmap: | TYPE: ASCII
- [*] Nmap: | No session bandwidth limit
- [*] Nmap: | Session timeout in seconds is 300
- [*] Nmap: | Control connection is plain text
- [*] Nmap: | Data connections will be plain text
- [*] Nmap: | At session startup, client count was 1
- [*] Nmap: | vsFTPd 2.0.1 - secure, fast, stable
- [*] Nmap: |_End of status
- [*] Nmap: 22/tcp open ssh OpenSSH 3.9p1 (protocol 1.99)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 89:94:af:2e:5d:c1:da:84:25:11:2c:12:45:c6:70:ac (RSA1)
- [*] Nmap: | 1024 c1:c5:d1:83:0f:4d:d8:9e:8f:82:4c:be:53:4b:6e:14 (DSA)
- [*] Nmap: |_ 1024 bc:e1:e6:dd:ab:5e:fd:d1:21:2e:11:7c:d5:b2:03:52 (RSA)
- [*] Nmap: |_sshv1: Server supports SSHv1
- [*] Nmap: 25/tcp closed smtp
- [*] Nmap: 80/tcp open http Apache httpd 2.0.52 ((CentOS))
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: | http-robots.txt: 2 disallowed entries
- [*] Nmap: |_/internal/ /tmp/
- [*] Nmap: |_http-server-header: Apache/2.0.52 (CentOS)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html; charset=UTF-8).
- [*] Nmap: 111/tcp open rpcbind 2 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2 111/tcp rpcbind
- [*] Nmap: | 100000 2 111/udp rpcbind
- [*] Nmap: | 100024 1 843/udp status
- [*] Nmap: |_ 100024 1 846/tcp status
- [*] Nmap: 139/tcp open netbios-ssn Samba smbd 3.X - 4.X (workgroup: MYGROUP)
- [*] Nmap: 443/tcp open ssl/http Apache httpd 2.0.52 ((CentOS))
- [*] Nmap: | http-robots.txt: 2 disallowed entries
- [*] Nmap: |_/internal/ /tmp/
- [*] Nmap: |_http-server-header: Apache/2.0.52 (CentOS)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html; charset=UTF-8).
- [*] Nmap: | ssl-cert: Subject: commonName=localhost.localdomain/organizationName=SomeOrganization/stateOrProvinceName=SomeState/countryName=--
- [*] Nmap: | Not valid before: 2009-09-16T14:03:22
- [*] Nmap: |_Not valid after: 2010-09-16T14:03:22
- [*] Nmap: |_ssl-date: 2019-09-11T11:30:26+00:00; -15s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: | SSL2_DES_64_CBC_WITH_MD5
- [*] Nmap: |_ SSL2_RC4_64_WITH_MD5
- [*] Nmap: 445/tcp open netbios-ssn Samba smbd 3.0.33-0.17.el4 (workgroup: MYGROUP)
- [*] Nmap: 631/tcp open ipp CUPS 1.1
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: PUT
- [*] Nmap: |_http-server-header: CUPS/1.1
- [*] Nmap: |_http-title: 403 Forbidden
- [*] Nmap: 3306/tcp open mysql?
- [*] Nmap: |_mysql-info: ERROR: Script execution failed (use -d to debug)
- [*] Nmap: MAC Address: 00:50:56:89:3D:A7 (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 2.6.18 (94%), Linux 2.6.9 - 2.6.27 (93%), Linux 2.6.9 (93%), Cisco SA520 firewall (Linux 2.6) (92%), Linux 2.6.11 (92%), Linux 2.6.28 (92%), Linux 2.6.30 (92%), Ruckus 7363 WAP (91%), Linux 2.6.32 (90%), Linux 2.6.9 (CentOS 4.4) (90%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Unix
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 1h20m03s, deviation: 2h19m06s, median: -15s
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Unix (Samba 3.0.33-0.17.el4)
- [*] Nmap: | Computer name: phoenix
- [*] Nmap: | NetBIOS computer name:
- [*] Nmap: | Domain name:
- [*] Nmap: | FQDN: phoenix
- [*] Nmap: |_ System time: 2019-09-11T07:28:42-04:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.11 ms 10.11.1.8
- [*] Nmap: Nmap scan report for 10.11.1.10
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 999 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 6.0
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Microsoft-IIS/6.0
- [*] Nmap: |_http-title: Under Construction
- [*] Nmap: MAC Address: 00:50:56:93:6F:E0 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose|WAP
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2003|2000 (93%), Apple embedded (86%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_server_2003::sp2 cpe:/o:microsoft:windows_2000::sp4 cpe:/h:apple:airport_extreme
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (93%), Microsoft Windows Server 2003 SP2 (89%), Microsoft Windows Server 2003 (88%), Microsoft Windows XP SP3 (87%), Microsoft Windows 2000 SP4 (87%), Apple AirPort Extreme WAP (86%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 237.62 ms 10.11.1.10
- [*] Nmap: Nmap scan report for 10.11.1.13
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 997 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp Microsoft ftpd
- [*] Nmap: | ftp-anon: Anonymous FTP login allowed (FTP code 230)
- [*] Nmap: | 01-17-07 07:42PM <DIR> AdminScripts
- [*] Nmap: | 01-17-07 07:43PM <DIR> ftproot
- [*] Nmap: | 01-17-07 07:43PM <DIR> iissamples
- [*] Nmap: | 01-17-07 07:43PM <DIR> Scripts
- [*] Nmap: |_09-10-19 07:01PM <DIR> wwwroot
- [*] Nmap: | ftp-syst:
- [*] Nmap: |_ SYST: Windows_NT
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 5.1
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE DELETE COPY MOVE PROPFIND PROPPATCH SEARCH MKCOL LOCK UNLOCK PUT
- [*] Nmap: |_http-server-header: Microsoft-IIS/5.1
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: | http-webdav-scan:
- [*] Nmap: | WebDAV type: Unkown
- [*] Nmap: | Server Type: Microsoft-IIS/5.1
- [*] Nmap: | Public Options: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
- [*] Nmap: | Allowed Methods: OPTIONS, TRACE, GET, HEAD, DELETE, COPY, MOVE, PROPFIND, PROPPATCH, SEARCH, MKCOL, LOCK, UNLOCK
- [*] Nmap: |_ Server Date: Wed, 11 Sep 2019 11:31:05 GMT
- [*] Nmap: 3389/tcp open ms-wbt-server?
- [*] Nmap: 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
- [*] Nmap: SF-Port3389-TCP:V=7.70%I=7%D=9/11%Time=5D78D8A3%P=i686-pc-linux-gnu%r(Term
- [*] Nmap: SF:inalServerCookie,B,"\x03\0\0\x0b\x06\xd0\0\0\x124\0");
- [*] Nmap: MAC Address: 00:50:56:89:17:DA (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP (96%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (96%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.41 ms 10.11.1.13
- [*] Nmap: Nmap scan report for 10.11.1.14
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 997 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp Microsoft ftpd
- [*] Nmap: | ftp-anon: Anonymous FTP login allowed (FTP code 230)
- [*] Nmap: | 01-17-07 07:42PM <DIR> AdminScripts
- [*] Nmap: | 01-17-07 07:43PM <DIR> ftproot
- [*] Nmap: | 01-17-07 07:43PM <DIR> iissamples
- [*] Nmap: | 01-17-07 07:43PM <DIR> Scripts
- [*] Nmap: |_04-16-16 10:42AM <DIR> wwwroot
- [*] Nmap: | ftp-syst:
- [*] Nmap: |_ SYST: Windows_NT
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 5.1
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE DELETE COPY MOVE PROPFIND PROPPATCH SEARCH MKCOL LOCK UNLOCK PUT
- [*] Nmap: |_http-server-header: Microsoft-IIS/5.1
- [*] Nmap: |_http-title: Too Many Users
- [*] Nmap: | http-webdav-scan:
- [*] Nmap: | WebDAV type: Unkown
- [*] Nmap: | Server Type: Microsoft-IIS/5.1
- [*] Nmap: | Public Options: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
- [*] Nmap: | Allowed Methods: OPTIONS, TRACE, GET, HEAD, DELETE, COPY, MOVE, PROPFIND, PROPPATCH, SEARCH, MKCOL, LOCK, UNLOCK
- [*] Nmap: |_ Server Date: Wed, 11 Sep 2019 11:30:41 GMT
- [*] Nmap: 3389/tcp open ms-wbt-server?
- [*] Nmap: 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
- [*] Nmap: SF-Port3389-TCP:V=7.70%I=7%D=9/11%Time=5D78D8A3%P=i686-pc-linux-gnu%r(Term
- [*] Nmap: SF:inalServerCookie,B,"\x03\0\0\x0b\x06\xd0\0\0\x124\0");
- [*] Nmap: MAC Address: 00:50:56:89:7C:1A (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose|WAP
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2003 (92%), Apple embedded (85%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_server_2003 cpe:/h:apple:airport_extreme
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (92%), Microsoft Windows Server 2003 (85%), Apple AirPort Extreme WAP (85%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.45 ms 10.11.1.14
- [*] Nmap: Nmap scan report for 10.11.1.22
- [*] Nmap: Host is up (0.23s latency).
- [*] Nmap: Not shown: 989 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp?
- [*] Nmap: 22/tcp open ssh OpenSSH 3.1p1 (protocol 1.99)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 4a:e3:f8:07:d5:d6:b1:b5:bf:54:ac:e7:17:36:7e:e8 (RSA1)
- [*] Nmap: | 1024 77:67:f2:2c:3d:7c:45:24:fe:5e:0f:de:07:65:b3:57 (DSA)
- [*] Nmap: |_ 1024 42:b1:48:0b:41:f8:a9:12:cc:9b:c4:ed:26:74:64:2c (RSA)
- [*] Nmap: |_sshv1: Server supports SSHv1
- [*] Nmap: 23/tcp open telnet?
- [*] Nmap: 25/tcp open smtp?
- [*] Nmap: |_smtp-commands: Couldn't establish connection on port 25
- [*] Nmap: 80/tcp open http Apache httpd 1.3.23 ((Unix) (Red-Hat/Linux) mod_python/2.7.6 Python/1.5.2 mod_ssl/2.8.7 OpenSSL/0.9.6b DAV/1.0.3 PHP/4.1.2 mod_perl/1.26 mod_throttle/3.1.2)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: PUT DELETE CONNECT PATCH PROPFIND PROPPATCH MKCOL COPY MOVE LOCK UNLOCK TRACE
- [*] Nmap: |_http-server-header: Apache/1.3.23 (Unix) (Red-Hat/Linux) mod_python/2.7.6 Python/1.5.2 mod_ssl/2.8.7 OpenSSL/0.9.6b DAV/1.0.3 PHP/4.1.2 mod_perl/1.26 mod_throttle/3.1.2
- [*] Nmap: |_http-title: Test Page for the Apache Web Server on Red Hat Linux
- [*] Nmap: 111/tcp open rpcbind 2 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2 111/tcp rpcbind
- [*] Nmap: | 100000 2 111/udp rpcbind
- [*] Nmap: | 100024 1 32768/tcp status
- [*] Nmap: |_ 100024 1 32768/udp status
- [*] Nmap: 139/tcp open netbios-ssn Samba smbd (workgroup: MYGROUP)
- [*] Nmap: 199/tcp open smux Linux SNMP multiplexer
- [*] Nmap: 443/tcp open ssl/https Apache/1.3.23 (Unix) (Red-Hat/Linux) mod_python/2.7.6 Python/1.5.2 mod_ssl/2.8.
- [*] Nmap: |_http-server-header: Apache/1.3.23 (Unix) (Red-Hat/Linux) mod_python/2.7.6 Python/1.5.2 mod_ssl/2.8.7 OpenSSL/0.9.6b DAV/1.0.3 PHP/4.1.2 mod_perl/1.26 mod_throttle/3.1.2
- [*] Nmap: |_http-title: 400 Bad Request
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:15+00:00; -6s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: | SSL2_DES_64_CBC_WITH_MD5
- [*] Nmap: |_ SSL2_RC4_64_WITH_MD5
- [*] Nmap: 995/tcp open ssl/pop3s?
- [*] Nmap: |_ssl-date: 2019-09-11T11:30:30+00:00; -7s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: |_ SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: 32768/tcp open status 1 (RPC #100024)
- [*] Nmap: MAC Address: 00:50:56:89:7C:D5 (VMware)
- [*] Nmap: Device type: general purpose|WAP|router|specialized|switch|media device|broadband router
- [*] Nmap: Running (JUST GUESSING): Linux 2.4.X|2.6.X (97%), Acorp embedded (95%), Meru embedded (94%), AVM embedded (93%), Google embedded (93%), HP embedded (93%), Philips embedded (93%), Motorola embedded (93%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.4.20 cpe:/h:avm:fritz%21box_fon_wlan_7170 cpe:/o:linux:linux_kernel:2.4.21 cpe:/o:linux:linux_kernel:2.6.18 cpe:/h:motorola:surfboard_sb6120 cpe:/h:motorola:surfboard_sb6141
- [*] Nmap: Aggressive OS guesses: Linux 2.4.20 (97%), Acorp W400G or W422G wireless ADSL modem (MontaVista embedded Linux 2.4.17) (95%), MontaVista embedded Linux 2.4.17 (95%), Meru MC1000 wireless LAN controller (94%), AVM FRITZ!Box FON WLAN 7170 WAP (93%), Google Mini search appliance (93%), HP Brocade 4Gb SAN switch or (93%), Linux 2.4.21 (embedded) (93%), Motorola SURFboard SB6120 or SB6141 cable modem (Linux 2.6.18) (93%), Linux 2.6.15 - 2.6.26 (likely embedded) (93%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -6s, deviation: 0s, median: -7s
- [*] Nmap: |_nbstat: NetBIOS name: BARRY, NetBIOS user: <unknown>, NetBIOS MAC: <unknown> (unknown)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 231.10 ms 10.11.1.22
- [*] Nmap: Nmap scan report for 10.11.1.24
- [*] Nmap: Host is up (0.26s latency).
