On Mon, 31 May 2004, Wimprine, Thomas wrote:
> I ran nmap against my entire network, and I need to locate servers that
> people have forgotten about. Does anyone know of a way I can grep this log
> file to return what I want. (System name and IP address) for only servers
> and not windows clients.
> Any help or suggestions would be great, otherwise I need to deal with a few
> hundred results.
> Thanks
Depends on what you call a "server". Newer MS desktop OS's run the same
kernel as server OS's, so nmap OS fingerprinting probably won't tell you
much. I consider a "server" to be a machine running some service normally
not found on a desktop, and normally a tcp port is associated with this
service. I would scan the network for ports commonly used by windows
servers: IIS (http), exchange (smtp), sql server, oracle, terminal
services, domain controller/file/print. File/print maybe the trickiest to
find.
Try using nmap version detection -sV for some extra hints. Use -oG to
make the logfile easily greppable. Try -oS also, haha.
ray
___________________
Nolug mailing list
nolug@nolug.org
Received on 05/31/04
This archive was generated by hypermail 2.2.0 : 12/19/08 EST