Les résultats

Question 8

Quels sont les ports trouvés ouverts ?

Suite aux règles énoncées précédemment, nous pouvons récupérer les réponses positives des ports ouverts.

Les SYN scans

Port domain = DNS port 53

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 52198 > domain [SYN]

192.168.0.99 192.168.0.9 TCP domain > 52198 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 52198 > domain [RST]

Port https = port 443

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 52198 > https [SYN]

192.168.0.99 192.168.0.9 TCP https > 52198 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 52198 > https [RST]

Port sunrpc = port 111

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 52198 > sunrpc [SYN]

192.168.0.99 192.168.0.9 TCP sunrpc > 52198 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 52198 > sunrpc [RST]

Port ssh = port 22

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 52198 > ssh [SYN]

192.168.0.99 192.168.0.9 TCP ssh > 52198 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 52198 > ssh [RST]

Port http = port 80

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 52199 > http [SYN]

192.168.0.99 192.168.0.9 TCP http > 52199 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 52199 > http [RST]

Port 32768

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 52199 > 32768 [SYN]

192.168.0.99 192.168.0.9 TCP 32768 > 52199 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 52199 > 32768 [RST]

Les Null scans

Port http = port 80

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 42294 > http []

Port domain = DNS port 53

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 42294 > domain []

Port https = port 443

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 42294 > https []

Port sunrpc = port 111

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 42294 > sunrpc []

Port ssh = port 22

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 42295 > ssh []

Les Xmas scans

Port https = port 443

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 58164 > https [FIN, PSH, URG]

Port domain = DNS port 53

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 58163 > domain [FIN, PSH, URG]

Port sunrpc = port 111

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 58163 > sunrpc [FIN, PSH, URG]

Port ssh = port 22

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 58163 > ssh [FIN, PSH, URG]

Port http = port 80

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 58164 > http [FIN, PSH, URG]

Les Connect scans

Port http = port 80

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 34398 > http [SYN]

192.168.0.99 192.168.0.9 TCP http > 34398 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 34398 > http [ACK]

192.168.0.9 192.168.0.99 TCP 34398 > http [RST, ACK]

Port ssh = port 22

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 34800 > ssh [SYN]

192.168.0.99 192.168.0.9 TCP ssh > 34800 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 34800 > ssh [ACK]

192.168.0.9 192.168.0.99 TCP 34800 > ssh [RST, ACK]

Port sunrpc = port 111

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 34203 > sunrpc [SYN]

192.168.0.99 192.168.0.9 TCP sunrpc > 34203 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 34203 > sunrpc [ACK] 192.168.0.9

192.168.0.99 TCP 34203 > sunrpc [RST, ACK]

Port domain = DNS port 53

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 35169 > domain [SYN]

192.168.0.99 192.168.0.9 TCP domain > 35169 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 35169 > domain [ACK]

192.168.0.9 192.168.0.99 TCP 35169 > domain [RST, ACK]

Port https = port 443

Source Destination Protocol Info

192.168.0.9 192.168.0.99 TCP 34399 > https [SYN]

192.168.0.99 192.168.0.9 TCP https > 34399 [SYN, ACK]

192.168.0.9 192.168.0.99 TCP 34399 > https [ACK]

192.168.0.9 192.168.0.99 TCP 34399 > https [RST, ACK]

Les Decoys & Xmas scans

Les leurres sont les adresses IP suivantes :

  • 192.168.0.1
  • 192.168.0.254
  • 192.168.0.199

Port ssh = port 22

Source Destination Protocol Info

192.168.0.1 192.168.0.99 TCP 35964 > ssh [FIN, PSH, URG]

192.168.0.254 192.168.0.99 TCP 35964 > ssh [FIN, PSH, URG]

192.168.0.9 192.168.0.99 TCP 35964 > ssh [FIN, PSH, URG]

192.168.0.199 192.168.0.99 TCP 35964 > ssh [FIN, PSH, URG]

Port http = port 80

Source Destination Protocol Info

192.168.0.1 192.168.0.99 TCP 35964 > http [FIN, PSH, URG]

192.168.0.254 192.168.0.99 TCP 35964 > http [FIN, PSH, URG]

192.168.0.9 192.168.0.99 TCP 35964 > http [FIN, PSH, URG]

192.168.0.199 192.168.0.99 TCP 35964 > http [FIN, PSH, URG]

Port https = port 443

Source Destination Protocol Info

192.168.0.1 192.168.0.99 TCP 35964 > https [FIN, PSH, URG]

192.168.0.254 192.168.0.99 TCP 35964 > https [FIN, PSH, URG]

192.168.0.9 192.168.0.99 TCP 35964 > https [FIN, PSH, URG]

192.168.0.199 192.168.0.99 TCP 35964 > https [FIN, PSH, URG]

Port sunrpc = port 111

Source Destination Protocol Info

192.168.0.1 192.168.0.99 TCP 35964 > sunrpc [FIN, PSH, URG]

192.168.0.254 192.168.0.99 TCP 35964 > sunrpc [FIN, PSH, URG]

192.168.0.9 192.168.0.99 TCP 35964 > sunrpc [FIN, PSH, URG]

192.168.0.199 192.168.0.99 TCP 35964 > sunrpc [FIN, PSH, URG]

Port domain = DNS port 53

Source Destination Protocol Info

192.168.0.1 192.168.0.99 TCP 35964 > domain [FIN, PSH, URG]

192.168.0.254 192.168.0.99 TCP 35964 > domain [FIN, PSH, URG]

192.168.0.9 192.168.0.99 TCP 35964 > domain [FIN, PSH, URG]

192.168.0.199 192.168.0.99 TCP 35964 > domain [FIN, PSH, URG]

Liste des ports ouverts

Liste des ports