- [*] Nmap: Not shown: 991 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 4.6p1 Debian 5build1 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 f3:6e:87:04:ea:2d:b3:60:ff:42:ad:26:67:17:94:d5 (DSA)
- [*] Nmap: |_ 2048 bb:03:ce:ed:13:f1:9a:9e:36:03:e2:af:ca:b2:35:04 (RSA)
- [*] Nmap: 80/tcp open http Apache httpd 2.2.4 ((Ubuntu) PHP/5.2.3-1ubuntu6)
- [*] Nmap: |_http-server-header: Apache/2.2.4 (Ubuntu) PHP/5.2.3-1ubuntu6
- [*] Nmap: |_http-title: CS-Cart. Powerful PHP shopping cart software
- [*] Nmap: 110/tcp open pop3 Dovecot pop3d
- [*] Nmap: |_pop3-capabilities: UIDL STLS CAPA PIPELINING SASL RESP-CODES TOP
- [*] Nmap: | ssl-cert: Subject: commonName=ubuntu01/organizationName=OCOSA/stateOrProvinceName=There is no such thing outside US/countryName=XX
- [*] Nmap: | Not valid before: 2008-04-25T02:02:48
- [*] Nmap: |_Not valid after: 2008-05-25T02:02:48
- [*] Nmap: |_ssl-date: 2019-09-11T11:30:54+00:00; -2s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: |_ SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: 139/tcp open netbios-ssn Samba smbd 3.X - 4.X (workgroup: MSHOME)
- [*] Nmap: 143/tcp open imap Dovecot imapd
- [*] Nmap: |_imap-capabilities: OK SORT THREAD=REFERENCES IMAP4rev1 CHILDREN UNSELECT SASL-IR completed MULTIAPPEND Capability LOGINDISABLEDA0001 STARTTLS LOGIN-REFERRALS NAMESPACE LITERAL+ IDLE
- [*] Nmap: | ssl-cert: Subject: commonName=ubuntu01/organizationName=OCOSA/stateOrProvinceName=There is no such thing outside US/countryName=XX
- [*] Nmap: | Not valid before: 2008-04-25T02:02:48
- [*] Nmap: |_Not valid after: 2008-05-25T02:02:48
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:17+00:00; -2s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: |_ SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: 445/tcp open netbios-ssn Samba smbd 3.0.26a (workgroup: MSHOME)
- [*] Nmap: 993/tcp open ssl/imap Dovecot imapd
- [*] Nmap: | ssl-cert: Subject: commonName=ubuntu01/organizationName=OCOSA/stateOrProvinceName=There is no such thing outside US/countryName=XX
- [*] Nmap: | Not valid before: 2008-04-25T02:02:48
- [*] Nmap: |_Not valid after: 2008-05-25T02:02:48
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:39+00:00; -2s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: |_ SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: 995/tcp open ssl/pop3 Dovecot pop3d
- [*] Nmap: |_pop3-capabilities: USER UIDL CAPA PIPELINING SASL(PLAIN) RESP-CODES TOP
- [*] Nmap: | ssl-cert: Subject: commonName=ubuntu01/organizationName=OCOSA/stateOrProvinceName=There is no such thing outside US/countryName=XX
- [*] Nmap: | Not valid before: 2008-04-25T02:02:48
- [*] Nmap: |_Not valid after: 2008-05-25T02:02:48
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:31+00:00; -2s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: |_ SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: 8000/tcp open http-alt?
- [*] Nmap: MAC Address: 00:50:56:89:00:33 (VMware)
- [*] Nmap: Device type: general purpose|WAP|remote management|switch|specialized|print server|media device
- [*] Nmap: Running (JUST GUESSING): Linux 2.6.X|2.4.X (95%), AVM embedded (94%), Dell embedded (94%), Extreme Networks ExtremeXOS 12.X (94%), Google embedded (94%), HP embedded (94%), Philips embedded (94%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.6.34 cpe:/h:avm:fritz%21box_fon_wlan_7170 cpe:/h:dell:remote_access_card:5 cpe:/o:extremenetworks:extremexos:12.5.4 cpe:/o:linux:linux_kernel:2.4.20 cpe:/o:linux:linux_kernel:2.4.21
- [*] Nmap: Aggressive OS guesses: DD-WRT v24-presp2 (Linux 2.6.34) (95%), AVM FRITZ!Box FON WLAN 7170 WAP (94%), Dell Remote Access Controller 5/I (DRAC 5/I) (94%), Extreme Networks ExtremeXOS 12.5.4 (94%), Google Mini search appliance (94%), HP 4200 PSA (Print Server Appliance) model J4117A (94%), HP Brocade 4Gb SAN switch or (94%), Linux 2.4.20 (94%), Linux 2.4.21 (embedded) (94%), Motorola SURFboard SB6120 or SB6141 cable modem (Linux 2.6.18) (94%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 40m29s, deviation: 1h39m16s, median: -2s
- [*] Nmap: |_nbstat: NetBIOS name: PAYDAY, NetBIOS user: <unknown>, NetBIOS MAC: <unknown> (unknown)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Unix (Samba 3.0.26a)
- [*] Nmap: | Computer name: payday
- [*] Nmap: | NetBIOS computer name:
- [*] Nmap: | Domain name:
- [*] Nmap: | FQDN: payday
- [*] Nmap: |_ System time: 2019-09-11T07:31:09-04:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: <blank>
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 260.02 ms 10.11.1.24
- [*] Nmap: Nmap scan report for 10.11.1.31
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 993 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 6.0
- [*] Nmap: | http-cookie-flags:
- [*] Nmap: | /:
- [*] Nmap: | ASPSESSIONIDQACTSDSA:
- [*] Nmap: |_ httponly flag not set
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Microsoft-IIS/6.0
- [*] Nmap: |_http-title: Login
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 445/tcp open microsoft-ds Windows Server 2003 3790 Service Pack 1 microsoft-ds
- [*] Nmap: 1025/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1433/tcp open ms-sql-s Microsoft SQL Server 2000 8.00.766.00; SP3a
- [*] Nmap: | ms-sql-ntlm-info:
- [*] Nmap: |_ Product_Version: 5.2.3790
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: MAC Address: 00:50:56:89:6D:59 (VMware)
- [*] Nmap: Device type: general purpose|media device|specialized
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows 2003|XP|PocketPC/CE|2000 (94%), Motorola embedded (89%), Beat embedded (87%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_server_2003::sp2 cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_ce:5.0 cpe:/h:motorola:vip1216 cpe:/o:microsoft:windows_ce:6.0 cpe:/o:microsoft:windows_2000::sp4
- [*] Nmap: Aggressive OS guesses: Microsoft Windows Server 2003 SP2 (94%), Microsoft Windows XP (92%), Microsoft Windows XP SP3 (92%), Microsoft Windows Server 2003 (91%), Microsoft Windows Server 2003 SP1 or SP2 (91%), Microsoft Windows Server 2003 SP1 (90%), Microsoft Windows Server 2003 SP0 - SP2 (90%), Microsoft Windows XP Professional SP3 (89%), Microsoft Windows XP SP2 (89%), Microsoft Windows XP SP2 - SP3 (89%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_server_2003
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 2h31m26s, deviation: 3h34m22s, median: -8s
- [*] Nmap: | ms-sql-info:
- [*] Nmap: | Windows server name: RALPH
- [*] Nmap: | 10.11.1.31\MSSQLSERVER:
- [*] Nmap: | Instance name: MSSQLSERVER
- [*] Nmap: | Version:
- [*] Nmap: | name: Microsoft SQL Server 2000 SP3a
- [*] Nmap: | number: 8.00.766.00
- [*] Nmap: | Product: Microsoft SQL Server 2000
- [*] Nmap: | Service pack level: SP3a
- [*] Nmap: | Post-SP patches applied: false
- [*] Nmap: | TCP port: 1433
- [*] Nmap: | Named pipe: \\10.11.1.31\pipe\sql\query
- [*] Nmap: |_ Clustered: false
- [*] Nmap: |_nbstat: NetBIOS name: RALPH, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:6d:59 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows Server 2003 3790 Service Pack 1 (Windows Server 2003 5.2)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_server_2003::sp1
- [*] Nmap: | Computer name: ralph
- [*] Nmap: | NetBIOS computer name: RALPH\x00
- [*] Nmap: | Workgroup: THINC\x00
- [*] Nmap: |_ System time: 2019-09-11T06:31:04-05:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 237.19 ms 10.11.1.31
- [*] Nmap: Nmap scan report for 10.11.1.35
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 997 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 ab:a7:86:a8:a0:39:c6:0a:81:0b:f9:ae:6f:4b:51:79 (DSA)
- [*] Nmap: |_ 2048 8b:a5:11:b8:ca:75:9e:8c:a7:17:2c:a3:c9:90:1e:87 (RSA)
- [*] Nmap: 443/tcp open ssl/http Apache httpd 2.2.3 ((CentOS))
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/2.2.3 (CentOS)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html; charset=UTF-8).
- [*] Nmap: | ssl-cert: Subject: commonName=pain/organizationName=Thinc LTD/stateOrProvinceName=Pain/countryName=US
- [*] Nmap: | Not valid before: 2016-01-07T12:46:17
- [*] Nmap: |_Not valid after: 2017-01-06T12:46:17
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:52+00:00; -1s from scanner time.
- [*] Nmap: 631/tcp closed ipp
- [*] Nmap: MAC Address: 00:50:56:89:76:F7 (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 2.6.18 (94%), Linux 2.6.9 (94%), Linux 2.6.9 - 2.6.27 (93%), Cisco SA520 firewall (Linux 2.6) (91%), Linux 2.6.11 (91%), Linux 2.6.28 (91%), Linux 2.6.30 (90%), Linux 2.6.32 (90%), Linux 2.6.9 (CentOS 4.4) (90%), Riverbed Steelhead 200 proxy server (90%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -1s, deviation: 0s, median: -1s
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.01 ms 10.11.1.35
- [*] Nmap: Nmap scan report for 10.11.1.39
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 997 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 6.6.1 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 2048 5e:c1:7e:d2:f9:20:f9:11:ea:4b:02:68:07:3f:54:f2 (RSA)
- [*] Nmap: | 256 36:ef:27:31:a2:fd:4a:e3:d2:4e:12:58:1f:7a:03:58 (ECDSA)
- [*] Nmap: |_ 256 2c:70:9c:c9:4c:50:61:d2:51:43:d5:67:d1:d0:39:de (ED25519)
- [*] Nmap: 80/tcp open http nginx 1.6.3
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: nginx/1.6.3
- [*] Nmap: |_http-title: Apache HTTP Server Test Page powered by CentOS
- [*] Nmap: 3306/tcp open mysql MariaDB (unauthorized)
- [*] Nmap: MAC Address: 00:50:56:93:42:3C (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running (JUST GUESSING): Linux 4.X|3.X|2.6.X (90%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:4.4 cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:2.6
- [*] Nmap: Aggressive OS guesses: Linux 4.4 (90%), Linux 3.10 - 3.12 (89%), Linux 4.9 (89%), Linux 2.6.18 - 2.6.22 (86%), Linux 3.10 - 3.16 (86%), Linux 4.0 (86%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.33 ms 10.11.1.39
- [*] Nmap: Nmap scan report for 10.11.1.44
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 998 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 5.3p1 Debian 3ubuntu7 (Ubuntu Linux; protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 65:63:69:c9:8b:96:b1:fb:be:d5:5c:f8:1e:7b:de:8f (DSA)
- [*] Nmap: |_ 2048 28:99:c0:51:20:9b:31:e1:a4:fb:9a:17:46:52:cf:fc (RSA)
- [*] Nmap: 8000/tcp open http-alt?
- [*] Nmap: MAC Address: 00:50:56:89:56:18 (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 2.6.32 (94%), IPFire 2.11 firewall (Linux 2.6.32) (94%), DD-WRT v24-sp1 (Linux 2.4) (94%), HP MSM410 WAP (93%), Linux 2.6.35 (93%), IGEL UD3 thin client (Linux 2.6) (93%), Kyocera CopyStar CS-2560 printer (91%), QNAP NAS Firmware 3.8.3 (Linux 3.X) (91%), Linux 3.11 - 4.1 (91%), Linux 3.2 - 3.8 (91%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.07 ms 10.11.1.44
- [*] Nmap: Nmap scan report for 10.11.1.49
- [*] Nmap: Host is up (0.25s latency).
- [*] Nmap: Not shown: 996 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 8.5
- [*] Nmap: |_http-generator: Drupal 7 (http://drupal.org)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: | http-robots.txt: 36 disallowed entries (15 shown)
- [*] Nmap: | /includes/ /misc/ /modules/ /profiles/ /scripts/
- [*] Nmap: | /themes/ /CHANGELOG.txt /cron.php /INSTALL.mysql.txt
- [*] Nmap: | /INSTALL.pgsql.txt /INSTALL.sqlite.txt /install.php /INSTALL.txt
- [*] Nmap: |_/LICENSE.txt /MAINTAINERS.txt
- [*] Nmap: |_http-server-header: Microsoft-IIS/8.5
- [*] Nmap: |_http-title: Welcome to Bethany's Page | Bethany's Page
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 49155/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: MAC Address: 00:50:56:89:20:5C (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose|phone|specialized
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows 2008|7|Phone|8.1|Vista (98%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_server_2008:r2 cpe:/o:microsoft:windows_7 cpe:/o:microsoft:windows_8 cpe:/o:microsoft:windows cpe:/o:microsoft:windows_8.1 cpe:/o:microsoft:windows_vista::- cpe:/o:microsoft:windows_vista::sp1
- [*] Nmap: Aggressive OS guesses: Microsoft Windows 7 or Windows Server 2008 R2 (98%), Microsoft Windows 7 (98%), Microsoft Windows 8.1 Update 1 (92%), Microsoft Windows Phone 7.5 or 8.0 (92%), Microsoft Windows Server 2008 R2 (91%), Microsoft Windows Server 2008 R2 or Windows 8.1 (91%), Microsoft Windows Server 2008 R2 SP1 or Windows 8 (91%), Microsoft Windows 7 SP1 or Windows Server 2008 R2 (91%), Microsoft Windows Vista SP0 or SP1, Windows Server 2008 SP1, or Windows 7 (91%), Microsoft Windows Embedded Standard 7 (91%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_smb2-security-mode: SMB: Couldn't find a NetBIOS name that works for the server. Sorry!
