Collaborate Disseminate
I’ve scanned a target with metasploit scanner/smb/smb_version and nmap -O.
smb_version: Windows 2016 Standard (build:14393)
Nmap: Windows Server 2008 R2 – 2012; CPE: cpe:/o:microsoft:windows
What is the OS of my target? I don’t understan… Continue reading What is the version of the scanned OS?
My goal is to evade IDS/IPS detection and scan the target with nmap. If the scan is detected, the target seems to stop responding for 10s. I think that IP Fragmentation Attack is exactly what I need.
So I tried to scan with -f and -ff flag… Continue reading Does fragrouter work with OpenVPN?
Recently I conducted a SSL server test to assess the SSL configuration of my server. While the overall grade A+ was pretty good, it was found that the server supports several cipher suites that are considered weak according to SSLLabs (act… Continue reading SSLLabs’ SSLTest vs. nmap ssl-enum-ciphers
I am using Nmap 7.92 on Windows and am trying to ping a linux host on VirtualBox. I can ping the server and receive ICMP replies and vice versa. The host in VirtualBox is using Bridged adapater.
I have run as administrator and also used th… Continue reading Unable to nmap but able to ping [migrated]
When I run these two commands, I get the same conclusive (accurate) results that 44 host are up
sudo nmap -Pn 10.2.16.0/24
sudo nmap -sn 10.2.16.0/24
When I run a scan with both of these commands together, I get an inaccurate result that … Continue reading Nmap -Pn -Sn together give inaccurate results [migrated]
I’m running an OpenVPN server and can use it normally; I know for a fact that the port is open. Running an Nmap scan on port 1194 (the one I’m using) says it is closed. What could be causing this incorrect response? Used this command:
nmap… Continue reading Nmap reports an open port as closed
How you would bypass the following firewall rules to perform a TCP scan identifying service ports in the open (NOT open|filtered) state for hosts behind the firewall using nmap or metasploit:
• The firewall blocks incoming SYN-flagged pack… Continue reading How to bypass a firewall with the following rules and perform a TCP scan?
I’ve taken a pen-testing course and for the final certificate, I have to analyze a server and make a report regarding the vulnerabilities.
The server does multiple functionalities, It acts as a web application server ( as I can connect t… Continue reading The server acts as a database server , but there is no open port regarding that why?
When trying to brute force a web application with nmap after passing the following command in Termux
$ nmap –script http-brute –script-args userdb=/data/data/com.termux/files/home/users.txt,passdb=/data/data/com.termux/files/home/pass.tx… Continue reading Nmap http brute force [closed]
I am trying to judge the security of a web app and I have the sample output below from nmap. But I’m not really sure how to properly interpret it.
Is it merely a printout of all the CVEs for this version of Apache2 (cpe:/a:apache:http_serv… Continue reading How to interpret the output of nmap "vulners"