{"id":482000,"date":"2026-06-02T05:50:39","date_gmt":"2026-06-02T05:50:39","guid":{"rendered":"https:\/\/savepearlharbor.com\/?p=482000"},"modified":"-0001-11-30T00:00:00","modified_gmt":"-0001-11-29T21:00:00","slug":"","status":"publish","type":"post","link":"https:\/\/savepearlharbor.com\/?p=482000","title":{"rendered":"Nmap \u2014 \u0421\u0435\u0442\u0435\u0432\u043e\u0439 \u0441\u043a\u0430\u043d\u0435\u0440 \u043f\u043e\u0440\u0442\u043e\u0432 \u0438 \u0441\u043b\u0443\u0436\u0431"},"content":{"rendered":"
\n

\u0420\u0430\u0437\u0432\u0435\u0434\u043a\u0430 \u2014 \u043f\u0435\u0440\u0432\u044b\u0439 \u044d\u0442\u0430\u043f \u043b\u044e\u0431\u043e\u0433\u043e \u043f\u0435\u043d\u0442\u0435\u0441\u0442\u0430. \u0426\u0435\u043b\u044c: \u0441\u043e\u0431\u0440\u0430\u0442\u044c \u043c\u0430\u043a\u0441\u0438\u043c\u0443\u043c \u0434\u0430\u043d\u043d\u044b\u0445 \u043e \u0446\u0435\u043b\u0438 \u0434\u043e \u043d\u0430\u0447\u0430\u043b\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0439.<\/p>\n

nmap<\/h2>\n

\u0427\u0442\u043e \u0434\u0435\u043b\u0430\u0435\u0442<\/h3>\n

\u0421\u043a\u0430\u043d\u0438\u0440\u0443\u0435\u0442 \u0441\u0435\u0442\u0438 \u0438 \u0445\u043e\u0441\u0442\u044b: \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u044f\u0435\u0442 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0435 \u043f\u043e\u0440\u0442\u044b, \u0437\u0430\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0438\u0441\u044b, \u0432\u0435\u0440\u0441\u0438\u0438 \u041f\u041e \u0438 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443. \u0420\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0447\u0435\u0440\u0435\u0437 \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043f\u0430\u043a\u0435\u0442\u043e\u0432 \u0438 \u0430\u043d\u0430\u043b\u0438\u0437 \u043e\u0442\u0432\u0435\u0442\u043e\u0432. \u0421\u0442\u0430\u043d\u0434\u0430\u0440\u0442 \u0434\u0435-\u0444\u0430\u043a\u0442\u043e \u0434\u043b\u044f \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0440\u0430\u0437\u0432\u0435\u0434\u043a\u0438.<\/p>\n

\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430<\/h3>\n
# \u041f\u0440\u0435\u0434\u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d \u0432 Kali Linux. \u0415\u0441\u043b\u0438 \u043d\u0435\u0442:sudo apt update && sudo apt install nmap -y<\/code>
<\/a><\/div><\/pre>\n
\u0421\u0438\u043d\u0442\u0430\u043a\u0441\u0438\u0441<\/h3>\n
nmap [\u0442\u0438\u043f \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f] [\u043e\u043f\u0446\u0438\u0438] [\u0446\u0435\u043b\u044c]<\/code>
<\/a><\/div><\/pre>\n
\u041a\u043b\u044e\u0447\u0435\u0432\u044b\u0435 \u0444\u043b\u0430\u0433\u0438 \u0438 \u043e\u043f\u0446\u0438\u0438<\/h3>\n
\n
\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\n
\u0424\u043b\u0430\u0433<\/p>\n<\/th>\n
\n
\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435<\/p>\n<\/th>\n
\n
\u041f\u0440\u0438\u043c\u0435\u0440<\/p>\n<\/th>\n<\/tr>\n
\n
-sS<\/code><\/p>\n<\/td>\n
\n
SYN-\u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 (\u0441\u0442\u0435\u043b\u0441, \u043f\u043e \u0443\u043c\u043e\u043b\u0447\u0430\u043d\u0438\u044e \u0441 root)<\/p>\n<\/td>\n
\n
nmap -sS 192.168.1.1<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-sT<\/code><\/p>\n<\/td>\n
\n
TCP connect (\u0431\u0435\u0437 root)<\/p>\n<\/td>\n
\n
nmap -sT 192.168.1.1<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-sU<\/code><\/p>\n<\/td>\n
\n