- [*] Nmap: |_smb2-time: ERROR: Script execution failed (use -d to debug)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 245.72 ms 10.11.1.49
- [*] Nmap: Nmap scan report for 10.11.1.50
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 996 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 8.5
- [*] Nmap: |_http-generator: Drupal 7 (http://drupal.org)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: | http-robots.txt: 36 disallowed entries (15 shown)
- [*] Nmap: | /includes/ /misc/ /modules/ /profiles/ /scripts/
- [*] Nmap: | /themes/ /CHANGELOG.txt /cron.php /INSTALL.mysql.txt
- [*] Nmap: | /INSTALL.pgsql.txt /INSTALL.sqlite.txt /install.php /INSTALL.txt
- [*] Nmap: |_/LICENSE.txt /MAINTAINERS.txt
- [*] Nmap: |_http-server-header: Microsoft-IIS/8.5
- [*] Nmap: |_http-title: Welcome to Bethany's Page | Bethany's Page
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 49155/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: MAC Address: 00:50:56:89:1A:39 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 2008|7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_server_2008:r2 cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7 or Windows Server 2008 R2
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_smb2-security-mode: SMB: Couldn't find a NetBIOS name that works for the server. Sorry!
- [*] Nmap: |_smb2-time: ERROR: Script execution failed (use -d to debug)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 242.09 ms 10.11.1.50
- [*] Nmap: Nmap scan report for 10.11.1.71
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 998 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 6.6.1p1 Ubuntu 2ubuntu2 (Ubuntu Linux; protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 72:b5:55:80:1b:24:d6:f3:bf:a5:c5:98:1b:01:03:90 (DSA)
- [*] Nmap: | 2048 1a:f6:a7:0d:ed:c2:73:a1:6f:a3:08:68:28:b5:3b:bb (RSA)
- [*] Nmap: | 256 e6:43:89:59:f9:85:d8:e2:bb:e3:d7:ed:28:5c:c5:65 (ECDSA)
- [*] Nmap: |_ 256 3b:0b:f3:84:3c:7d:6e:2b:2c:81:11:94:16:9b:71:7d (ED25519)
- [*] Nmap: 80/tcp open http Apache/2.4.7 (Ubuntu)
- [*] Nmap: | http-cookie-flags:
- [*] Nmap: | /:
- [*] Nmap: | PHPSESSID:
- [*] Nmap: |_ httponly flag not set
- [*] Nmap: |_http-server-header: Apache/2.4.7 (Ubuntu)
- [*] Nmap: | http-title: Trees of Large Sizes
- [*] Nmap: |_Requested resource was site/index.php/
- [*] Nmap: MAC Address: 00:50:56:93:39:6B (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 3.11 - 4.1 (94%), Linux 3.16 (94%), Linux 4.4 (93%), Linux 3.13 (91%), Linux 3.18 (90%), Linux 3.10 - 3.12 (90%), Linux 3.5 (90%), Linux 3.2 - 3.8 (90%), Linux 3.8 (90%), WatchGuard Fireware 11.8 (90%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.35 ms 10.11.1.71
- [*] Nmap: Nmap scan report for 10.11.1.72
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 993 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 5.8p1 Debian 7ubuntu1 (Ubuntu Linux; protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 d3:2e:10:0d:48:90:ce:9a:33:fb:66:3f:a0:a6:94:48 (DSA)
- [*] Nmap: | 2048 ef:0a:3b:8e:3f:92:a4:5e:f0:ab:e7:7d:75:f0:de:0e (RSA)
- [*] Nmap: |_ 256 15:3a:65:3b:97:ed:e0:fc:85:bc:4b:53:48:22:61:b1 (ECDSA)
- [*] Nmap: 25/tcp open smtp JAMES smtpd 2.3.2
- [*] Nmap: |_smtp-commands: beta Hello nmap.scanme.org (10.11.0.96 [10.11.0.96]),
- [*] Nmap: 80/tcp open http Apache httpd 2.2.20 ((Ubuntu))
- [*] Nmap: |_http-server-header: Apache/2.2.20 (Ubuntu)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: 110/tcp open pop3 JAMES pop3d 2.3.2
- [*] Nmap: 111/tcp open rpcbind 2-4 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2,3,4 111/tcp rpcbind
- [*] Nmap: | 100000 2,3,4 111/udp rpcbind
- [*] Nmap: | 100003 2,3,4 2049/tcp nfs
- [*] Nmap: | 100003 2,3,4 2049/udp nfs
- [*] Nmap: | 100005 1,2,3 53680/tcp mountd
- [*] Nmap: | 100005 1,2,3 58036/udp mountd
- [*] Nmap: | 100021 1,3,4 37520/tcp nlockmgr
- [*] Nmap: | 100021 1,3,4 42345/udp nlockmgr
- [*] Nmap: | 100024 1 44863/udp status
- [*] Nmap: | 100024 1 59611/tcp status
- [*] Nmap: | 100227 2,3 2049/tcp nfs_acl
- [*] Nmap: |_ 100227 2,3 2049/udp nfs_acl
- [*] Nmap: 119/tcp open nntp JAMES nntpd (posting ok)
- [*] Nmap: 2049/tcp open nfs_acl 2-3 (RPC #100227)
- [*] Nmap: MAC Address: 00:50:56:89:55:06 (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 3.2 - 3.8 (94%), Linux 3.8 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.5 (94%), Linux 3.1 - 3.2 (93%), Linux 2.6.32 - 2.6.39 (92%), Linux 3.0 - 3.2 (91%), Linux 2.6.32 (91%), Linux 2.6.32 or 3.10 (91%), Linux 3.3 (91%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: beta; OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.71 ms 10.11.1.72
- [*] Nmap: Nmap scan report for 10.11.1.73
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 980 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 445/tcp open microsoft-ds Windows 7 Professional 7601 Service Pack 1 microsoft-ds (workgroup: WORKGROUP)
- [*] Nmap: 554/tcp open rtsp?
- [*] Nmap: 1100/tcp open java-rmi Java RMI Registry
- [*] Nmap: | rmi-dumpregistry:
- [*] Nmap: | creamtec/ajaxswing/JVMFactory
- [*] Nmap: | com.creamtec.ajaxswing.core.JVMFactory_Stub
- [*] Nmap: | @10.11.1.73:49157
- [*] Nmap: | extends
- [*] Nmap: | java.rmi.server.RemoteStub
- [*] Nmap: | extends
- [*] Nmap: |_ java.rmi.server.RemoteObject
- [*] Nmap: 2869/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- [*] Nmap: 3306/tcp open mysql?
- [*] Nmap: |_mysql-info: ERROR: Script execution failed (use -d to debug)
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: | ssl-cert: Subject: commonName=gamma
- [*] Nmap: | Not valid before: 2019-09-08T23:50:35
- [*] Nmap: |_Not valid after: 2020-03-09T23:50:35
- [*] Nmap: |_ssl-date: 2019-09-11T11:30:08+00:00; -16s from scanner time.
- [*] Nmap: 5357/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- [*] Nmap: |_http-server-header: Microsoft-HTTPAPI/2.0
- [*] Nmap: |_http-title: Service Unavailable
- [*] Nmap: 5800/tcp open vnc-http TightVNC (user: gamma; VNC TCP port: 5900)
- [*] Nmap: |_http-title: TightVNC desktop [gamma]
- [*] Nmap: 5900/tcp open vnc VNC (protocol 3.8)
- [*] Nmap: | vnc-info:
- [*] Nmap: | Protocol version: 3.8
- [*] Nmap: | Security types:
- [*] Nmap: | VNC Authentication (2)
- [*] Nmap: | Tight (16)
- [*] Nmap: | Tight auth subtypes:
- [*] Nmap: |_ STDV VNCAUTH_ (2)
- [*] Nmap: 8080/tcp open http Apache httpd 2.4.9 ((Win32) PHP/5.5.12)
- [*] Nmap: |_http-open-proxy: Proxy might be redirecting requests
- [*] Nmap: | http-robots.txt: 1 disallowed entry
- [*] Nmap: |_/testmysql.php
- [*] Nmap: |_http-server-header: Apache/2.4.9 (Win32) PHP/5.5.12
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: 10243/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- [*] Nmap: |_http-server-header: Microsoft-HTTPAPI/2.0
- [*] Nmap: |_http-title: Not Found
- [*] Nmap: 49152/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49153/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49154/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49155/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49156/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49157/tcp open rmiregistry Java RMI
- [*] Nmap: 49159/tcp open rmiregistry Java RMI
- [*] Nmap: MAC Address: 00:50:56:93:57:B9 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 2008|7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_server_2008:r2 cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7 or Windows Server 2008 R2
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: GAMMA; OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 1h45m34s, deviation: 3h31m41s, median: -16s
- [*] Nmap: |_nbstat: NetBIOS name: GAMMA, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:93:57:b9 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows 7 Professional 7601 Service Pack 1 (Windows 7 Professional 6.1)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_7::sp1:professional
- [*] Nmap: | Computer name: gamma
- [*] Nmap: | NetBIOS computer name: GAMMA\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T04:31:09-07:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: | smb2-security-mode:
- [*] Nmap: | 2.02:
- [*] Nmap: |_ Message signing enabled but not required
- [*] Nmap: | smb2-time:
- [*] Nmap: | date: 2019-09-11 07:31:08
- [*] Nmap: |_ start_date: 2018-10-18 14:09:11
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.92 ms 10.11.1.73
- [*] Nmap: Nmap scan report for 10.11.1.75
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 986 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 445/tcp open microsoft-ds Windows 7 Professional 7601 Service Pack 1 microsoft-ds (workgroup: WORKGROUP)
- [*] Nmap: 554/tcp open rtsp?
- [*] Nmap: 2869/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: | ssl-cert: Subject: commonName=bruce
- [*] Nmap: | Not valid before: 2019-09-09T04:16:00
- [*] Nmap: |_Not valid after: 2020-03-10T04:16:00
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:28+00:00; -3s from scanner time.
- [*] Nmap: 5357/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- [*] Nmap: |_http-server-header: Microsoft-HTTPAPI/2.0
- [*] Nmap: |_http-title: Service Unavailable
- [*] Nmap: 10243/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- [*] Nmap: |_http-server-header: Microsoft-HTTPAPI/2.0
- [*] Nmap: |_http-title: Not Found
- [*] Nmap: 49152/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49153/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49154/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49155/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49156/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49157/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: MAC Address: 00:50:56:93:72:F1 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: BRUCE; OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -14m12s, deviation: 28m19s, median: -3s
- [*] Nmap: |_nbstat: NetBIOS name: BRUCE, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:93:72:f1 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows 7 Professional 7601 Service Pack 1 (Windows 7 Professional 6.1)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_7::sp1:professional
- [*] Nmap: | Computer name: bruce
- [*] Nmap: | NetBIOS computer name: BRUCE\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T12:31:22+01:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: | smb2-security-mode:
- [*] Nmap: | 2.02:
- [*] Nmap: |_ Message signing enabled but not required
- [*] Nmap: | smb2-time:
- [*] Nmap: | date: 2019-09-11 07:31:22
- [*] Nmap: |_ start_date: 2019-09-10 11:37:22
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.71 ms 10.11.1.75
- [*] Nmap: Nmap scan report for 10.11.1.115
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 989 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp vsftpd 1.1.3
- [*] Nmap: | ftp-anon: Anonymous FTP login allowed (FTP code 230)
- [*] Nmap: |_drwxr-xr-x 2 0 0 4096 Feb 28 2003 pub
- [*] Nmap: 22/tcp open ssh OpenSSH 3.5p1 (protocol 1.99)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 36:70:a4:9f:32:47:ac:57:3f:ef:a1:ec:0b:ba:44:1b (RSA1)
- [*] Nmap: | 1024 64:79:7d:c6:a2:63:32:54:f0:d9:2b:f3:5d:c7:d2:69 (DSA)
- [*] Nmap: |_ 1024 48:fb:39:3d:30:82:50:de:66:69:c5:ca:45:62:c0:dc (RSA)
- [*] Nmap: |_sshv1: Server supports SSHv1
- [*] Nmap: 25/tcp open smtp?
- [*] Nmap: |_smtp-commands: Couldn't establish connection on port 25
- [*] Nmap: 80/tcp open http Apache httpd 2.0.40 ((Red Hat Linux))
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/2.0.40 (Red Hat Linux)
- [*] Nmap: |_http-title: Test Page for the Apache Web Server on Red Hat Linux
- [*] Nmap: 111/tcp open rpcbind 2 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2 111/tcp rpcbind
- [*] Nmap: | 100000 2 111/udp rpcbind
- [*] Nmap: | 100024 1 32768/tcp status
- [*] Nmap: | 100024 1 32768/udp status
- [*] Nmap: |_ 391002 2 32769/tcp sgi_fam
- [*] Nmap: 139/tcp open netbios-ssn Samba smbd (workgroup: MYGROUP)
- [*] Nmap: 143/tcp open imap UW imapd 2001.315rh
- [*] Nmap: |_imap-capabilities: OK SORT THREAD=REFERENCES IMAP4REV1 NAMESPACE MAILBOX-REFERRALS SCAN THREAD=ORDEREDSUBJECT CAPABILITY AUTH=LOGINA0001 STARTTLS LOGIN-REFERRALS MULTIAPPEND completed IDLE
- [*] Nmap: | ssl-cert: Subject: commonName=localhost.localdomain/organizationName=SomeOrganization/stateOrProvinceName=SomeState/countryName=--
- [*] Nmap: | Not valid before: 2007-01-16T06:07:45
- [*] Nmap: |_Not valid after: 2008-01-16T06:07:45
- [*] Nmap: |_ssl-date: 2019-09-11T11:29:24+00:00; -10s from scanner time.
