{"id":2529,"date":"2023-12-17T10:23:48","date_gmt":"2023-12-17T09:23:48","guid":{"rendered":"https:\/\/hinakuu.xyz\/?p=2529"},"modified":"2023-12-25T19:45:25","modified_gmt":"2023-12-25T18:45:25","slug":"nmap-sur-windows","status":"publish","type":"post","link":"https:\/\/hinakuu.xyz\/?p=2529","title":{"rendered":"Nmap scanner de ports libre"},"content":{"rendered":"\n<p class=\"has-text-align-center wp-block-paragraph\"><strong>NMAP (Network Mapper)<\/strong>&nbsp;est un utilitaire r\u00e9seau open source en ligne de commandes du monde Unix.<br>Il vous permet de faire un port scan, analyses de r\u00e9seau, des audits de s\u00e9curit\u00e9 de l\u2019infrastructure du r\u00e9seau.<br>Zenmap est un GUI pour Nmap disponible pour Linux, Windows, Mac OS X, BSD, etc.<\/p>\n\n\n\n<p class=\"has-text-align-center wp-block-paragraph\">Source : <a href=\"https:\/\/www.malekal.com\/comment-utiliser-nmap-windows-zenmap\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/www.malekal.com\/comment-utiliser-nmap-windows-zenmap\/<\/a><\/p>\n\n\n\n<div class=\"wp-block-buttons is-content-justification-center is-layout-flex wp-container-core-buttons-is-layout-3e41869c wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button has-custom-width wp-block-button__width-50 has-custom-font-size is-style-fill has-small-font-size\"><a class=\"wp-block-button__link wp-element-button\">http:\/\/techtocraft.free.fr\/DL\/nmap-7.94-setup.exe<\/a><\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\" id=\"http:\/\/techtocraft.free.fr\/DL\/nmap-7.94-setup.exe\">Voici une pr\u00e9sentation de l\u2019interface de Nmap pour Windows.<br>Celle-ci est relativement simple.<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"640\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap-presentation-interface-452-1024x640.jpg\" alt=\"\" class=\"wp-image-2533\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap-presentation-interface-452-1024x640.jpg 1024w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap-presentation-interface-452-300x188.jpg 300w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap-presentation-interface-452-768x480.jpg 768w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap-presentation-interface-452-1536x960.jpg 1536w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap-presentation-interface-452.jpg 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-luminous-vivid-amber-color\">Comment faire un scan de ports TCP\/UDP avec Nmap sur Windows :<\/mark><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Ouvrez Nmap Zenmap<\/li>\n\n\n\n<li>Puis dans&nbsp;<strong>cible<\/strong>, saisissez soit l\u2019adresse IP de l\u2019h\u00f4te \u00e0 scanner, soit un masque de sous-r\u00e9seau pour scanner enti\u00e8rement un r\u00e9seau<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"615\" height=\"120\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap2.png\" alt=\"\" class=\"wp-image-2536\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap2.png 615w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap2-300x59.png 300w\" sizes=\"auto, (max-width: 615px) 100vw, 615px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Dans&nbsp;<strong>Profil<\/strong>, choisissez le type de scan. Par d\u00e9faut, nmap est r\u00e9gl\u00e9 sur&nbsp;<strong>Intense Scan<\/strong>.<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"720\" height=\"355\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap3.png\" alt=\"\" class=\"wp-image-2538\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap3.png 720w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap3-300x148.png 300w\" sizes=\"auto, (max-width: 720px) 100vw, 720px\" \/><\/figure>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Cliquez sur le bouton&nbsp;<strong>Scan<\/strong>&nbsp;tout \u00e0 droite<\/li>\n\n\n\n<li>Les h\u00f4tes d\u00e9tect\u00e9s s\u2019affiche dans la liste de gauche et sur la page principale les r\u00e9sultats du scan. Une icone indique le type d\u2019appareil et&nbsp;OS&nbsp;(Windows, Linux, \u2026)<\/li>\n\n\n\n<li>La sortie Nmap s\u2019affiche sur la fen\u00eatre principale<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"603\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-1024x603.jpg\" alt=\"\" class=\"wp-image-2541\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-1024x603.jpg 1024w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-300x177.jpg 300w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-768x453.jpg 768w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows.jpg 1339w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Cliquez sur&nbsp;<strong>Services<\/strong>&nbsp;afin de lister les services d\u00e9tect\u00e9s et accessibles<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"480\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap4-1024x480.png\" alt=\"\" class=\"wp-image-2544\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap4-1024x480.png 1024w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap4-300x140.png 300w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap4-768x360.png 768w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap4.png 1151w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Si vous souhaitez obtenir une vue interactive des connexions entre les h\u00f4tes du&nbsp;r\u00e9seau LAN, cliquez sur l\u2019onglet&nbsp;<strong>Topologie<\/strong>. Chaque anneau repr\u00e9sente un saut de r\u00e9seau suppl\u00e9mentaire \u00e0 partir du n\u0153ud central. Un clic sur un n\u0153ud le fait appara\u00eetre au centre.