UDP-\u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435<\/p>\n<\/td>\n
\n
nmap -sU -p 53,161 192.168.1.1<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-sV<\/code><\/p>\n<\/td>\n
\n
\u041e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435 \u0432\u0435\u0440\u0441\u0438\u0439 \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432<\/p>\n<\/td>\n
\n
nmap -sV 192.168.1.1<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-O<\/code><\/p>\n<\/td>\n
\n
\u041e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435 \u041e\u0421<\/p>\n<\/td>\n
\n
nmap -O 192.168.1.1<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-A<\/code><\/p>\n<\/td>\n
\n
\u0410\u0433\u0440\u0435\u0441\u0441\u0438\u0432\u043d\u043e\u0435: \u041e\u0421 + \u0432\u0435\u0440\u0441\u0438\u0438 + \u0441\u043a\u0440\u0438\u043f\u0442\u044b + traceroute<\/p>\n<\/td>\n
\n
nmap -A 192.168.1.1<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-p<\/code><\/p>\n<\/td>\n
\n
\u0423\u043a\u0430\u0437\u0430\u0442\u044c \u043f\u043e\u0440\u0442\u044b<\/p>\n<\/td>\n
\n
-p 22,80,443<\/code> \u0438\u043b\u0438 -p 1-1000<\/code> \u0438\u043b\u0438 -p-<\/code> (\u0432\u0441\u0435)<\/p>\n<\/td>\n<\/tr>\n
\n
-T0<\/code>\u2026-T5<\/code><\/p>\n<\/td>\n
\n
\u0421\u043a\u043e\u0440\u043e\u0441\u0442\u044c (0=\u043f\u0430\u0440\u0430\u043d\u043e\u0439\u044f, 3=\u043f\u043e \u0443\u043c\u043e\u043b\u0447., 5=\u0431\u0435\u0437\u0443\u043c\u0438\u0435)<\/p>\n<\/td>\n
\n
-T4<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
--open<\/code><\/p>\n<\/td>\n
\n
\u041f\u043e\u043a\u0430\u0437\u044b\u0432\u0430\u0442\u044c \u0442\u043e\u043b\u044c\u043a\u043e \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0435 \u043f\u043e\u0440\u0442\u044b<\/p>\n<\/td>\n
\n
nmap --open 192.168.1.0\/24<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-oN<\/code><\/p>\n<\/td>\n
\n
\u0412\u044b\u0432\u043e\u0434 \u0432 \u0444\u0430\u0439\u043b (\u043e\u0431\u044b\u0447\u043d\u044b\u0439 \u0444\u043e\u0440\u043c\u0430\u0442)<\/p>\n<\/td>\n
\n
-oN scan.txt<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-oX<\/code><\/p>\n<\/td>\n
\n
\u0412\u044b\u0432\u043e\u0434 \u0432 XML<\/p>\n<\/td>\n
\n
-oX scan.xml<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-oG<\/code><\/p>\n<\/td>\n
\n
\u0412\u044b\u0432\u043e\u0434 \u0432 greppable-\u0444\u043e\u0440\u043c\u0430\u0442<\/p>\n<\/td>\n
\n
-oG scan.gnmap<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-oA<\/code><\/p>\n<\/td>\n
\n
\u0412\u044b\u0432\u043e\u0434 \u0432\u043e \u0432\u0441\u0435 \u0442\u0440\u0438 \u0444\u043e\u0440\u043c\u0430\u0442\u0430<\/p>\n<\/td>\n
\n
-oA scan<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-v<\/code> \/ -vv<\/code><\/p>\n<\/td>\n
\n
\u041f\u043e\u0434\u0440\u043e\u0431\u043d\u044b\u0439 \u0432\u044b\u0432\u043e\u0434<\/p>\n<\/td>\n
\n
nmap -vv<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-n<\/code><\/p>\n<\/td>\n
\n
\u041d\u0435 \u0440\u0435\u0437\u043e\u043b\u0432\u0438\u0442\u044c DNS<\/p>\n<\/td>\n
\n
nmap -n 192.168.1.0\/24<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
--script<\/code><\/p>\n<\/td>\n
\n
\u0417\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c NSE-\u0441\u043a\u0440\u0438\u043f\u0442<\/p>\n<\/td>\n
\n
--script vuln<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-iL<\/code><\/p>\n<\/td>\n
\n
\u0427\u0438\u0442\u0430\u0442\u044c \u0446\u0435\u043b\u0438 \u0438\u0437 \u0444\u0430\u0439\u043b\u0430<\/p>\n<\/td>\n
\n
