nmap

adot@kali:~/htb/Machines/sauna$ nmap -p 53,80,88,135,139,389,445,464,593,636,3268,3269,5985,9389 -sC -sV  -T5 10.10.10.175 -v
Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-03-28 10:43 CDT
NSE: Loaded 156 scripts for scanning.
NSE: Script Pre-scanning.
Initiating NSE at 10:43
Completed NSE at 10:43, 0.00s elapsed
Initiating NSE at 10:43
Completed NSE at 10:43, 0.00s elapsed
Initiating NSE at 10:43
Completed NSE at 10:43, 0.00s elapsed
Initiating Ping Scan at 10:43
Scanning 10.10.10.175 [2 ports]
Completed Ping Scan at 10:43, 0.05s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 10:43
Completed Parallel DNS resolution of 1 host. at 10:43, 0.02s elapsed
Initiating Connect Scan at 10:43
Scanning 10.10.10.175 [14 ports]
Discovered open port 139/tcp on 10.10.10.175
Discovered open port 135/tcp on 10.10.10.175
Discovered open port 445/tcp on 10.10.10.175
Discovered open port 80/tcp on 10.10.10.175
Discovered open port 53/tcp on 10.10.10.175
Discovered open port 88/tcp on 10.10.10.175
Discovered open port 593/tcp on 10.10.10.175
Discovered open port 389/tcp on 10.10.10.175
Discovered open port 5985/tcp on 10.10.10.175
Discovered open port 9389/tcp on 10.10.10.175
Discovered open port 3268/tcp on 10.10.10.175
Discovered open port 3269/tcp on 10.10.10.175
Discovered open port 636/tcp on 10.10.10.175
Discovered open port 464/tcp on 10.10.10.175
Completed Connect Scan at 10:43, 0.10s elapsed (14 total ports)
Initiating Service scan at 10:43
Scanning 14 services on 10.10.10.175
Completed Service scan at 10:43, 10.84s elapsed (14 services on 1 host)
NSE: Script scanning 10.10.10.175.
Initiating NSE at 10:43
Completed NSE at 10:44, 40.72s elapsed
Initiating NSE at 10:44
Completed NSE at 10:44, 1.43s elapsed
Initiating NSE at 10:44
Completed NSE at 10:44, 0.00s elapsed
Nmap scan report for 10.10.10.175
Host is up (0.049s latency).

PORT     STATE SERVICE       VERSION
53/tcp   open  domain        Simple DNS Plus
80/tcp   open  http          Microsoft IIS httpd 10.0
|_http-server-header: Microsoft-IIS/10.0
|_http-title: Egotistical Bank :: Home
| http-methods: 
|   Supported Methods: OPTIONS TRACE GET HEAD POST
|_  Potentially risky methods: TRACE
88/tcp   open  kerberos-sec  Microsoft Windows Kerberos (server time: 2024-03-28 22:43:41Z)
135/tcp  open  msrpc         Microsoft Windows RPC
139/tcp  open  netbios-ssn   Microsoft Windows netbios-ssn
389/tcp  open  ldap          Microsoft Windows Active Directory LDAP (Domain: EGOTISTICAL-BANK.LOCAL0., Site: Default-First-Site-Name)
445/tcp  open  microsoft-ds?
464/tcp  open  kpasswd5?
593/tcp  open  ncacn_http    Microsoft Windows RPC over HTTP 1.0
636/tcp  open  tcpwrapped
3268/tcp open  ldap          Microsoft Windows Active Directory LDAP (Domain: EGOTISTICAL-BANK.LOCAL0., Site: Default-First-Site-Name)
3269/tcp open  tcpwrapped
5985/tcp open  http          Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
|_http-server-header: Microsoft-HTTPAPI/2.0
|_http-title: Not Found
9389/tcp open  mc-nmf        .NET Message Framing
Service Info: Host: SAUNA; OS: Windows; CPE: cpe:/o:microsoft:windows

Host script results:
| smb2-time: 
|   date: 2024-03-28T22:43:49
|_  start_date: N/A
| smb2-security-mode: 
|   3:1:1: 
|_    Message signing enabled and required
|_clock-skew: 7h00m00s

NSE: Script Post-scanning.
Initiating NSE at 10:44
Completed NSE at 10:44, 0.00s elapsed
Initiating NSE at 10:44
Completed NSE at 10:44, 0.00s elapsed
Initiating NSE at 10:44
Completed NSE at 10:44, 0.00s elapsed
Read data files from: /usr/bin/../share/nmap
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 53.37 seconds
PreviousRecon NextEunmeration
Last updated 11 months ago
Was this helpful?