<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"585\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-g845-1024x585.jpg\" alt=\"\" class=\"wp-image-2548\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-g845-1024x585.jpg 1024w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-g845-300x171.jpg 300w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-g845-768x439.jpg 768w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-g845-1536x877.jpg 1536w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/faire-scan-nmap-Windows-g845.jpg 1564w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">L\u2019onglet&nbsp;<strong>D\u00e9tails de l\u2019h\u00f4te<\/strong>&nbsp;regroupe toutes les informations sur un seul h\u00f4te dans un affichage hi\u00e9rarchique. On y trouve le nombre de ports ouverts, les adressages r\u00e9seaux (adresse IP,&nbsp;adresse Mac), le type de h\u00f4te, le type&nbsp;d\u2019OS, etc&#8230;<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"583\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap5-1024x583.png\" alt=\"\" class=\"wp-image-2549\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap5-1024x583.png 1024w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap5-300x171.png 300w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap5-768x437.png 768w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap5-1536x874.png 1536w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap5.png 1565w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Nmap sur Linux<\/h2>\n\n\n\n<pre class=\"wp-block-preformatted\">sudo apt install nmap\t#Pour les distributions bas\u00e9s sur Debian<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Exemples de commandes nmap : <\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Voici la syntaxe par d\u00e9faut de nmap :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap [Type de Scans] [Options] {Host cible}<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Pour&nbsp;<strong>analyser une machine distante<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap 192.168.1.1\nnmap www.host.tld<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Ou encore pour&nbsp;<strong>scanner plusieurs h\u00f4tes<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap 192.168.1.1 192.168.1.2 192.168.1.3<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Pour scanner un r\u00e9seau entier<\/strong>, on peut sp\u00e9cifier&nbsp;un masque de sous r\u00e9seau&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap 192.168.1.0\/24\nnmap 192.168.1.*<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Mais on peut aussi&nbsp;<strong>analyser un intervalle de machines<\/strong>&nbsp;comme ceci :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap 192.168.1.0-200<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Pour afficher des d\u00e9tails, on ajoute les options -v ou -vv pour le mode bavard :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -v 192.168.1.1\nnmap -vv 192.168.1.1<\/pre>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"663\" height=\"741\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap6.png\" alt=\"\" class=\"wp-image-2556\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap6.png 663w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap6-268x300.png 268w\" sizes=\"auto, (max-width: 663px) 100vw, 663px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Pour&nbsp;<strong>scanner des h\u00f4tes depuis un fichier<\/strong>&nbsp;:<\/h3>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -iL \/tmp\/listehote.txt<\/pre>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"567\" height=\"248\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap7.png\" alt=\"\" class=\"wp-image-2559\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap7.png 567w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap7-300x131.png 300w\" sizes=\"auto, (max-width: 567px) 100vw, 567px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Pour&nbsp;<strong>exclure des h\u00f4tes d\u2019une analyse&nbsp;<\/strong>:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap 192.168.1.0\/24 --exclude 192.168.1.1\nnmap 192.168.1.0\/24 --exclude 192.168.1.1 192.168.1.5\nnmap 192.168.1.0\/24 --exclude 192.168.1.1,2,3<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Ou encore&nbsp;<strong>exclure des h\u00f4tes depuis un fichier<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap 192.168.1.0\/24 --excludefile exclusion.txt<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Scanner tous les ports&nbsp;TCP<\/strong>&nbsp;:<\/h3>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sT 192.168.1.1<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Scanner tous les ports&nbsp;UDP<\/strong>&nbsp;:<\/h3>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sU 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scanner un port TCP en particulier<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -p T:80 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scanner un port UDP<\/strong>&nbsp;<strong>en particulier<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -p U:53 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Pour&nbsp;<strong>scanner un intervalle de ports<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -p T:1-1024 192.168.1.1<\/pre>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"530\" height=\"202\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap8.png\" alt=\"\" class=\"wp-image-2562\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap8.png 530w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap8-300x114.png 300w\" sizes=\"auto, (max-width: 530px) 100vw, 530px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Pour combiner plusieurs scans de ports r\u00e9seaux sp\u00e9cifiques :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -p U:53,9,113,T:21-25,80,443,8080 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Le scan rapide rechercher les ports r\u00e9pertori\u00e9s dans les fichiers nmap-services, cela permet de recenser les principaux services r\u00e9seaux.