-iL targets.txt<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-Pn<\/code><\/p>\n<\/td>\n
\n
\u041d\u0435 \u043f\u0438\u043d\u0433\u043e\u0432\u0430\u0442\u044c \u0445\u043e\u0441\u0442\u044b \u043f\u0435\u0440\u0435\u0434 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435\u043c<\/p>\n<\/td>\n
\n
nmap -Pn 192.168.1.1<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
-sn<\/code><\/p>\n<\/td>\n
\n
Ping sweep (\u0442\u043e\u043b\u044c\u043a\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0445\u043e\u0441\u0442\u043e\u0432)<\/p>\n<\/td>\n
\n
nmap -sn 192.168.1.0\/24<\/code><\/p>\n<\/td>\n<\/tr>\n
\n
--min-rate<\/code><\/p>\n<\/td>\n
\n
\u041c\u0438\u043d\u0438\u043c\u0430\u043b\u044c\u043d\u0430\u044f \u0441\u043a\u043e\u0440\u043e\u0441\u0442\u044c \u043f\u0430\u043a\u0435\u0442\u043e\u0432\/\u0441\u0435\u043a<\/p>\n<\/td>\n
\n
--min-rate 1000<\/code><\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n
\u041f\u0440\u0430\u043a\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u0440\u0438\u043c\u0435\u0440\u044b<\/h3>\n
\u041f\u0440\u0438\u043c\u0435\u0440 1: \u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0436\u0438\u0432\u044b\u0445 \u0445\u043e\u0441\u0442\u043e\u0432 \u0432 \u0441\u0435\u0442\u0438<\/h4>\n
sudo nmap -sn 192.168.1.0\/24<\/code>
<\/a><\/div><\/pre>\n
\u0412\u044b\u0432\u043e\u0434:<\/strong><\/p>\n
Starting Nmap 7.94 ( https:\/\/nmap.org )Nmap scan report for 192.168.1.1Host is up (0.00054s latency).MAC Address: C8:3A:35:27:4C:01 (Tenda Technology)Nmap scan report for 192.168.1.105Host is up (0.0012s latency).MAC Address: DC:A6:32:5E:2B:17 (Raspberry Pi Trading)Nmap scan report for 192.168.1.200Host is up (0.00087s latency).MAC Address: 00:50:56:C0:00:08 (VMware)Nmap done: 256 IP addresses (3 hosts up) scanned in 2.34 seconds<\/code>
<\/a><\/div><\/pre>\n
\u0427\u0442\u043e \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u043e:<\/strong> nmap \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u043b ARP-\u0437\u0430\u043f\u0440\u043e\u0441\u044b (\u0432 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438) \u0438 ICMP-\u044d\u0445\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u043b \u043e\u0442\u0432\u0435\u0442\u044b \u043e\u0442 \u0442\u0440\u0451\u0445 \u0445\u043e\u0441\u0442\u043e\u0432.<\/p>\n\n
\u041f\u0440\u0438\u043c\u0435\u0440 2: \u041f\u043e\u043b\u043d\u043e\u0435 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435\u043c \u0432\u0435\u0440\u0441\u0438\u0439 \u0438 \u041e\u0421<\/h4>\n
sudo nmap -sS -sV -O -p- --min-rate 5000 -T4 -oA full_scan 192.168.1.105<\/code>
<\/a><\/div><\/pre>\n
\u0412\u044b\u0432\u043e\u0434:<\/strong><\/p>\n
Starting Nmap 7.94Nmap scan report for 192.168.1.105Host is up (0.0011s latency).Not shown: 65528 closed tcp ports (reset)PORT     STATE SERVICE     VERSION22\/tcp   open  ssh         OpenSSH 8.4p1 Debian 5+deb11u1 (protocol 2.0)80\/tcp   open  http        Apache httpd 2.4.54 ((Debian))111\/tcp  open  rpcbind     2-4 (RPC #100000)443\/tcp  open  ssl\/http    Apache httpd 2.4.543306\/tcp open  mysql       MySQL 5.7.398080\/tcp open  http-proxy  Squid http proxy 4.13MAC Address: DC:A6:32:5E:2B:17 (Raspberry Pi)Device type: general purposeRunning: Linux 4.X|5.XOS CPE: cpe:\/o:linux:linux_kernel:4 cpe:\/o:linux:linux_kernel:5OS details: Linux 4.15 - 5.6Network Distance: 1 hopService Info: OS: Linux; CPE: cpe:\/o:linux:linux_kernelNmap done: 1 IP address (1 host up) scanned in 24.87 seconds<\/code>