- [*] Nmap: 199/tcp open smux Linux SNMP multiplexer
- [*] Nmap: 443/tcp open ssl/http Apache httpd 2.0.40 ((Red Hat Linux))
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/2.0.40 (Red Hat Linux)
- [*] Nmap: |_http-title: Test Page for the Apache Web Server on Red Hat Linux
- [*] Nmap: | ssl-cert: Subject: commonName=redhat/organizationName=ACME LOCAL LTD/stateOrProvinceName=Berkshire/countryName=GB
- [*] Nmap: | Not valid before: 2007-01-16T14:54:43
- [*] Nmap: |_Not valid after: 2008-01-16T14:54:43
- [*] Nmap: |_ssl-date: 2019-09-11T11:30:56+00:00; -10s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: | SSL2_DES_64_CBC_WITH_MD5
- [*] Nmap: |_ SSL2_RC4_64_WITH_MD5
- [*] Nmap: 3306/tcp open mysql MySQL (unauthorized)
- [*] Nmap: 32768/tcp open status 1 (RPC #100024)
- [*] Nmap: MAC Address: 00:50:56:89:39:7F (VMware)
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Linux 2.4.X
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.4.20
- [*] Nmap: OS details: Linux 2.4.20
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: tophat.acme.local; OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -10s, deviation: 0s, median: -10s
- [*] Nmap: |_nbstat: NetBIOS name: TOPHAT, NetBIOS user: <unknown>, NetBIOS MAC: <unknown> (unknown)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.23 ms 10.11.1.115
- [*] Nmap: Nmap scan report for 10.11.1.116
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 994 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp?
- [*] Nmap: 22/tcp open ssh OpenSSH 5.8p2_hpn13v11 (FreeBSD 20110503; protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 75:e8:80:6f:6c:2f:d2:51:1a:d6:c9:9e:e4:a2:4c:2f (DSA)
- [*] Nmap: | 2048 28:43:26:62:1d:07:f9:e3:9f:0b:1a:94:98:1a:74:45 (RSA)
- [*] Nmap: |_ 256 50:2f:db:dd:1a:8e:22:23:f8:dc:7b:65:c9:fc:8e:df (ECDSA)
- [*] Nmap: 80/tcp open http Apache httpd 2.4.6 ((FreeBSD) PHP/5.4.23)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/2.4.6 (FreeBSD) PHP/5.4.23
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: 110/tcp open tcpwrapped
- [*] Nmap: 143/tcp open tcpwrapped
- [*] Nmap: 3306/tcp open mysql MySQL (unauthorized)
- [*] Nmap: MAC Address: 00:50:56:89:10:91 (VMware)
- [*] Nmap: Aggressive OS guesses: FreeBSD 9.0-RELEASE - 10.3-RELEASE (97%), FreeBSD 9.0-RELEASE (93%), FreeBSD 7.0-RELEASE (91%), FreeBSD 7.1-PRERELEASE 7.2-STABLE (91%), m0n0wall 1.3b11 - 1.3b15 (FreeBSD 6.3) (91%), FreeBSD 8.1-RELEASE (91%), FreeBSD 8.0-RELEASE (91%), VMware ESXi 4.1.0 (91%), FreeBSD 8.2-RELEASE (90%), FreeBSD 7.0-RELEASE - 9.0-RELEASE (90%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: FreeBSD; CPE: cpe:/o:freebsd:freebsd
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.77 ms 10.11.1.116
- [*] Nmap: Nmap scan report for 10.11.1.125
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 999 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp Acritum Femitter Server ftpd
- [*] Nmap: | ftp-anon: Anonymous FTP login allowed (FTP code 230)
- [*] Nmap: | drw-rw-rw- 1 ftp ftp 0 Sep 23 2015 . [NSE: writeable]
- [*] Nmap: | drw-rw-rw- 1 ftp ftp 0 Sep 23 2015 .. [NSE: writeable]
- [*] Nmap: | -rw-rw-rw- 1 ftp ftp 11164 Dec 26 2006 house.jpg [NSE: writeable]
- [*] Nmap: | -rw-rw-rw- 1 ftp ftp 920 Jan 03 2007 index.htm [NSE: writeable]
- [*] Nmap: |_drw-rw-rw- 1 ftp ftp 0 Sep 10 00:10 Upload [NSE: writeable]
- [*] Nmap: |_ftp-bounce: bounce working!
- [*] Nmap: | ftp-syst:
- [*] Nmap: |_ SYST: Internet Component Suite
- [*] Nmap: MAC Address: 00:50:56:89:56:6C (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: WAP|general purpose|media device
- [*] Nmap: Running (JUST GUESSING): Apple embedded (90%), Microsoft Windows XP|2003|2000 (89%), RIM Tablet OS 2.X (85%)
- [*] Nmap: OS CPE: cpe:/h:apple:airport_extreme cpe:/o:microsoft:windows_xp::sp2 cpe:/o:microsoft:windows_server_2003::- cpe:/o:microsoft:windows_2000::sp4 cpe:/o:rim:tablet_os:2
- [*] Nmap: Aggressive OS guesses: Apple AirPort Extreme WAP (90%), Microsoft Windows Server 2003 SP0 or Windows XP SP2 (89%), Microsoft Windows XP SP3 (89%), Microsoft Windows 2000 SP4 (88%), Microsoft Windows XP SP3 or Small Business Server 2003 (88%), Microsoft Windows XP (88%), Microsoft Windows XP Home SP1 (French) (87%), Microsoft Windows XP Professional SP2 (French) (87%), Microsoft Windows XP SP2 (87%), Microsoft Windows XP Professional SP2 (firewall enabled) (86%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.15 ms 10.11.1.125
- [*] Nmap: Nmap scan report for 10.11.1.128
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 987 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp Microsoft ftpd 5.0
- [*] Nmap: 25/tcp open smtp Microsoft ESMTP 5.0.2195.6713
- [*] Nmap: | smtp-commands: dj.acme.local Hello [10.11.0.96], AUTH GSSAPI NTLM LOGIN, AUTH=LOGIN, TURN, ATRN, SIZE 2097152, ETRN, PIPELINING, DSN, ENHANCEDSTATUSCODES, 8bitmime, BINARYMIME, CHUNKING, VRFY, OK,
- [*] Nmap: |_ This server supports the following commands: HELO EHLO STARTTLS RCPT DATA RSET MAIL QUIT HELP AUTH TURN ATRN ETRN BDAT VRFY
- [*] Nmap: | smtp-ntlm-info:
- [*] Nmap: | Target_Name: DJ
- [*] Nmap: | NetBIOS_Domain_Name: DJ
- [*] Nmap: | NetBIOS_Computer_Name: DJ
- [*] Nmap: | DNS_Domain_Name: dj.acme.local
- [*] Nmap: | DNS_Computer_Name: dj.acme.local
- [*] Nmap: |_ Product_Version: 5.0.2195
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 5.0
- [*] Nmap: | http-cookie-flags:
- [*] Nmap: | /:
- [*] Nmap: | ASPSESSIONIDACRQSSRT:
- [*] Nmap: |_ httponly flag not set
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Microsoft-IIS/5.0
- [*] Nmap: |_http-title: Login
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 443/tcp open https?
- [*] Nmap: 445/tcp open microsoft-ds Windows 2000 microsoft-ds
- [*] Nmap: 1025/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1026/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1030/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 3372/tcp open msdtc Microsoft Distributed Transaction Coordinator (error)
- [*] Nmap: 5800/tcp open vnc-http TightVNC
- [*] Nmap: |_http-title: TightVNC desktop [dj]
- [*] Nmap: 5900/tcp open vnc VNC (protocol 3.8)
- [*] Nmap: | vnc-info:
- [*] Nmap: | Protocol version: 3.8
- [*] Nmap: | Security types:
- [*] Nmap: | VNC Authentication (2)
- [*] Nmap: | Tight (16)
- [*] Nmap: | Tight auth subtypes:
- [*] Nmap: |_ STDV VNCAUTH_ (2)
- [*] Nmap: MAC Address: 00:50:56:93:32:22 (VMware)
- [*] Nmap: Device type: general purpose|specialized|power-device
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2000|2003|7 (98%), Belkin embedded (89%), SMA embedded (89%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_2000::sp4:server cpe:/o:microsoft:windows_server_2003::sp2 cpe:/o:microsoft:windows_7
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (98%), Microsoft Windows 2000 Server SP4 or Windows XP Professional SP3 (91%), Microsoft Windows XP SP2 (91%), Microsoft Windows 2000 SP4 (90%), Microsoft Windows XP SP3 (90%), Microsoft Windows Server 2003 SP2 (89%), Belkin OmniView KVM switch or SMA Sunny WebBox solar panel monitor (89%), Microsoft Windows 7 (89%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: dj.acme.local; OSs: Windows, Windows 2000; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_2000
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -58m19s, deviation: 1h22m29s, median: -1h56m39s
- [*] Nmap: | ms-sql-info:
- [*] Nmap: | Windows server name: DJ
- [*] Nmap: | 10.11.1.128\MSSQLSERVER:
- [*] Nmap: | Instance name: MSSQLSERVER
- [*] Nmap: | Version:
- [*] Nmap: | name: Microsoft SQL Server 2000 RTM
- [*] Nmap: | number: 8.00.194.00
- [*] Nmap: | Product: Microsoft SQL Server 2000
- [*] Nmap: | Service pack level: RTM
- [*] Nmap: | Post-SP patches applied: false
- [*] Nmap: | TCP port: 27900
- [*] Nmap: | Named pipe: \\10.11.1.128\pipe\sql\query
- [*] Nmap: |_ Clustered: false
- [*] Nmap: |_nbstat: NetBIOS name: DJ, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:93:32:22 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows 2000 (Windows 2000 LAN Manager)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_2000::-
- [*] Nmap: | Computer name: dj
- [*] Nmap: | NetBIOS computer name: DJ\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T13:31:26+02:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.32 ms 10.11.1.128
- [*] Nmap: Nmap scan report for 10.11.1.133
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 549 filtered ports, 450 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http Microsoft-IIS
- [*] Nmap: | fingerprint-strings:
- [*] Nmap: | GetRequest, HTTPOptions:
- [*] Nmap: | HTTP/1.1 200 OK
- [*] Nmap: | Date: Wed, 11 Sep 2019 11:22:59 GMT
- [*] Nmap: | Server: Microsoft-IIS
- [*] Nmap: | Content-Type: text/html
- [*] Nmap: | Cache-control: private
- [*] Nmap: | Vary: Accept-Encoding
- [*] Nmap: | Content-Length: 619
- [*] Nmap: | Connection: close
- [*] Nmap: | <html>
- [*] Nmap: | <head>
- [*] Nmap: | <title>Let's play with the offsec team</title>
- [*] Nmap: | </head>
- [*] Nmap: | <body style="color: #FFFFFF; background-color: #000000;font-family: verdana;">
- [*] Nmap: | <center>
- [*] Nmap: | <div style="width:600px;height:399px;background-image:url(offsec-team.jpg);">
- [*] Nmap: | <form method="post" action="login.asp">
- [*] Nmap: | <table style="padding-top:170px;">
- [*] Nmap: | <tr>
- [*] Nmap: | <td>Username: </td><td><input type="text" name="username" value=""></td>
- [*] Nmap: | </tr>
- [*] Nmap: | <tr>
- [*] Nmap: | <td>Password: </td><td><input type="password" name="password"></td>
- [*] Nmap: | </tr>
- [*] Nmap: | <tr>
- [*] Nmap: | colspan="2" align="right"><input type="submit" name="submit" value="Enter"></td>
- [*] Nmap: | </tr>
- [*] Nmap: | </table>
- [*] Nmap: | </form>
- [*] Nmap: | </div>
- [*] Nmap: | </center>
- [*] Nmap: | </body>
- [*] Nmap: |_ </html>
- [*] Nmap: |_http-server-header: Microsoft-IIS
- [*] Nmap: |_http-title: Let's play with the offsec team
- [*] Nmap: 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
- [*] Nmap: SF-Port80-TCP:V=7.70%I=7%D=9/11%Time=5D78D922%P=i686-pc-linux-gnu%r(GetReq
- [*] Nmap: SF:uest,333,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Wed,\x2011\x20Sep\x202019\
- [*] Nmap: SF:x2011:22:59\x20GMT\r\nServer:\x20Microsoft-IIS\x20\x20\x20\x20\x20\x20\
- [*] Nmap: SF:x20\x20\x20\r\nContent-Type:\x20text/html\r\nCache-control:\x20private\
- [*] Nmap: SF:r\nVary:\x20Accept-Encoding\r\nContent-Length:\x20619\r\nConnection:\x2
- [*] Nmap: SF:0close\r\n\r\n<html>\n<head>\n<title>Let's\x20play\x20with\x20the\x20of
- [*] Nmap: SF:fsec\x20team</title>\n</head>\n<body\x20style=\"color:\x20#FFFFFF;\x20b
- [*] Nmap: SF:ackground-color:\x20#000000;font-family:\x20verdana;\">\n<center>\n<div
- [*] Nmap: SF:\x20style=\"width:600px;height:399px;background-image:url\(offsec-team\
- [*] Nmap: SF:.jpg\);\">\n<form\x20method=\"post\"\x20action=\"login\.asp\">\n<table\