<br>Pour cela, on utilise<strong>&nbsp;l\u2019option -F<\/strong>&nbsp;de Nmap :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -F 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Nous pouvons&nbsp;<strong>trouver les versions du service<\/strong>&nbsp;qui s\u2019ex\u00e9cutent sur des h\u00f4tes distants avec&nbsp;<strong>l\u2019option -sV<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sV 192.168.1.1<\/pre>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"771\" height=\"233\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap10.png\" alt=\"\" class=\"wp-image-2563\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap10.png 771w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap10-300x91.png 300w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap10-768x232.png 768w\" sizes=\"auto, (max-width: 771px) 100vw, 771px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-pale-pink-color\">Analyser les informations du syst\u00e8me d\u2019exploitation et Traceroute<\/mark><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Nmap est aussi capable de d\u00e9tecter&nbsp;le syst\u00e8me d\u2019exploitation&nbsp;et la version en cours d\u2019ex\u00e9cution sur l\u2019h\u00f4te distant.<br>Pour activer la d\u00e9tection du syst\u00e8me d\u2019exploitation et de la version, l\u2019analyse des scripts et le&nbsp;traceroute, nous pouvons utiliser&nbsp;<strong>l\u2019option -A<\/strong>&nbsp;:<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"409\" src=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap9-1024x409.png\" alt=\"\" class=\"wp-image-2564\" srcset=\"https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap9-1024x409.png 1024w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap9-300x120.png 300w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap9-768x307.png 768w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap9-1536x614.png 1536w, https:\/\/hinakuu.xyz\/wp-content\/uploads\/2023\/12\/nmap9.png 1875w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Nmap effectue un&nbsp;<strong>TCP\/IP&nbsp;fingerprint<\/strong>&nbsp;et affiche le&nbsp;<strong>traceroute<\/strong>.<br>Si vous d\u00e9sirez n\u2019avoir que la d\u00e9tection de l\u2019OS, il faut utiliser&nbsp;<strong>l\u2019option -O<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -O 192.168.1.1<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-luminous-vivid-orange-color\">D\u00e9sactiver la d\u00e9couverte d\u2019h\u00f4te (pas de ping) ou r\u00e9solution DNS<\/mark><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Ne pas envoyer de requ\u00eate ping \u00e0 l\u2019h\u00f4te avant la num\u00e9risation avec&nbsp;<strong>l\u2019option -Pn<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"> nmap -Pn 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Pour d\u00e9sactiver la r\u00e9solution DNS, utilisez&nbsp;<strong>l\u2019option -n<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -n 192.168.1.1<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-vivid-red-color\">Effectuer des scans pour tromper un pare-feu<\/mark><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>TCP Null Scan<\/strong>&nbsp;\u2013 Ne d\u00e9finissez aucun bit (l\u2019en-t\u00eate de l\u2019indicateur TCP est 0).<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sN 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>TCP Fin Scan<\/strong>&nbsp;\u2013 D\u00e9finissez uniquement le bit TCP FIN.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sF 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>TCP Xmas Scan<\/strong>&nbsp;\u2013 D\u00e9finissez les drapeaux FIN, PSH et URG (allumant le paquet comme un arbre de No\u00ebl).<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sX 192.168.1.1<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-vivid-green-cyan-color\">Changer le type de scan<\/mark><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">L\u2019option -P permet de changer le type de scan :<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>-Pn<\/strong>: Traitez tous les h\u00f4tes comme en ligne \u2013 ignorez la d\u00e9couverte des h\u00f4tes<\/li>\n\n\n\n<li><strong>-PS\/PA\/PU\/PY[portlist]: TCP SYN\/ACK, UDP or SCTP<\/strong>&nbsp;d\u00e9couverte vers des ports donn\u00e9s<\/li>\n\n\n\n<li><strong>-PE \/ PP \/ PM<\/strong>: sondes de d\u00e9couverte d\u2019\u00e9cho, d\u2019horodatage et de demande de masque de r\u00e9seau ICMP<\/li>\n\n\n\n<li><strong>-PO<\/strong>&nbsp;[liste de protocoles]: Ping de protocole IP<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Analyser les h\u00f4tes distants \u00e0 l\u2019aide de TCP ACK (PA) et TCP Syn (PS) :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -PS 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Analyser l\u2019h\u00f4te distant pour des ports sp\u00e9cifiques avec TCP ACK :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -PA -p 22,80 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Analyser l\u2019h\u00f4te distant pour des ports sp\u00e9cifiques avec TCP Syn :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"> nmap -PS -p 22,80 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Effectuer une analyse furtive (<strong>TCP SYN Scan<\/strong>) :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sS 192.168.0.101<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-vivid-purple-color\">Scanner de vuln\u00e9rabilit\u00e9s Nmap<\/mark><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Il existe un script pr\u00e9d\u00e9fini pr\u00e9sent dans la commande dans Nmap qui permet aux utilisateurs d\u2019ex\u00e9cuter un scan de&nbsp;<a href=\"https:\/\/www.malekal.com\/vulnerabilites-failles-logiciels\/\">vuln\u00e9rabilit\u00e9s<\/a>. Cela est donc tr\u00e8s pratique pour s\u2019assurer que votre syst\u00e8me est \u00e0 jour et non vuln\u00e9rable.