<\/a><\/div><\/pre>\n
\u0427\u0442\u043e \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u043e:<\/strong> \u043f\u0440\u043e\u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u044b \u0432\u0441\u0435 65535 \u043f\u043e\u0440\u0442\u043e\u0432, \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u044b \u0441\u0435\u0440\u0432\u0438\u0441\u044b \u0441 \u0432\u0435\u0440\u0441\u0438\u044f\u043c\u0438 \u0438 \u041e\u0421.<\/p>\n\n
\u041f\u0440\u0438\u043c\u0435\u0440 3: \u041f\u043e\u0438\u0441\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0447\u0435\u0440\u0435\u0437 NSE-\u0441\u043a\u0440\u0438\u043f\u0442\u044b<\/h4>\n
sudo nmap -sV --script vuln -p 80,443,8080 testphp.vulnweb.com<\/code>
<\/a><\/div><\/pre>\n
\u0412\u044b\u0432\u043e\u0434:<\/strong><\/p>\n
Starting Nmap 7.94Nmap scan report for testphp.vulnweb.com (44.228.249.3)Host is up (0.18s latency).PORT     STATE SERVICE VERSION80\/tcp   open  http    Apache httpd 2.4.7 ((Ubuntu))| http-sql-injection:|   Possible sqli for queries:|     http:\/\/testphp.vulnweb.com\/artists.php?artist=1%27%20OR%20sqlspider|_    http:\/\/testphp.vulnweb.com\/listproducts.php?cat=1%27%20OR%20sqlspider| http-csrf:|   Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=testphp.vulnweb.com|     Found the following possible CSRF vulnerabilities:|       Path: http:\/\/testphp.vulnweb.com\/userinfo.php|       Form id: |_      Form action: userinfo.php| http-stored-xss:|_  Couldn't find any stored XSS vulnerabilities.|_http-dombased-xss: Couldn't find any DOM based XSS.<\/code>
<\/a><\/div><\/pre>\n
\u0427\u0442\u043e \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u043e:<\/strong> NSE-\u0441\u043a\u0440\u0438\u043f\u0442 vuln<\/code> \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u043b \u043d\u0430\u0431\u043e\u0440 \u043f\u0440\u043e\u0432\u0435\u0440\u043e\u043a \u043d\u0430 \u0432\u0435\u0431-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0435 \u0442\u043e\u0447\u043a\u0438 SQL-\u0438\u043d\u044a\u0435\u043a \u0446\u0438\u0438.<\/p>\n\n
\u041f\u0440\u0438\u043c\u0435\u0440 4: \u0421\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432 + \u044d\u043a\u0441\u043f\u043e\u0440\u0442<\/h4>\n
sudo nmap -p 445 --script smb-vuln-ms17-010 192.168.1.0\/24 -oN eternalblue_scan.txt<\/code>
<\/a><\/div><\/pre>\n
\u0412\u044b\u0432\u043e\u0434:<\/strong><\/p>\n
Nmap scan report for 192.168.1.200Host is up (0.00098s latency).PORT    STATE SERVICE445\/tcp open  microsoft-dsHost script results:| smb-vuln-ms17-010: |   VULNERABLE:|   Remote Code Execution vulnerability in Microsoft SMBv1 servers (MS17-010)|     State: VULNERABLE|     IDs:  CVE:CVE-2017-0143|     Risk factor: HIGH|       A critical remote code execution vulnerability exists in Microsoft SMBv1|       servers (named pipe functionality).|     References:|_      https:\/\/technet.microsoft.com\/en-us\/library\/security\/ms17-010.aspx<\/code>
<\/a><\/div><\/pre>\n
\u0427\u0442\u043e \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u043e:<\/strong> \u0441\u043a\u0440\u0438\u043f\u0442 smb-vuln-ms17-010<\/code> \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u043b \u043a\u0430\u0436\u0434\u044b\u0439 \u0445\u043e\u0441\u0442 \u0441\u0435\u0442\u0438 \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c EternalBlue (\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c WannaCry).<\/p>\n\n
\u0427\u0430\u0441\u0442\u044b\u0435 \u043e\u0448\u0438\u0431\u043a\u0438<\/h3>\n