Home > other >  Introduction to network scanning way
Introduction to network scanning way

Time:11-26

Scanning way
General use three ways to implement network scanning, to active scan, passive scanning and third-party scanning,
A, active scan
Active scan to send some data to active scan, to find the host in the network activities, there are a lot of general network active scanning way, such as: Netdiscover, Nmap, Ping, Ping command to implement the initiative in our general scanning, first sends an ICMP Echo Request message to the target host, the target host upon receipt of the Request, will respond to an ICMP Echo Reply message, prove that the target host is active,
Second, passive scanning
Passive scan is through long-term monitoring host broadcast packets to find the same in the network activities, usually send broadcast mainly for two reasons, one reason is that the application want to find a resource in the local network, and the application of address without the resources reserve in advance, another reason is that some of the important reasons, for example: the router requirements can be found all the information is sent to all of the adjacent machine,
Three, the third party scan
Host by the third party to implement scanning, such as: use public network service or host/devices to control another scan,
1, the use of Shodan
Shodan is by far the most powerful search engines, online equipment is used to search in cyberspace, also can search the specified by Shodan equipment or search for specific types of devices, in its most main is a webcam, linksys, netgear, cisco, SCADA, etc., for Shodan search engine's web site, https://www.shodan.io/,
A, the hostname: search the specified host or domain name, such as the hostname: "baidu,"
B, the port: search the specified port and services, such as port: "21,"
C, country: search specified countries, such as the country: "CN",
D, city: search specified in the city, such as city: "Beijing,"
E, org: search specified by the organization or company, such as org: "Google",
F, isp: search specified isp suppliers, such as isp: "China Telecom",
G, net: search the specified IP address or subnet, such as net: "210.45.240.0/24,"
H, the product: search the specified operating system, software and platforms, such as product: "Apache HTTPD,"
I, version: search specified versions of the software, such as version, "1.6.2",
J, geo: search the specified location, parameters for the latitude and longitude, such as geo: "31.8639, 117.2808,"
K, before/after: search data collected before and after the time specified, the format for the dd - mm - yy, such as before: "11-11-15",
2, the router's management interface
Login router can view of the activities in the current local area network (LAN) host
  • Related