<br>On peut utiliser ces scripts pr\u00e9d\u00e9finis ou poss\u00e9der leur langage de programmation Lua pour d\u00e9river une fonctionnalit\u00e9 sp\u00e9cifique qui peut aider \u00e0 la d\u00e9tection CVE.<br>Pour cela, on utilise&nbsp;<strong>l\u2019option -script vuln<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -Pn \u2013script vuln 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Vous pouvez simplement utiliser le v\u00e9rificateur de logiciels malveillants&nbsp;Google SafeBrowsing&nbsp;par la commande:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap -p80 \u2013script http-google-malware www.site-web.com<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-vivid-cyan-blue-color\">Lancer une attaque bruteforce<\/mark><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Vous pouvez \u00e9galement utiliser&nbsp;<strong>Nmap pour lancer une attaque par&nbsp;bruteforce<\/strong>.<br>L\u00e0 aussi, on utilise&nbsp;<strong>l\u2019option -script<\/strong>&nbsp;pour sp\u00e9cifier le type d\u2019attaque.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -sV \u2013script http-wordpress-brute \u2013script-args \u2018userdb=users.txt,passdb=passwds.txt,http-wordpress-brute.hostname=domain.com, http-wordpress-brute.threads=3,brute.firstonly=true\u2019 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Brute force attack against MS-SQL:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -p 1433 \u2013script ms-sql-brute \u2013script-args userdb=customuser.txt,passdb=custompass.txt 192.168.1.105<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Brute force attack against&nbsp;FTP:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap \u2013script ftp-brute -p 21 192.168.1.105<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-luminous-vivid-amber-color\">Enregistrer le r\u00e9sultat du scan dans un fichier<\/mark><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>L\u2019option -oN<\/strong>&nbsp;permet d\u2019enregistrer le r\u00e9sultat du portscan&nbsp;<strong>dans un fichier au format texte<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -oN output.txt 192.168.1.1<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">Pour enregistrer le r\u00e9sultat du scan de port dans&nbsp;<strong>un fichier au format XML<\/strong>&nbsp;:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">nmap -oX output.xml 192.168.1.1<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Liste des options Nmap<\/h3>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><td><strong>Options<\/strong><\/td><td><strong>Commandes<\/strong><\/td><\/tr><tr><td>\u2013exclude<\/td><td>Exclure des h\u00f4tes du scan<\/td><\/tr><tr><td>-n<\/td><td>D\u00e9sactiver&nbsp;la r\u00e9solution DNS<\/td><\/tr><tr><td>\u2013open<\/td><td>Afficher que les ports ouverts<\/td><\/tr><tr><td>-oN<\/td><td>Enregistrer le r\u00e9sultat du scan dans un fichier au formate texte<\/td><\/tr><tr><td>-oX<\/td><td>Enregistrer le r\u00e9sultat du scan dans un fichier au formate XML<\/td><\/tr><tr><td>-p<\/td><td>Sp\u00e9cifier les ports r\u00e9seaux \u00e0 scanner<\/td><\/tr><tr><td>-Pn<\/td><td>D\u00e9sactiver la d\u00e9couverte d\u2019h\u00f4te<\/td><\/tr><tr><td>-r<\/td><td>Analyser les ports cons\u00e9cutivement<\/td><\/tr><tr><td>-sT<\/td><td>Faire un scan de port TCP<\/td><\/tr><tr><td>-sU<\/td><td>Faire un scan de port UDP<\/td><\/tr><tr><td>-sV<\/td><td>Trouver les versions du service<\/td><\/tr><tr><td>-script<\/td><td>Utilise un script interne \u00e0 nmap pour scan de vuln\u00e9rabilit\u00e9, bruteforce, etc<\/td><\/tr><tr><td>-v<br>-vv<\/td><td>Mode bavard<\/td><\/tr><\/tbody><\/table><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>NMAP (Network Mapper)&nbsp;est un utilitaire r\u00e9seau open source en ligne de commandes du monde Unix.Il vous permet de<\/p>\n","protected":false},"author":1,"featured_media":2530,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,1],"tags":[],"class_list":["post-2529","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","category-non-classe"],"_links":{"self":[{"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=\/wp\/v2\/posts\/2529","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2529"}],"version-history":[{"count":27,"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=\/wp\/v2\/posts\/2529\/revisions"}],"predecessor-version":[{"id":2652,"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=\/wp\/v2\/posts\/2529\/revisions\/2652"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=\/wp\/v2\/media\/2530"}],"wp:attachment":[{"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2529"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2529"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hinakuu.xyz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2529"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}