碼上快樂

相關內容    簡體    繁體

python3-端口掃描(TCP_ACK掃描,NULL掃描,windows掃描,xmas掃描)

本文轉載自   查看原文   2021-01-14 10:36   731    Python工具

接上文

  • 掃描方式4:TCP_ACK掃描
from scapy.layers.inet import IP, TCP
from scapy.sendrecv import sr, sr1

'''
只能測試linux機器
通過設置flags位為ACK,不回復表示端口關閉或被過濾,如果回復的數據包TTL小於等於64表示端口開放,大於64端口關閉(windows)
'''

def fin_scan(ip, port):
    p = IP(dst=ip) / TCP(dport=int(port), flags="A")
    ans = sr1(p, timeout=1, verbose=1)
    print(ans)
    if ans == None:
        print(ip, "port", port, "is close.")
    else:
        if ans != None and ans.ttl <= 64:
            print(ip, "port", port, "is open.")
        elif ans != None and ans.ttl > 64:
            print(ip, "port", port, "is closed.")

if __name__ == '__main__':
    ip = '192.168.0.110'
    port = 445
    fin_scan(ip, port)

 

  • 掃描方式5:NULL掃描
from scapy.layers.inet import IP, TCP
from scapy.sendrecv import sr, sr1

'''
適用於Linux設備
通過設置flags位為空,不回復則表示端口開啟,回復並且回復的標志位為RS表示端口關閉
'''
def fin_scan(ip, port):
    p = IP(dst=ip) / TCP(dport=int(port), flags="")
    ans = sr1(p, timeout=1, verbose=1)
    print(ans)
    if ans == None:
        print(ip, "port", port, "is open.")
    elif ans != None and ans[TCP].flags == 'RA':
        ans.display()
        print(ip, "port", port, "is closed.")

if __name__ == '__main__':
    ip = '192.168.0.110'
    port = 55
    print()
    fin_scan(ip,port)

 

  • 掃描方式6:windows掃描
from scapy.layers.inet import IP, TCP
from scapy.sendrecv import sr, sr1

'''
只能測試linux機器
通過設置flags位為ACK,不回復表示端口關閉或被過濾,如果回復的數據包TTL小於等於64表示端口開放,大於64端口關閉(windows)
'''

def windowScan(target,ports):
    print("tcp window掃描 %s with ports %s" % (target, ports))
    window_scan_resp = sr1(IP(dst=target)/TCP(dport=ports,flags="A"),timeout=5)
    print(str(type(window_scan_resp)))
    if (str(type(window_scan_resp))=="<class 'NoneType'>"):
        print(ports,"close")
    elif(window_scan_resp.haslayer(TCP)):
        if(window_scan_resp.getlayer(TCP).window == 0):
            print(ports,"close")
        elif(window_scan_resp.getlayer(TCP).window > 0):
            print(ports,"open")
    else:
        print(ports,"close")

if __name__ == '__main__':
    ip = '192.168.0.110'
    port = 445

    windowScan(ip, port)

 

  • 掃描方式7:xmas掃描
from scapy.layers.inet import IP, TCP, ICMP
from scapy.sendrecv import sr, sr1

'''
適用於Linux設備
通過設置flag位FPU
    如果未回復表示端口開啟,
    如果回復RA表示端口關閉
    如果返回ICMP狀態包,數據類型3,狀態碼1,2,3,9,10,13表示端口已被過濾
'''

def fin_scan(ip, port):
    p = IP(dst=ip) / TCP(dport=int(port), flags="FPU")
    ans = sr1(p, timeout=1, verbose=1)
    print(ans)
    if ans == None:
        print(ip, "port", port, "is open.")
    elif ans != None and ans[TCP].flags == 'RA':
        ans.display()
        print(ip, "port", port, "is closed.")
    elif (ans.haslayer(ICMP)):
        if (int(ans.getlayer(ICMP).type) == 3
                and int(ans.getlayer(ICMP).code) in [1, 2, 3, 9, 10, 13]):
            print(port, "過濾")


if __name__ == '__main__':
    ip = '192.168.142.129'
    port = 445
    fin_scan(ip, port)

 


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 python3-端口掃描(TCP connect掃描,SYN掃描,FIN掃描) TCP端口掃描 tcp端口掃描與syn掃描 windows端口掃描 TCP端口掃描類型-隱蔽掃描和僵屍掃描 端口掃描之masscan掃描 tcp端口掃描(python多線程) 基於Python Web的端口掃描 【Python】端口掃描腳本 端口掃描
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM