Here is a way to scan for ports using the nping program. It simply sends a syn ping to the host on the specified port and looks for a 'SA' syn/ack response. If a syn/ack repsonse is received the port is considered open.
#!/usr/bin/env bash ## host to scan host="127.0.0.1" ## tcp ports to scan (port1,port2,port3) port="80,110,139,143" ## syn,ack,urg,fin,rst flag="syn" IFS=',' for p in ${port} do result=$( nping -c 1 --tcp --flags ${flag} -p ${p} ${host} | awk '/RCVD/ {print $7}' ) if [[ $result == "SA" ]] then echo "Port ${p} open..." fi done
When we run the script we get the following results.
root@asus:~/pentest_notes/SCANNING% ./nping-port-scanner.sh Port 80 open... Port 110 open... Port 139 open... Port 143 open... root@asus:~/pentest_notes/SCANNING%
No comments:
Post a Comment