- [*] Nmap: SF:x20style=\"padding-top:170px;\">\n<tr>\n<td>Username:\x20</td><td><inpu
- [*] Nmap: SF:t\x20type=\"text\"\x20name=\"username\"\x20value=\"\"></td>\n</tr>\n<tr
- [*] Nmap: SF:>\n<td>Password:\x20</td><td><input\x20type=\"password\"\x20name=\"pass
- [*] Nmap: SF:word\"></td>\n</tr>\n<tr>\n<td\x20colspan=\"2\"\x20align=\"right\"><inp
- [*] Nmap: SF:ut\x20type=\"submit\"\x20name=\"submit\"\x20value=\"Enter\"></td>\n</tr
- [*] Nmap: SF:>\n</table>\n</form>\n</div>\n</center>\n</body>\n</html>\n")%r(HTTPOpt
- [*] Nmap: SF:ions,333,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Wed,\x2011\x20Sep\x202019\
- [*] Nmap: SF:x2011:22:59\x20GMT\r\nServer:\x20Microsoft-IIS\x20\x20\x20\x20\x20\x20\
- [*] Nmap: SF:x20\x20\x20\r\nContent-Type:\x20text/html\r\nCache-control:\x20private\
- [*] Nmap: SF:r\nVary:\x20Accept-Encoding\r\nContent-Length:\x20619\r\nConnection:\x2
- [*] Nmap: SF:0close\r\n\r\n<html>\n<head>\n<title>Let's\x20play\x20with\x20the\x20of
- [*] Nmap: SF:fsec\x20team</title>\n</head>\n<body\x20style=\"color:\x20#FFFFFF;\x20b
- [*] Nmap: SF:ackground-color:\x20#000000;font-family:\x20verdana;\">\n<center>\n<div
- [*] Nmap: SF:\x20style=\"width:600px;height:399px;background-image:url\(offsec-team\
- [*] Nmap: SF:.jpg\);\">\n<form\x20method=\"post\"\x20action=\"login\.asp\">\n<table\
- [*] Nmap: SF:x20style=\"padding-top:170px;\">\n<tr>\n<td>Username:\x20</td><td><inpu
- [*] Nmap: SF:t\x20type=\"text\"\x20name=\"username\"\x20value=\"\"></td>\n</tr>\n<tr
- [*] Nmap: SF:>\n<td>Password:\x20</td><td><input\x20type=\"password\"\x20name=\"pass
- [*] Nmap: SF:word\"></td>\n</tr>\n<tr>\n<td\x20colspan=\"2\"\x20align=\"right\"><inp
- [*] Nmap: SF:ut\x20type=\"submit\"\x20name=\"submit\"\x20value=\"Enter\"></td>\n</tr
- [*] Nmap: SF:>\n</table>\n</form>\n</div>\n</center>\n</body>\n</html>\n");
- [*] Nmap: MAC Address: 00:50:56:89:7D:25 (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 2.6.32 (95%), HP MSM410 WAP (91%), Linux 2.6.35 (90%), IGEL UD3 thin client (Linux 2.6) (90%), IPFire 2.11 firewall (Linux 2.6.32) (90%), DD-WRT v24-sp1 (Linux 2.4) (89%), Linux 3.0 - 3.2 (88%), DD-WRT v23 (Linux 2.4.34) (88%), Linux 2.6.15 - 2.6.26 (likely embedded) (88%), Fortinet FortiOS 5.0.6 (88%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.60 ms 10.11.1.133
- [*] Nmap: Nmap scan report for 10.11.1.136
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 996 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 4.3p2 Debian 9 (protocol 2.0)
- [*] Nmap: |_auth-owners: root
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 88:23:98:0d:9d:8a:20:59:35:b8:14:12:14:d5:d0:44 (DSA)
- [*] Nmap: |_ 2048 6b:5d:04:71:76:78:56:96:56:92:a8:02:30:73:ee:fa (RSA)
- [*] Nmap: 113/tcp open ident
- [*] Nmap: |_auth-owners: identd
- [*] Nmap: 139/tcp open netbios-ssn Samba smbd 3.X - 4.X (workgroup: LOCAL)
- [*] Nmap: |_auth-owners: root
- [*] Nmap: 445/tcp open netbios-ssn Samba smbd 3.0.24 (workgroup: LOCAL)
- [*] Nmap: |_auth-owners: root
- [*] Nmap: MAC Address: 00:50:56:93:37:2B (VMware)
- [*] Nmap: Device type: general purpose|switch|printer|firewall|security-misc|WAP|remote management|specialized
- [*] Nmap: Running (JUST GUESSING): Linux 2.6.X|2.4.X (94%), Extreme Networks ExtremeXOS 12.X (93%), Kyocera embedded (93%), Barracuda Networks embedded (92%), AVM embedded (90%), Linksys embedded (90%), Netgear embedded (90%), Dell embedded (90%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.6 cpe:/o:extremenetworks:extremexos:12.5.4 cpe:/h:kyocera:cs-2560 cpe:/h:avm:fritz%21box_fon_wlan_7050 cpe:/h:linksys:wag200g cpe:/h:netgear:dg834gt cpe:/h:dell:remote_access_card:5 cpe:/o:linux:linux_kernel:2.4.21
- [*] Nmap: Aggressive OS guesses: Linux 2.6.15 - 2.6.26 (likely embedded) (94%), Linux 2.6.16 (94%), Extreme Networks ExtremeXOS 12.5.4 (93%), Kyocera CopyStar CS-2560 printer (93%), Linux 2.6.15 (Ubuntu) (93%), Linux 2.6.26 (93%), Barracuda Web Application Firewall 460 (92%), Linux 2.6.32 (92%), Barracuda Web Filter (92%), Linux 2.6.22 (92%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 2h01m37s, deviation: 2h52m03s, median: -2s
- [*] Nmap: |_nbstat: NetBIOS name: SUFFERANCE, NetBIOS user: <unknown>, NetBIOS MAC: <unknown> (unknown)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Unix (Samba 3.0.24)
- [*] Nmap: | NetBIOS computer name:
- [*] Nmap: | Workgroup: THINC.LOCAL\x00
- [*] Nmap: |_ System time: 2019-09-11T07:31:25-04:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: share (dangerous)
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.20 ms 10.11.1.136
- [*] Nmap: Nmap scan report for 10.11.1.141
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 997 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 4.0 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 fe:cd:bb:f6:36:d4:59:62:92:b4:10:e4:75:04:43:54 (DSA)
- [*] Nmap: |_ 1024 9a:99:25:75:ac:04:e5:f9:f7:21:c6:f5:88:4f:12:6a (RSA)
- [*] Nmap: 111/tcp open rpcbind 2 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2 111/tcp rpcbind
- [*] Nmap: |_ 100000 2 111/udp rpcbind
- [*] Nmap: 10000/tcp open http MiniServ 0.01 (Webmin httpd)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html; Charset=iso-8859-1).
- [*] Nmap: MAC Address: 00:50:56:89:65:3F (VMware)
- [*] Nmap: Device type: general purpose|firewall|proxy server|PBX|WAP|broadband router
- [*] Nmap: Running (JUST GUESSING): Linux 2.6.X (94%), Cisco embedded (91%), Riverbed embedded (91%), Ruckus embedded (90%), FreeBSD 6.X (89%), Zhone embedded (88%), AVM embedded (87%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.6.18 cpe:/o:linux:linux_kernel:2.6 cpe:/h:cisco:sa520 cpe:/h:riverbed:steelhead_200 cpe:/h:cisco:uc320w cpe:/h:ruckus:7363 cpe:/o:freebsd:freebsd:6.2 cpe:/h:avm:fritz%21box_fon_wlan_7170
- [*] Nmap: Aggressive OS guesses: Linux 2.6.18 (94%), Linux 2.6.9 (94%), Linux 2.6.9 - 2.6.27 (93%), Cisco SA520 firewall (Linux 2.6) (91%), Linux 2.6.11 (91%), Linux 2.6.28 (91%), Riverbed Steelhead 200 proxy server (91%), Linux 2.6.30 (90%), Linux 2.6.32 (90%), Linux 2.6.9 (CentOS 4.4) (90%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.06 ms 10.11.1.141
- [*] Nmap: Nmap scan report for 10.11.1.145
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 995 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 445/tcp open microsoft-ds Windows Server (R) 2008 Standard 6001 Service Pack 1 microsoft-ds (workgroup: WORKGROUP)
- [*] Nmap: 3389/tcp open ssl/ms-wbt-server?
- [*] Nmap: | ssl-cert: Subject: commonName=HELPDESK
- [*] Nmap: | Not valid before: 2019-09-10T08:36:52
- [*] Nmap: |_Not valid after: 2020-03-11T08:36:52
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:22+00:00; -3s from scanner time.
- [*] Nmap: 8080/tcp open http Apache Tomcat/Coyote JSP engine 1.1
- [*] Nmap: | http-cookie-flags:
- [*] Nmap: | /:
- [*] Nmap: | JSESSIONID:
- [*] Nmap: |_ httponly flag not set
- [*] Nmap: |_http-server-header: Apache-Coyote/1.1
- [*] Nmap: |_http-title: ManageEngine ServiceDesk Plus
- [*] Nmap: MAC Address: 00:50:56:89:78:BA (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: HELPDESK; OS: Windows; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_server_2008:r2
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 1h45m46s, deviation: 3h31m39s, median: -3s
- [*] Nmap: |_nbstat: NetBIOS name: HELPDESK, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:78:ba (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows Server (R) 2008 Standard 6001 Service Pack 1 (Windows Server (R) 2008 Standard 6.0)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_server_2008::sp1
- [*] Nmap: | Computer name: HELPDESK
- [*] Nmap: | NetBIOS computer name: HELPDESK\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T04:31:25-07:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: <blank>
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: | smb2-security-mode:
- [*] Nmap: | 2.02:
- [*] Nmap: |_ Message signing enabled but not required
- [*] Nmap: | smb2-time:
- [*] Nmap: | date: 2019-09-11 07:31:25
- [*] Nmap: |_ start_date: 2017-06-05 22:08:09
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.09 ms 10.11.1.145
- [*] Nmap: Nmap scan report for 10.11.1.146
- [*] Nmap: Host is up (0.26s latency).
- [*] Nmap: Not shown: 998 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp ProFTPD 1.3.3a
- [*] Nmap: 22/tcp open ssh OpenSSH 5.5p1 Debian 6 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 bb:1e:db:11:2a:c7:90:96:e8:0f:f1:ce:aa:14:6a:c1 (DSA)
- [*] Nmap: |_ 2048 67:62:39:ab:ef:7b:2d:e2:70:18:fd:7d:3d:65:bf:c7 (RSA)
- [*] Nmap: MAC Address: 00:50:56:89:5A:7F (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 2.6.32 (99%), HP MSM410 WAP (94%), Linux 2.6.35 (94%), IGEL UD3 thin client (Linux 2.6) (94%), IPFire 2.11 firewall (Linux 2.6.32) (93%), DD-WRT v24-sp1 (Linux 2.4) (92%), Linux 2.6.31 - 2.6.32 (92%), Extreme Networks ExtremeXOS 12.5.4 (91%), DD-WRT v23 (Linux 2.4.34) (91%), Linux 2.6.15 (Ubuntu) (91%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 264.55 ms 10.11.1.146
- [*] Nmap: Nmap scan report for 10.11.1.202
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 982 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp Microsoft ftpd 5.0
- [*] Nmap: |_ftp-anon: Anonymous FTP login allowed (FTP code 230)
- [*] Nmap: | ftp-syst:
- [*] Nmap: |_ SYST: Windows_NT version 5.0
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 5.0
- [*] Nmap: | http-cookie-flags:
- [*] Nmap: | /:
- [*] Nmap: | ASPSESSIONIDSSRCCBAQ:
- [*] Nmap: |_ httponly flag not set
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE COPY PROPFIND SEARCH LOCK UNLOCK DELETE PUT MOVE MKCOL PROPPATCH
- [*] Nmap: |_http-server-header: Microsoft-IIS/5.0
- [*] Nmap: |_http-title: Under Construction
- [*] Nmap: | http-webdav-scan:
- [*] Nmap: | WebDAV type: Unkown
- [*] Nmap: | Server Type: Microsoft-IIS/5.0
- [*] Nmap: | Public Options: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
- [*] Nmap: | Allowed Methods: OPTIONS, TRACE, GET, HEAD, COPY, PROPFIND, SEARCH, LOCK, UNLOCK
- [*] Nmap: |_ Server Date: Wed, 11 Sep 2019 11:28:18 GMT
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 443/tcp open https?
- [*] Nmap: 445/tcp open microsoft-ds Windows 2000 microsoft-ds
- [*] Nmap: 1029/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1032/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1033/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1038/tcp open oracle Oracle Database
- [*] Nmap: 1521/tcp open oracle-tns Oracle TNS Listener 9.2.0.1.0 (for 32-bit Windows)
- [*] Nmap: 2030/tcp open oracle-mts Oracle MTS Recovery Service
- [*] Nmap: 2100/tcp open ftp Oracle Enterprise XML DB ftpd 9.2.0.1.0
- [*] Nmap: | ftp-syst:
- [*] Nmap: |_ SYST: Unix Type:9.2.0.1 Version:Oracle XML DB
- [*] Nmap: 3372/tcp open msdtc Microsoft Distributed Transaction Coordinator (error)
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: 4443/tcp open ssl/pharos?
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:35+00:00; 0s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_DES_64_CBC_WITH_MD5
- [*] Nmap: |_ SSL2_RC4_64_WITH_MD5
- [*] Nmap: 7778/tcp open http Oracle HTTP Server Powered by Apache 1.3.22 (mod_plsql/3.0.9.8.3b mod_ssl/2.8.5 OpenSSL/0.9.6b mod_fastcgi/2.2.12 mod_oprocmgr/1.0 mod_perl/1.25)
- [*] Nmap: |_http-generator: Mozilla/4.72 [en] (WinNT; U) [Netscape]
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Oracle HTTP Server Powered by Apache/1.3.22 (Win32) mod_plsql/3.0.9.8.3b mod_ssl/2.8.5 OpenSSL/0.9.6b mod_fastcgi/2.2.12 mod_oprocmgr/1.0 mod_perl/1.25
- [*] Nmap: |_http-title: Oracle HTTP Server Index
- [*] Nmap: 8080/tcp open http Oracle XML DB Enterprise Edition httpd 9.2.0.1.0 (Oracle9i Enterprise Edition Release)
- [*] Nmap: | http-auth:
- [*] Nmap: | HTTP/1.1 401 Unauthorized\x0D
- [*] Nmap: |_ Basic realm=XDB
- [*] Nmap: |_http-server-header: Oracle XML DB/Oracle9i Enterprise Edition Release 9.2.0.1.0 - Production
- [*] Nmap: |_http-title: 400 Bad Request
- [*] Nmap: MAC Address: 00:50:56:89:2E:00 (VMware)
- [*] Nmap: Device type: general purpose|specialized|power-device
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2000|2003|7 (98%), Belkin embedded (89%), SMA embedded (89%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_2000::sp4:server cpe:/o:microsoft:windows_server_2003::sp2 cpe:/o:microsoft:windows_7
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (98%), Microsoft Windows XP SP2 (92%), Microsoft Windows 2000 Server SP4 or Windows XP Professional SP3 (91%), Microsoft Windows 2000 SP4 (91%), Microsoft Windows XP SP3 (91%), Microsoft Windows Server 2003 SP2 (90%), Belkin OmniView KVM switch or SMA Sunny WebBox solar panel monitor (89%), Microsoft Windows 7 (89%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: oracle; OSs: Windows, Windows 2000; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_2000
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -38m55s, deviation: 1h07m24s, median: 0s
- [*] Nmap: |_nbstat: NetBIOS name: ORACLE, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:2e:00 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows 2000 (Windows 2000 LAN Manager)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_2000::-
- [*] Nmap: | Computer name: oracle
- [*] Nmap: | NetBIOS computer name: ORACLE\x00
- [*] Nmap: | Domain name: acme.local
- [*] Nmap: | FQDN: oracle.acme.local
- [*] Nmap: |_ System time: 2019-09-11T13:31:28+02:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 241.50 ms 10.11.1.202
- [*] Nmap: Nmap scan report for 10.11.1.209
- [*] Nmap: Host is up (0.26s latency).
- [*] Nmap: Not shown: 995 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh SunSSH 1.1.5 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 b0:d1:14:4f:d2:43:20:e4:90:f7:ca:e3:8a:36:39:86 (DSA)
- [*] Nmap: |_ 1024 dd:36:f6:09:23:4c:c4:c3:44:d6:6e:2f:6a:ff:b3:12 (RSA)
- [*] Nmap: 80/tcp open http Apache httpd 1.3.41 ((Unix) mod_perl/1.31)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/1.3.41 (Unix) mod_perl/1.31
- [*] Nmap: |_http-title: Test Page for the SSL/TLS-aware Apache Installation on Web Site
- [*] Nmap: 111/tcp open rpcbind 2-4 (RPC #100000)
- [*] Nmap: 8009/tcp open ajp13 Apache Jserv (Protocol v1.3)
- [*] Nmap: |_ajp-methods: Failed to get a valid response for the OPTION request
- [*] Nmap: 8080/tcp open http Apache Tomcat/Coyote JSP engine 1.1
- [*] Nmap: |_http-favicon: Apache Tomcat
- [*] Nmap: |_http-server-header: Apache-Coyote/1.1
- [*] Nmap: |_http-title: Apache Tomcat/5.5.35
- [*] Nmap: MAC Address: 00:50:56:89:12:0C (VMware)
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Sun SunOS 10
- [*] Nmap: OS CPE: cpe:/o:sun:sunos:10
- [*] Nmap: OS details: Sun Solaris 10
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 256.39 ms 10.11.1.209
- [*] Nmap: Nmap scan report for 10.11.1.217
- [*] Nmap: Host is up (0.33s latency).
- [*] Nmap: Not shown: 989 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 1a:f6:e5:4c:f5:65:5c:a3:79:ce:e1:30:f9:5a:9c:af (DSA)
- [*] Nmap: |_ 2048 b1:9e:c8:ea:eb:4c:fc:55:cb:1e:4d:4c:40:6e:80:f2 (RSA)
- [*] Nmap: 25/tcp open smtp?
- [*] Nmap: |_smtp-commands: hotline.localdomain, PIPELINING, SIZE 10240000, VRFY, ETRN, ENHANCEDSTATUSCODES, 8BITMIME, DSN,
- [*] Nmap: 80/tcp open http Apache httpd 2.2.3
- [*] Nmap: |_http-server-header: Apache/2.2.3 (CentOS)
- [*] Nmap: |_http-title: Did not follow redirect to https://10.11.1.217/
- [*] Nmap: 110/tcp open pop3?
- [*] Nmap: 111/tcp open rpcbind 2 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2 111/tcp rpcbind
- [*] Nmap: | 100000 2 111/udp rpcbind
- [*] Nmap: | 100024 1 884/udp status
- [*] Nmap: |_ 100024 1 887/tcp status
- [*] Nmap: 143/tcp open imap?
- [*] Nmap: 443/tcp open ssl/http Apache httpd 2.2.3 ((CentOS))
- [*] Nmap: | http-robots.txt: 1 disallowed entry
- [*] Nmap: |_/
- [*] Nmap: |_http-server-header: Apache/2.2.3 (CentOS)
- [*] Nmap: |_http-title: Elastix - Login page
- [*] Nmap: | ssl-cert: Subject: commonName=localhost.localdomain/organizationName=SomeOrganization/stateOrProvinceName=SomeState/countryName=--
- [*] Nmap: | Not valid before: 2012-03-23T19:29:13
- [*] Nmap: |_Not valid after: 2013-03-23T19:29:13
- [*] Nmap: |_ssl-date: 2019-09-11T11:26:40+00:00; -1m59s from scanner time.
- [*] Nmap: 993/tcp open imaps?
- [*] Nmap: 995/tcp open pop3s?
- [*] Nmap: 3306/tcp open mysql?
- [*] Nmap: |_mysql-info: ERROR: Script execution failed (use -d to debug)
- [*] Nmap: 4445/tcp open upnotifyp?
- [*] Nmap: MAC Address: 00:50:56:89:57:05 (VMware)
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Linux 2.6.X
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.6.18
- [*] Nmap: OS details: Linux 2.6.18
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: 127.0.0.1
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -1m59s, deviation: 0s, median: -1m59s
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 332.33 ms 10.11.1.217
- [*] Nmap: Nmap scan report for 10.11.1.218
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 997 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 445/tcp open microsoft-ds Windows 7 Professional 7601 Service Pack 1 microsoft-ds (workgroup: THINC)
- [*] Nmap: MAC Address: 00:50:56:93:5C:EA (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 2008|7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_server_2008:r2 cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7 or Windows Server 2008 R2
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: OBSERVER; OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -2083d01h13m04s, deviation: 4h38m41s, median: -2083d03h53m59s
- [*] Nmap: |_nbstat: NetBIOS name: OBSERVER, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:93:5c:ea (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows 7 Professional 7601 Service Pack 1 (Windows 7 Professional 6.1)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_7::sp1:professional
- [*] Nmap: | Computer name: observer
- [*] Nmap: | NetBIOS computer name: OBSERVER\x00
- [*] Nmap: | Domain name: thinc.local
- [*] Nmap: | Forest name: thinc.local
- [*] Nmap: | FQDN: observer.thinc.local
- [*] Nmap: |_ System time: 2013-12-27T23:37:33-08:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: <blank>
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: | smb2-security-mode:
- [*] Nmap: | 2.02:
- [*] Nmap: |_ Message signing enabled but not required
- [*] Nmap: | smb2-time:
- [*] Nmap: | date: 2013-12-28 02:37:35
- [*] Nmap: |_ start_date: 2013-12-27 16:08:12
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 240.45 ms 10.11.1.218
- [*] Nmap: Nmap scan report for 10.11.1.219
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 999 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http Apache httpd
- [*] Nmap: |_http-server-header: Apache
- [*] Nmap: |_http-title: Apache2 Ubuntu Default Page: It works
- [*] Nmap: MAC Address: 00:50:56:89:06:25 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running (JUST GUESSING): Linux 3.X|4.X (90%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4
- [*] Nmap: Aggressive OS guesses: Linux 3.10 - 3.16 (90%), Linux 3.11 - 4.1 (89%), Linux 4.4 (89%), Linux 3.2.0 (87%), Linux 3.16 (86%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.22 ms 10.11.1.219
- [*] Nmap: Nmap scan report for 10.11.1.220
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 980 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp FileZilla ftpd 0.9.34 beta
- [*] Nmap: | ftp-syst:
- [*] Nmap: |_ SYST: UNIX emulated by FileZilla
- [*] Nmap: 53/tcp open domain Microsoft DNS 6.1.7601 (1DB15D39) (Windows Server 2008 R2 SP1)
- [*] Nmap: | dns-nsid:
- [*] Nmap: |_ bind.version: Microsoft DNS 6.1.7601 (1DB15D39)
- [*] Nmap: 88/tcp open kerberos-sec Microsoft Windows Kerberos (server time: 2013-12-28 07:37:03Z)
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 389/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: thinc.local, Site: Default-First-Site-Name)
- [*] Nmap: 445/tcp open microsoft-ds Windows Server 2008 R2 Standard 7601 Service Pack 1 microsoft-ds (workgroup: THINC)
- [*] Nmap: 464/tcp open kpasswd5?
- [*] Nmap: 593/tcp open ncacn_http Microsoft Windows RPC over HTTP 1.0
- [*] Nmap: 636/tcp open tcpwrapped
- [*] Nmap: 3268/tcp open ldap Microsoft Windows Active Directory LDAP (Domain: thinc.local, Site: Default-First-Site-Name)
- [*] Nmap: 3269/tcp open tcpwrapped
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: | ssl-cert: Subject: commonName=master.thinc.local
- [*] Nmap: | Not valid before: 2013-12-27T07:37:01
- [*] Nmap: |_Not valid after: 2014-06-28T07:37:01
- [*] Nmap: |_ssl-date: 2013-12-28T07:37:44+00:00; -5y257d03h53m03s from scanner time.
- [*] Nmap: 49152/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49153/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49154/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49155/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49157/tcp open ncacn_http Microsoft Windows RPC over HTTP 1.0
- [*] Nmap: 49158/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49165/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: MAC Address: 00:50:56:93:3B:04 (VMware)
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: MASTER; OS: Windows; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_server_2008:r2:sp1
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -2083d01h53m07s, deviation: 4h01m09s, median: -2083d03h54m02s
- [*] Nmap: |_nbstat: NetBIOS name: MASTER, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:93:3b:04 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows Server 2008 R2 Standard 7601 Service Pack 1 (Windows Server 2008 R2 Standard 6.1)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_server_2008::sp1
- [*] Nmap: | Computer name: master
- [*] Nmap: | NetBIOS computer name: MASTER\x00
- [*] Nmap: | Domain name: thinc.local
- [*] Nmap: | Forest name: thinc.local
- [*] Nmap: | FQDN: master.thinc.local
- [*] Nmap: |_ System time: 2013-12-27T23:37:31-08:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: <blank>
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: required
- [*] Nmap: | smb2-security-mode:
- [*] Nmap: | 2.02:
- [*] Nmap: |_ Message signing enabled and required
- [*] Nmap: | smb2-time:
- [*] Nmap: | date: 2013-12-28 02:37:31
- [*] Nmap: |_ start_date: 2013-12-28 11:16:39
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.49 ms 10.11.1.220
- [*] Nmap: Nmap scan report for 10.11.1.221
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 995 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 53/tcp open domain Microsoft DNS 6.0.6001 (17714650) (Windows Server 2008 SP1)
- [*] Nmap: | dns-nsid:
- [*] Nmap: |_ bind.version: Microsoft DNS 6.0.6001 (17714650)
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 3389/tcp open ssl/ms-wbt-server?
- [*] Nmap: | ssl-cert: Subject: commonName=slave.thinc.local
- [*] Nmap: | Not valid before: 2013-12-26T21:08:51
- [*] Nmap: |_Not valid after: 2014-06-27T21:08:51
- [*] Nmap: |_ssl-date: 2013-12-28T07:37:28+00:00; -5y257d03h51m54s from scanner time.
- [*] Nmap: 5357/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- [*] Nmap: |_http-server-header: Microsoft-HTTPAPI/2.0
- [*] Nmap: |_http-title: Service Unavailable
- [*] Nmap: 49158/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: MAC Address: 00:50:56:93:18:E2 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows_server_2008::sp1, cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -2083d03h51m54s, deviation: 0s, median: -2083d03h51m54s
- [*] Nmap: |_nbstat: NetBIOS name: SLAVE, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:93:18:e2 (VMware)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 237.13 ms 10.11.1.221
- [*] Nmap: Nmap scan report for 10.11.1.223
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 987 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http Apache httpd 2.2.14 (DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1
- [*] Nmap: |_http-title: Index of /
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 443/tcp open ssl/http Apache httpd 2.2.14 (DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1
- [*] Nmap: |_http-title: Index of /
- [*] Nmap: | ssl-cert: Subject: commonName=localhost
- [*] Nmap: | Not valid before: 2009-11-10T23:48:47
- [*] Nmap: |_Not valid after: 2019-11-08T23:48:47
- [*] Nmap: |_ssl-date: 2019-09-11T11:28:58+00:00; -5s from scanner time.
