Nmap Development mailing list archives

Re: Windows port question

From: ~Kevin Davis³ <kevin.davis () mindless com>
Date: Mon, 17 Jun 2002 21:15:07 -0400

You may have trouble if you have some kind of software firewall running on
that machine.  Something is blocking pings so it may be that you have no
open ports as well.

~Kevin Davis³

What could possibly go wrong?
----- Original Message -----
From: "Roeland Th. Jansen" <nmap () grobbebol xs4all nl>
To: "Vassili Sukharev" <vassili.sukharev () ecora com>
Cc: <nmap-dev () insecure org>
Sent: Monday, June 17, 2002 7:54 PM
Subject: Re: Windows port question

On Mon, Jun 17, 2002 at 11:46:15AM -0400, Vassili Sukharev wrote:

Hi, can somebody please tell me whether OS fingerprinting functionality

has

been tested on Windows? Here's what I got upon running against a working
host on my network:

Starting nmap V. 2.54BETA36 ( www.insecure.org/nmap )
Note: Host seems down. If it is really up, but blocking our ping probes,
try -P0
Nmap run completed -- 1 IP address (0 hosts up) scanned in 43 seconds


grobbebol:~ # nmap -O w98

Starting nmap V. 2.54BETA30 ( www.insecure.org/nmap/ )
Interesting ports on w98 (192.168.1.9):
(The 1548 ports scanned but not shown below are in state: closed)
Port       State       Service
139/tcp    open        netbios-ssn

Remote operating system guess: Windows NT4 / Win95 / Win98

Nmap run completed -- 1 IP address (1 host up) scanned in 2 seconds
grobbebol:~ #

this is w98 under vmware running on top of linux/X


and :


grobbebol:~ # nmap -O w2k

Starting nmap V. 2.54BETA30 ( www.insecure.org/nmap/ )
Interesting ports on w2k (192.168.1.13):
(The 1544 ports scanned but not shown below are in state: closed)
Port       State       Service
22/tcp     open        ssh
135/tcp    open        loc-srv
139/tcp    open        netbios-ssn
445/tcp    open        microsoft-ds
1025/tcp   open        listen

Remote OS guesses: Windows Me or Windows 2000 RC1 through final release,
MS Windows2000 Professional RC1/W2K Advance Server Beta3, Windows
Millenium Edition v4.90.3000

Nmap run completed -- 1 IP address (1 host up) scanned in 2 seconds


so yes it works.

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to
nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).



---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).

Current thread:

Windows port question Vassili Sukharev (Jun 17)
- Re: Windows port question Bradley Kite (Jun 17)
- Re: Windows port question Roeland Th. Jansen (Jun 17)
  - Re: Windows port question ~Kevin Davis³ (Jun 17)
- <Possible follow-ups>
- RE: Windows port question Vassili Sukharev (Jun 20)
  - Re: Windows port question Andy Lutomirski (Jun 20)
    - RE: Windows port question Vassili Sukharev (Jun 20)