- [*] Nmap: | sslv2:
- [*] Nmap: | SSLv2 supported
- [*] Nmap: | ciphers:
- [*] Nmap: | SSL2_DES_192_EDE3_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_WITH_MD5
- [*] Nmap: | SSL2_RC4_128_EXPORT40_WITH_MD5
- [*] Nmap: | SSL2_IDEA_128_CBC_WITH_MD5
- [*] Nmap: | SSL2_RC2_128_CBC_WITH_MD5
- [*] Nmap: |_ SSL2_DES_64_CBC_WITH_MD5
- [*] Nmap: 445/tcp open microsoft-ds Windows Server (R) 2008 Standard 6001 Service Pack 1 microsoft-ds (workgroup: WORKGROUP)
- [*] Nmap: 3306/tcp open mysql?
- [*] Nmap: |_mysql-info: ERROR: Script execution failed (use -d to debug)
- [*] Nmap: 3389/tcp open ssl/ms-wbt-server?
- [*] Nmap: | ssl-cert: Subject: commonName=Jeff
- [*] Nmap: | Not valid before: 2019-09-09T03:47:08
- [*] Nmap: |_Not valid after: 2020-03-10T03:47:08
- [*] Nmap: |_ssl-date: 2019-09-11T11:29:01+00:00; -5s from scanner time.
- [*] Nmap: 49152/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49153/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49154/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49155/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49156/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49157/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: MAC Address: 00:50:56:89:32:E3 (VMware)
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 2008|7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_server_2008:r2 cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7 or Windows Server 2008 R2
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Hosts: localhost, JEFF; OS: Windows; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_server_2008:r2
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 1h24m25s, deviation: 3h08m58s, median: -5s
- [*] Nmap: |_nbstat: NetBIOS name: JEFF, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:32:e3 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows Server (R) 2008 Standard 6001 Service Pack 1 (Windows Server (R) 2008 Standard 6.0)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_server_2008::sp1
- [*] Nmap: | Computer name: Jeff
- [*] Nmap: | NetBIOS computer name: JEFF\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T04:31:30-07:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: | smb2-security-mode:
- [*] Nmap: | 2.02:
- [*] Nmap: |_ Message signing enabled but not required
- [*] Nmap: | smb2-time:
- [*] Nmap: | date: 2019-09-11 07:31:30
- [*] Nmap: |_ start_date: 2016-05-22 08:28:08
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.58 ms 10.11.1.223
- [*] Nmap: Nmap scan report for 10.11.1.226
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 998 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp GuildFTPd
- [*] Nmap: 3389/tcp closed ms-wbt-server
- [*] Nmap: MAC Address: 00:50:56:89:51:F6 (VMware)
- [*] Nmap: Device type: general purpose|WAP
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2003|2000 (94%), Apple embedded (89%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_server_2003::sp2 cpe:/h:apple:airport_extreme cpe:/o:microsoft:windows_2000::sp4
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (94%), Microsoft Windows Server 2003 SP2 (92%), Microsoft Windows Server 2003 (90%), Apple AirPort Extreme WAP (89%), Microsoft Windows 2000 SP4 (88%), Microsoft Windows XP SP3 (87%), Microsoft Windows Server 2003 SP1 or SP2 (86%), Microsoft Windows Server 2003 SP1 (85%), Microsoft Windows XP SP2 (85%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.61 ms 10.11.1.226
- [*] Nmap: Nmap scan report for 10.11.1.227
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 987 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open ftp Microsoft ftpd 5.0
- [*] Nmap: |_ftp-anon: Anonymous FTP login allowed (FTP code 230)
- [*] Nmap: | ftp-syst:
- [*] Nmap: |_ SYST: Windows_NT version 5.0
- [*] Nmap: 25/tcp open smtp Microsoft ESMTP 5.0.2195.5329
- [*] Nmap: | smtp-commands: jd.acme.local Hello [10.11.0.96], AUTH GSSAPI NTLM LOGIN, AUTH=LOGIN, TURN, ATRN, SIZE 2097152, ETRN, PIPELINING, DSN, ENHANCEDSTATUSCODES, 8bitmime, BINARYMIME, CHUNKING, VRFY, OK,
- [*] Nmap: |_ This server supports the following commands: HELO EHLO STARTTLS RCPT DATA RSET MAIL QUIT HELP AUTH TURN ATRN ETRN BDAT VRFY
- [*] Nmap: | smtp-ntlm-info:
- [*] Nmap: | Target_Name: JD
- [*] Nmap: | NetBIOS_Domain_Name: JD
- [*] Nmap: | NetBIOS_Computer_Name: JD
- [*] Nmap: | DNS_Domain_Name: jd.acme.local
- [*] Nmap: | DNS_Computer_Name: jd.acme.local
- [*] Nmap: |_ Product_Version: 5.0.2195
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 5.0
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE COPY PROPFIND SEARCH LOCK UNLOCK DELETE PUT MOVE MKCOL PROPPATCH
- [*] Nmap: |_http-server-header: Microsoft-IIS/5.0
- [*] Nmap: |_http-title: Directory Listing Denied
- [*] Nmap: | http-webdav-scan:
- [*] Nmap: | WebDAV type: Unkown
- [*] Nmap: | Server Type: Microsoft-IIS/5.0
- [*] Nmap: | Public Options: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
- [*] Nmap: | Allowed Methods: OPTIONS, TRACE, GET, HEAD, COPY, PROPFIND, SEARCH, LOCK, UNLOCK
- [*] Nmap: |_ Server Date: Wed, 11 Sep 2019 11:29:07 GMT
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 443/tcp open https?
- [*] Nmap: 445/tcp open microsoft-ds Windows 2000 microsoft-ds
- [*] Nmap: 1025/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1026/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 1028/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 3372/tcp open msdtc Microsoft Distributed Transaction Coordinator (error)
- [*] Nmap: 5800/tcp open vnc-http RealVNC 4.0 (resolution: 400x250; VNC TCP port: 5900)
- [*] Nmap: |_http-server-header: RealVNC/4.0
- [*] Nmap: |_http-title: VNC viewer for Java
- [*] Nmap: 5900/tcp open vnc VNC (protocol 3.8)
- [*] Nmap: | vnc-info:
- [*] Nmap: | Protocol version: 3.8
- [*] Nmap: | Security types:
- [*] Nmap: |_ VNC Authentication (2)
- [*] Nmap: MAC Address: 00:50:56:89:0E:65 (VMware)
- [*] Nmap: Device type: general purpose|specialized|power-device
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2000|2003|7 (98%), Belkin embedded (89%), SMA embedded (89%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_2000::sp4:server cpe:/o:microsoft:windows_server_2003::sp2 cpe:/o:microsoft:windows_7
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (98%), Microsoft Windows 2000 Server SP4 or Windows XP Professional SP3 (91%), Microsoft Windows XP SP2 (91%), Microsoft Windows 2000 SP4 (90%), Microsoft Windows XP SP3 (90%), Microsoft Windows Server 2003 SP2 (90%), Belkin OmniView KVM switch or SMA Sunny WebBox solar panel monitor (89%), Microsoft Windows 7 (89%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: jd.acme.local; OSs: Windows, Windows 2000; CPE: cpe:/o:microsoft:windows, cpe:/o:microsoft:windows_2000
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -58m56s, deviation: 1h23m07s, median: -1h57m43s
- [*] Nmap: | ms-sql-info:
- [*] Nmap: | Windows server name: JD
- [*] Nmap: | 10.11.1.227\MSSQLSERVER:
- [*] Nmap: | Instance name: MSSQLSERVER
- [*] Nmap: | Version:
- [*] Nmap: | name: Microsoft SQL Server 2000 RTM
- [*] Nmap: | number: 8.00.194.00
- [*] Nmap: | Product: Microsoft SQL Server 2000
- [*] Nmap: | Service pack level: RTM
- [*] Nmap: | Post-SP patches applied: false
- [*] Nmap: | TCP port: 27900
- [*] Nmap: | Named pipe: \\10.11.1.227\pipe\sql\query
- [*] Nmap: |_ Clustered: false
- [*] Nmap: |_nbstat: NetBIOS name: JD, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:0e:65 (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows 2000 (Windows 2000 LAN Manager)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_2000::-
- [*] Nmap: | Computer name: jd
- [*] Nmap: | NetBIOS computer name: JD\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T13:31:26+02:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.49 ms 10.11.1.227
- [*] Nmap: Nmap scan report for 10.11.1.229
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 988 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 21/tcp open tcpwrapped
- [*] Nmap: 23/tcp closed telnet
- [*] Nmap: 25/tcp open smtp hMailServer smtpd
- [*] Nmap: | smtp-commands: MAIL, SIZE 20480000, AUTH LOGIN,
- [*] Nmap: |_ 211 DATA HELO EHLO MAIL NOOP QUIT RCPT RSET SAML TURN VRFY
- [*] Nmap: 80/tcp open http Microsoft IIS httpd 6.0
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE DELETE COPY MOVE PROPFIND PROPPATCH SEARCH MKCOL LOCK UNLOCK PUT
- [*] Nmap: |_http-server-header: Microsoft-IIS/6.0
- [*] Nmap: |_http-title: 10.11.1.229 - /
- [*] Nmap: | http-webdav-scan:
- [*] Nmap: | WebDAV type: Unkown
- [*] Nmap: | Server Type: Microsoft-IIS/6.0
- [*] Nmap: | Public Options: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
- [*] Nmap: | Allowed Methods: OPTIONS, TRACE, GET, HEAD, DELETE, COPY, MOVE, PROPFIND, PROPPATCH, SEARCH, MKCOL, LOCK, UNLOCK
- [*] Nmap: |_ Server Date: Wed, 11 Sep 2019 11:29:22 GMT
- [*] Nmap: 110/tcp open pop3 hMailServer pop3d
- [*] Nmap: |_pop3-capabilities: ERROR: Script execution failed (use -d to debug)
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Windows Server 2003 3790 Service Pack 1 netbios-ssn
- [*] Nmap: 143/tcp open imap hMailServer imapd
- [*] Nmap: |_imap-capabilities: OK SORT ACL IMAP4rev1 CHILDREN NAMESPACE IMAP4 QUOTA CAPABILITY RIGHTS=texkA0001 completed IDLE
- [*] Nmap: 443/tcp closed https
- [*] Nmap: 1025/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 2869/tcp closed icslap
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: MAC Address: 00:50:56:93:03:7A (VMware)
- [*] Nmap: Device type: general purpose|media device
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2003|2000|PocketPC/CE (95%), Motorola embedded (86%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_server_2003::sp2 cpe:/o:microsoft:windows_2000::sp4:server cpe:/o:microsoft:windows_ce:5.0 cpe:/h:motorola:vip1216
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (95%), Microsoft Windows Server 2003 SP2 (93%), Microsoft Windows XP SP3 (90%), Microsoft Windows Server 2003 SP1 or SP2 (88%), Microsoft Windows XP SP2 (87%), Microsoft Windows Server 2003 SP1 (87%), Microsoft Windows Server 2003 SP0 - SP2 (87%), Microsoft Windows Server 2003 (87%), Microsoft Windows 2000 Server SP4 or Windows XP Professional SP3 (86%), Microsoft Windows 2000 SP4 (86%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: MAIL; OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 2h31m14s, deviation: 3h33m58s, median: -4s
- [*] Nmap: |_nbstat: NetBIOS name: MAIL, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:93:03:7a (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows Server 2003 3790 Service Pack 1 (Windows Server 2003 5.2)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_server_2003::sp1
- [*] Nmap: | Computer name: mail
- [*] Nmap: | NetBIOS computer name: MAIL\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T06:31:53-05:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: |_smb2-time: Protocol negotiation failed (SMB2)
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.51 ms 10.11.1.229
- [*] Nmap: Nmap scan report for 10.11.1.230
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 989 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 80/tcp open http GoAhead WebServer
- [*] Nmap: |_http-server-header: GoAhead-Webs
- [*] Nmap: | http-title: HP Power Manager
- [*] Nmap: |_Requested resource was http://10.11.1.230/index.asp
- [*] Nmap: 135/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- [*] Nmap: 445/tcp open microsoft-ds Windows 7 Ultimate N 7600 microsoft-ds (workgroup: WORKGROUP)
- [*] Nmap: 3389/tcp open ssl/ms-wbt-server?
- [*] Nmap: | ssl-cert: Subject: commonName=kevin
- [*] Nmap: | Not valid before: 2019-09-08T21:36:17
- [*] Nmap: |_Not valid after: 2020-03-09T21:36:17
- [*] Nmap: |_ssl-date: 2019-09-11T11:30:28+00:00; -6s from scanner time.
- [*] Nmap: 49152/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49153/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49154/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49155/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49156/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: 49157/tcp open msrpc Microsoft Windows RPC
- [*] Nmap: MAC Address: 00:50:56:89:1F:2A (VMware)
- [*] Nmap: Device type: general purpose
- [*] Nmap: Running: Microsoft Windows 7
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_7
- [*] Nmap: OS details: Microsoft Windows 7
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: Host: KEVIN; OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: 1h45m27s, deviation: 3h31m05s, median: -6s
- [*] Nmap: |_nbstat: NetBIOS name: KEVIN, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:1f:2a (VMware)
- [*] Nmap: | smb-os-discovery:
- [*] Nmap: | OS: Windows 7 Ultimate N 7600 (Windows 7 Ultimate N 6.1)
- [*] Nmap: | OS CPE: cpe:/o:microsoft:windows_7::-
- [*] Nmap: | Computer name: kevin
- [*] Nmap: | NetBIOS computer name: KEVIN\x00
- [*] Nmap: | Workgroup: WORKGROUP\x00
- [*] Nmap: |_ System time: 2019-09-11T04:31:33-07:00
- [*] Nmap: | smb-security-mode:
- [*] Nmap: | account_used: guest
- [*] Nmap: | authentication_level: user
- [*] Nmap: | challenge_response: supported
- [*] Nmap: |_ message_signing: disabled (dangerous, but default)
- [*] Nmap: | smb2-security-mode:
- [*] Nmap: | 2.02:
- [*] Nmap: |_ Message signing enabled but not required
- [*] Nmap: | smb2-time:
- [*] Nmap: | date: 2019-09-11 07:31:33
- [*] Nmap: |_ start_date: 2016-05-22 08:55:46
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.07 ms 10.11.1.230
- [*] Nmap: Nmap scan report for 10.11.1.234
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 998 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 5.3p1 Debian 3ubuntu3 (Ubuntu Linux; protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 2c:83:67:02:29:20:87:99:87:55:95:92:6c:8d:a4:a3 (DSA)
- [*] Nmap: |_ 2048 6b:91:08:a8:c0:90:ac:68:bd:c9:cd:9c:be:69:2b:ac (RSA)
- [*] Nmap: 80/tcp open http Apache httpd 2.2.14 ((Ubuntu))
- [*] Nmap: |_http-server-header: Apache/2.2.14 (Ubuntu)
- [*] Nmap: |_http-title: Business Statistics | New Server for Thinc's Business Sta...
- [*] Nmap: MAC Address: 00:50:56:89:0F:AD (VMware)
- [*] Nmap: Device type: general purpose|terminal|WAP|firewall|security-misc|switch
- [*] Nmap: Running (JUST GUESSING): Linux 2.6.X|2.4.X (95%), IGEL embedded (95%), HP embedded (94%), IPFire 2.X (93%), Fortinet FortiOS 5.X (92%), Check Point embedded (91%), Extreme Networks ExtremeXOS 12.X (91%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:2.6 cpe:/h:igel:ud3 cpe:/h:hp:msm410 cpe:/o:ipfire:ipfire:2.11 cpe:/o:linux:linux_kernel:2.4 cpe:/o:fortinet:fortios:5.0.6 cpe:/o:extremenetworks:extremexos:12.5.4
- [*] Nmap: Aggressive OS guesses: Linux 2.6.32 (95%), Linux 2.6.35 (95%), IGEL UD3 thin client (Linux 2.6) (95%), HP MSM410 WAP (94%), IPFire 2.11 firewall (Linux 2.6.32) (93%), DD-WRT v24-sp1 (Linux 2.4) (92%), Fortinet FortiOS 5.0.6 (92%), Linux 2.6.31 - 2.6.32 (92%), Check Point UTM-1 Edge X firewall (91%), Extreme Networks ExtremeXOS 12.5.4 (91%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.73 ms 10.11.1.234
- [*] Nmap: Nmap scan report for 10.11.1.237
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 996 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 6.0p1 Debian 4 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 fc:89:ba:50:c2:ea:2d:ab:b9:19:f1:f9:0a:b4:c0:5a (DSA)
- [*] Nmap: | 2048 de:2d:b8:bd:43:8a:c3:28:2b:d3:22:84:d0:6c:e0:9d (RSA)
- [*] Nmap: |_ 256 a5:58:4d:9d:e8:61:de:55:83:e2:71:6b:5d:ad:83:e2 (ECDSA)
- [*] Nmap: 80/tcp open http Apache httpd 2.2.22 ((Debian))
- [*] Nmap: |_http-server-header: Apache/2.2.22 (Debian)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: 111/tcp open rpcbind 2-4 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2,3,4 111/tcp rpcbind
- [*] Nmap: | 100000 2,3,4 111/udp rpcbind
- [*] Nmap: | 100024 1 43033/tcp status
- [*] Nmap: |_ 100024 1 51243/udp status
- [*] Nmap: 443/tcp open ssl/http Apache httpd 2.2.22 ((Debian))
- [*] Nmap: |_http-server-header: Apache/2.2.22 (Debian)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: | ssl-cert: Subject: commonName=localhost
- [*] Nmap: | Not valid before: 2013-12-26T16:25:05
- [*] Nmap: |_Not valid after: 2023-12-24T16:25:05
- [*] Nmap: |_ssl-date: 2019-09-11T11:29:29+00:00; -12s from scanner time.
- [*] Nmap: MAC Address: 00:50:56:89:67:4E (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 3.2 - 3.8 (95%), Linux 3.8 (95%), WatchGuard Fireware 11.8 (95%), Linux 3.5 (93%), Linux 3.1 - 3.2 (93%), Linux 2.6.32 - 2.6.39 (93%), Linux 3.0 - 3.2 (92%), Linux 2.6.32 (91%), Linux 2.6.32 or 3.10 (91%), Linux 3.0 or 3.5 (91%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -12s, deviation: 0s, median: -12s
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.85 ms 10.11.1.237
- [*] Nmap: Nmap scan report for 10.11.1.238
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 996 closed ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 6.0p1 Debian 4 (protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 fc:89:ba:50:c2:ea:2d:ab:b9:19:f1:f9:0a:b4:c0:5a (DSA)
- [*] Nmap: | 2048 de:2d:b8:bd:43:8a:c3:28:2b:d3:22:84:d0:6c:e0:9d (RSA)
- [*] Nmap: |_ 256 a5:58:4d:9d:e8:61:de:55:83:e2:71:6b:5d:ad:83:e2 (ECDSA)
- [*] Nmap: 80/tcp open http Apache httpd 2.2.22 ((Debian))
- [*] Nmap: |_http-server-header: Apache/2.2.22 (Debian)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: 111/tcp open rpcbind 2-4 (RPC #100000)
- [*] Nmap: | rpcinfo:
- [*] Nmap: | program version port/proto service
- [*] Nmap: | 100000 2,3,4 111/tcp rpcbind
- [*] Nmap: | 100000 2,3,4 111/udp rpcbind
- [*] Nmap: | 100024 1 39665/tcp status
- [*] Nmap: |_ 100024 1 58526/udp status
- [*] Nmap: 443/tcp open ssl/http Apache httpd 2.2.22 ((Debian))
- [*] Nmap: |_http-server-header: Apache/2.2.22 (Debian)
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: | ssl-cert: Subject: commonName=localhost
- [*] Nmap: | Not valid before: 2013-12-26T16:25:05
- [*] Nmap: |_Not valid after: 2023-12-24T16:25:05
- [*] Nmap: |_ssl-date: 2019-09-11T11:30:37+00:00; -9s from scanner time.
- [*] Nmap: MAC Address: 00:50:56:89:38:1C (VMware)
- [*] Nmap: Aggressive OS guesses: Linux 3.2 - 3.8 (94%), Linux 3.5 (94%), WatchGuard Fireware 11.8 (94%), Linux 3.1 - 3.2 (93%), Linux 3.8 (93%), Linux 2.6.32 - 2.6.39 (92%), Linux 2.6.32 or 3.10 (91%), Linux 3.3 (91%), Linux 2.6.36 (91%), Linux 3.11 - 4.1 (91%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: Host script results:
- [*] Nmap: |_clock-skew: mean: -9s, deviation: 0s, median: -9s
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 238.05 ms 10.11.1.238
- [*] Nmap: Nmap scan report for 10.11.1.247
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 999 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 3389/tcp open ms-wbt-server Microsoft Terminal Service
- [*] Nmap: MAC Address: 00:50:56:89:4B:D3 (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose|WAP
- [*] Nmap: Running (JUST GUESSING): Microsoft Windows XP|2000|2003 (96%), Apple embedded (90%)
- [*] Nmap: OS CPE: cpe:/o:microsoft:windows_xp cpe:/o:microsoft:windows_2000::sp4 cpe:/h:apple:airport_extreme cpe:/o:microsoft:windows_server_2003::sp2
- [*] Nmap: Aggressive OS guesses: Microsoft Windows XP (96%), Microsoft Windows 2000 SP4 (90%), Apple AirPort Extreme WAP (90%), Microsoft Windows XP SP3 (89%), Microsoft Windows Server 2003 SP2 (86%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 239.40 ms 10.11.1.247
- [*] Nmap: Nmap scan report for 10.11.1.251
- [*] Nmap: Host is up (0.25s latency).
- [*] Nmap: Not shown: 998 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 22/tcp open ssh OpenSSH 5.1p1 Debian 5ubuntu1 (Ubuntu Linux; protocol 2.0)
- [*] Nmap: | ssh-hostkey:
- [*] Nmap: | 1024 fd:35:c0:66:fc:2a:d0:76:c0:33:55:21:cb:70:55:54 (DSA)
- [*] Nmap: |_ 2048 bf:e1:ee:61:60:a5:3d:28:0f:af:7d:85:0c:19:c5:8d (RSA)
- [*] Nmap: 80/tcp open http Apache httpd 2.2.11 ((Ubuntu) PHP/5.2.6-3ubuntu4.4 with Suhosin-Patch)
- [*] Nmap: | http-methods:
- [*] Nmap: |_ Potentially risky methods: TRACE
- [*] Nmap: |_http-server-header: Apache/2.2.11 (Ubuntu) PHP/5.2.6-3ubuntu4.4 with Suhosin-Patch
- [*] Nmap: |_http-title: Site doesn't have a title (text/html).
- [*] Nmap: MAC Address: 00:50:56:89:1E:0E (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose|switch|firewall|printer|broadband router|remote management|security-misc
- [*] Nmap: Running (JUST GUESSING): Linux 2.6.X|3.X (92%), Extreme Networks ExtremeXOS 12.X (89%), Barracuda Networks embedded (89%), Canon embedded (87%), D-Link embedded (87%), HP embedded (87%), Linksys embedded (87%), HP Onboard Administrator 4.X (86%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:extremenetworks:extremexos:12.5.4 cpe:/h:canon:imagerunner_advance_c5051 cpe:/h:dlink:dsl-2540b cpe:/a:hp:onboard_administrator:2.04 cpe:/h:linksys:wrv200 cpe:/o:linux:linux_kernel:3.2.0 cpe:/a:hp:onboard_administrator:4
- [*] Nmap: Aggressive OS guesses: Linux 2.6.32 (92%), Linux 2.6.24 (Debian) (90%), Extreme Networks ExtremeXOS 12.5.4 (89%), Linux 2.6.15 - 2.6.26 (likely embedded) (89%), Linux 2.6.26 (89%), Barracuda Web Application Firewall 460 (89%), Linux 2.6.23 (88%), Linux 2.6.22 (Debian 4.0) (88%), Canon imageRUNNER ADVANCE C5051 printer (87%), D-Link DSL-2540B ADSL router (87%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 246.64 ms 10.11.1.251
- [*] Nmap: Nmap scan report for 10.11.1.252
- [*] Nmap: Host is up (0.24s latency).
- [*] Nmap: Not shown: 998 filtered ports
- [*] Nmap: PORT STATE SERVICE VERSION
- [*] Nmap: 8000/tcp open http Apache httpd 2.2.3 ((CentOS))
- [*] Nmap: |_http-open-proxy: Proxy might be redirecting requests
- [*] Nmap: |_http-server-header: Apache/2.2.3 (CentOS)
- [*] Nmap: | http-title: TimeClock Software :: Dev. Dpt. Thinc.local :: Log In
- [*] Nmap: |_Requested resource was login.php
- [*] Nmap: 8888/tcp open http-proxy Squid http proxy 3.3.8
- [*] Nmap: |_http-server-header: squid/3.3.8
- [*] Nmap: |_http-title: Endian Firewall - The requested URL could not be retrieved
- [*] Nmap: MAC Address: 00:50:56:89:6F:1A (VMware)
- [*] Nmap: Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- [*] Nmap: Device type: general purpose|firewall|WAP|proxy server|PBX
- [*] Nmap: Running (JUST GUESSING): Linux 2.6.X (91%), Cisco embedded (87%), ZoneAlarm embedded (87%), Ruckus embedded (87%), Riverbed embedded (86%)
- [*] Nmap: OS CPE: cpe:/o:linux:linux_kernel:2.6.18 cpe:/o:linux:linux_kernel:2.6 cpe:/h:cisco:sa520 cpe:/h:zonealarm:z100g cpe:/h:ruckus:7363 cpe:/h:riverbed:steelhead_200 cpe:/h:cisco:uc320w
- [*] Nmap: Aggressive OS guesses: Linux 2.6.18 (91%), Linux 2.6.9 - 2.6.27 (89%), Linux 2.6.9 (89%), Cisco SA520 firewall (Linux 2.6) (87%), Linux 2.6.11 (87%), Linux 2.6.28 (87%), Linux 2.6.30 (87%), ZoneAlarm Z100G WAP (87%), Ruckus 7363 WAP (87%), Linux 2.6.22.1-32.fc6 (x86, SMP) (86%)
- [*] Nmap: No exact OS matches for host (test conditions non-ideal).
- [*] Nmap: Network Distance: 1 hop
- [*] Nmap: TRACEROUTE
- [*] Nmap: HOP RTT ADDRESS
- [*] Nmap: 1 240.10 ms 10.11.1.252
- [*] Nmap: Post-scan script results:
- [*] Nmap: | clock-skew:
- [*] Nmap: | 1h45m46s:
- [*] Nmap: | 10.11.1.145
- [*] Nmap: | 10.11.1.75
- [*] Nmap: | 40m29s:
- [*] Nmap: | 10.11.1.24
- [*] Nmap: |_ 10.11.1.136
- [*] Nmap: | ssh-hostkey: Possible duplicate hosts
- [*] Nmap: | Key 256 a5:58:4d:9d:e8:61:de:55:83:e2:71:6b:5d:ad:83:e2 (ECDSA) used by:
- [*] Nmap: | 10.11.1.237
- [*] Nmap: | 10.11.1.238
- [*] Nmap: | Key 1024 fc:89:ba:50:c2:ea:2d:ab:b9:19:f1:f9:0a:b4:c0:5a (DSA) used by:
- [*] Nmap: | 10.11.1.237
- [*] Nmap: | 10.11.1.238
- [*] Nmap: | Key 2048 de:2d:b8:bd:43:8a:c3:28:2b:d3:22:84:d0:6c:e0:9d (RSA) used by:
- [*] Nmap: | 10.11.1.237
- [*] Nmap: |_ 10.11.1.238
- [*] Nmap: OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- [*] Nmap: Nmap done: 254 IP addresses (45 hosts up) scanned in 8439.13 seconds
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement