\u4e3a\u60a8\u7684\u57fa\u7840\u8bbe\u65bd\u8bbe\u7f6e\u9632\u706b\u5899\u662f\u63d0\u4f9b\u670d\u52a1\u5b89\u5168\u7684\u597d\u65b9\u6cd5\u3002\u4e00\u65e6\u60a8\u5236\u5b9a\u4e86\u6ee1\u610f\u7684\u7b56\u7565\uff0c\u4e0b\u4e00\u6b65\u5c31\u662f\u6d4b\u8bd5\u60a8\u7684\u9632\u706b\u5899\u89c4\u5219\u3002\u91cd\u8981\u7684\u662f\u8981\u4e86\u89e3\u60a8\u7684\u9632\u706b\u5899\u89c4\u5219\u662f\u5426\u5982\u60a8\u6240\u60f3\uff0c\u4ee5\u53ca\u5916\u754c\u5bf9\u60a8\u7684\u57fa\u7840\u8bbe\u65bd\u7684\u5370\u8c61\u5982\u4f55\u3002<\/p>\n
\u5728\u672c\u6307\u5357\u4e2d\uff0c\u6211\u4eec\u5c06\u4ecb\u7ecd\u4e00\u4e9b\u5de5\u5177\u548c\u6280\u672f\uff0c\u60a8\u53ef\u4ee5\u4f7f\u7528\u5b83\u4eec\u6765\u9a8c\u8bc1\u9632\u706b\u5899\u89c4\u5219\u3002\u8fd9\u4e9b\u5de5\u5177\u4e0e\u6076\u610f\u7528\u6237\u53ef\u80fd\u4f7f\u7528\u7684\u5de5\u5177\u76f8\u540c\uff0c\u56e0\u6b64\u60a8\u5c06\u80fd\u591f\u67e5\u770b\u4ed6\u4eec\u901a\u8fc7\u5411\u60a8\u7684\u670d\u52a1\u5668\u53d1\u51fa\u8bf7\u6c42\u65f6\u53ef\u4ee5\u83b7\u53d6\u5230\u54ea\u4e9b\u4fe1\u606f\u3002<\/p>\n
\u5728\u672c\u6307\u5357\u4e2d\uff0c\u6211\u4eec\u5c06\u5047\u8bbe\u60a8\u81f3\u5c11\u5728\u4e00\u53f0\u670d\u52a1\u5668\u4e0a\u914d\u7f6e\u4e86\u9632\u706b\u5899\u3002\u60a8\u53ef\u4ee5\u6309\u7167\u8fd9\u4e9b\u6307\u5357\u4e2d\u7684\u4e00\u4e2a\u6216\u591a\u4e2a\u5f00\u59cb\u6784\u5efa\u60a8\u7684\u9632\u706b\u5899\u7b56\u7565\u3002<\/p>\n
\u60a8\u4e5f\u53ef\u4ee5\u914d\u7f6eSilicon Cloud\u7684\u4e91\u9632\u706b\u5899\uff0c\u5728Silicon Cloud\u57fa\u7840\u8bbe\u65bd\u4e0a\u4f5c\u4e3a\u9644\u52a0\u7684\u5916\u90e8\u5c42\u6765\u8fd0\u884c\u3002\u8fd9\u6837\uff0c\u60a8\u5c31\u4e0d\u5fc5\u5728\u670d\u52a1\u5668\u672c\u8eab\u4e0a\u914d\u7f6e\u9632\u706b\u5899\u4e86\u3002<\/p>\n
\u5728\u672c\u6307\u5357\u4e2d\uff0c\u6211\u4eec\u5c06\u79f0\u60a8\u5e0c\u671b\u6d4b\u8bd5\u7684\u9632\u706b\u5899\u7b56\u7565\u6240\u5728\u7684\u670d\u52a1\u5668\u4e3a\u201c\u76ee\u6807\u670d\u52a1\u5668\u201d\u3002\u9664\u4e86\u76ee\u6807\u670d\u52a1\u5668\uff0c\u60a8\u8fd8\u9700\u8981\u4e00\u4e2a\u4f4d\u4e8e\u60a8\u7684\u9632\u706b\u5899\u4fdd\u62a4\u8303\u56f4\u4e4b\u5916\u7684\u7f51\u7edc\u4e2d\u7684\u670d\u52a1\u5668\u8fdb\u884c\u6d4b\u8bd5\u3002\u5728\u672c\u6307\u5357\u4e2d\uff0c\u60a8\u5c06\u4f7f\u7528\u4e00\u53f0Ubuntu 22.04\u670d\u52a1\u5668\u4f5c\u4e3a\u60a8\u7684\u201c\u5ba1\u8ba1\u673a\u5668\u201d\u3002<\/p>\n
\u4e00\u65e6\u60a8\u6709\u4e00\u53f0\u7528\u4e8e\u6d4b\u8bd5\u7684\u670d\u52a1\u5668\u548c\u60a8\u60f3\u8981\u8bc4\u4f30\u7684\u76ee\u6807\uff0c\u60a8\u5c31\u53ef\u4ee5\u7ee7\u7eed\u4f7f\u7528\u672c\u6307\u5357\u3002<\/p>\n
\u8b66\u544a\uff1a<\/strong>\u60a8\u5e94\u8be5\u4ec5\u5728\u60a8\u63a7\u5236\u7684\u57fa\u7840\u8bbe\u65bd\u4e0a\u6267\u884c\u6b64\u6307\u5357\u4e2d\u89c4\u5b9a\u7684\u6d3b\u52a8\uff0c\u76ee\u7684\u662f\u8fdb\u884c\u5b89\u5168\u5ba1\u8ba1\u3002\u5728\u8bb8\u591a\u53f8\u6cd5\u7ba1\u8f96\u533a\uff0c\u5173\u4e8e\u7aef\u53e3\u626b\u63cf\u7684\u6cd5\u5f8b\u4e0d\u660e\u786e\u3002\u5df2\u77e5\u6709\u4e9b\u4e92\u8054\u7f51\u670d\u52a1\u63d0\u4f9b\u5546\u548c\u5176\u4ed6\u4f9b\u5e94\u5546\u4f1a\u5c01\u7981\u8fdb\u884c\u7aef\u53e3\u626b\u63cf\u7684\u7528\u6237\u3002<\/p>\n<\/div>\n \u6709\u5f88\u591a\u4e0d\u540c\u7684\u5de5\u5177\u53ef\u4ee5\u7528\u6765\u6d4b\u8bd5\u6211\u4eec\u7684\u9632\u706b\u5899\u7b56\u7565\u3002\u5176\u4e2d\u4e00\u4e9b\u5de5\u5177\u6709\u91cd\u53e0\u7684\u529f\u80fd\u3002\u6211\u4eec\u4e0d\u4f1a\u6db5\u76d6\u6240\u6709\u53ef\u80fd\u7684\u5de5\u5177\u3002\u76f8\u53cd\uff0c\u6211\u4eec\u5c06\u6db5\u76d6\u4e00\u4e9b\u5e38\u89c1\u7684\u5ba1\u8ba1\u5de5\u5177\u7c7b\u522b\uff0c\u5e76\u4ecb\u7ecd\u672c\u6307\u5357\u4e2d\u5c06\u4f7f\u7528\u7684\u5de5\u5177\u3002<\/p>\n \u6570\u636e\u5305\u5206\u6790\u5668\u53ef\u4ee5\u7528\u6765\u8be6\u7ec6\u89c2\u5bdf\u901a\u8fc7\u63a5\u53e3\u4f20\u8f93\u7684\u6240\u6709\u7f51\u7edc\u6d41\u91cf\u3002\u5927\u591a\u6570\u6570\u636e\u5305\u5206\u6790\u5668\u90fd\u53ef\u4ee5\u9009\u62e9\u5b9e\u65f6\u64cd\u4f5c\uff0c\u663e\u793a\u53d1\u9001\u6216\u63a5\u6536\u7684\u6570\u636e\u5305\uff0c\u6216\u5c06\u6570\u636e\u5305\u4fe1\u606f\u5199\u5165\u6587\u4ef6\uff0c\u7a0d\u540e\u8fdb\u884c\u5904\u7406\u3002\u6570\u636e\u5305\u5206\u6790\u8ba9\u60a8\u80fd\u591f\u4ee5\u7ec6\u7c92\u5ea6\u7684\u65b9\u5f0f\u67e5\u770b\u76ee\u6807\u673a\u5668\u5411\u5f00\u653e\u7f51\u7edc\u4e0a\u7684\u4e3b\u673a\u53d1\u9001\u7684\u54cd\u5e94\u7c7b\u578b\u3002<\/p>\n \u4e3a\u4e86\u672c\u6307\u5357\u7684\u76ee\u7684\uff0c\u6211\u4eec\u5c06\u4f7f\u7528 \u4e3a\u4e86\u4ea7\u751f\u6570\u636e\u5305\u5206\u6790\u5668\u6355\u83b7\u7684\u6d41\u91cf\u548c\u54cd\u5e94\uff0c\u60a8\u5c06\u4f7f\u7528\u7aef\u53e3\u626b\u63cf\u5668\u3002\u7aef\u53e3\u626b\u63cf\u5668\u53ef\u4ee5\u7528\u6765\u6784\u5efa\u5e76\u53d1\u9001\u5404\u79cd\u7c7b\u578b\u7684\u6570\u636e\u5305\u5230\u8fdc\u7a0b\u4e3b\u673a\uff0c\u4ee5\u53d1\u73b0\u670d\u52a1\u5668\u63a5\u53d7\u7684\u6d41\u91cf\u7c7b\u578b\u3002\u6076\u610f\u7528\u6237\u7ecf\u5e38\u5c06\u5176\u4f5c\u4e3a\u4e00\u79cd\u63a2\u6d4b\u5de5\u5177\uff0c\u8bd5\u56fe\u627e\u5230\u53ef\u5229\u7528\u7684\u6709\u6f0f\u6d1e\u670d\u52a1\uff08\u8fd9\u4e5f\u662f\u4f7f\u7528\u9632\u706b\u5899\u7684\u4e00\u90e8\u5206\u539f\u56e0\uff09\uff0c\u56e0\u6b64\u60a8\u5c06\u4f7f\u7528\u5b83\u6765\u5c1d\u8bd5\u67e5\u770b\u653b\u51fb\u8005\u53ef\u80fd\u53d1\u73b0\u7684\u5185\u5bb9\u3002<\/p>\n \u5bf9\u4e8e\u672c\u6307\u5357\uff0c\u60a8\u5c06\u4f7f\u7528 \u5728\u5f00\u59cb\u4e4b\u524d\uff0c\u8bf7\u786e\u4fdd\u6211\u4eec\u5df2\u5b89\u88c5\u6240\u9700\u5de5\u5177\u3002\u60a8\u53ef\u4ee5\u4eceUbuntu\u7684\u8f6f\u4ef6\u5b58\u50a8\u5e93\u4e2d\u83b7\u53d6 \u63a5\u4e0b\u6765\uff0c\u521b\u5efa\u4e00\u4e2a\u76ee\u5f55\u6765\u5b58\u50a8\u60a8\u7684\u626b\u63cf\u7ed3\u679c\uff1a<\/p>\n \u4e3a\u786e\u4fdd\u60a8\u83b7\u53d6\u5e72\u51c0\u7684\u7ed3\u679c\uff0c\u8bf7\u9000\u51fa\u60a8\u7684\u5ba1\u8ba1\u7cfb\u7edf\u548c\u76ee\u6807\u7cfb\u7edf\u4e4b\u95f4\u53ef\u80fd\u6253\u5f00\u7684\u4efb\u4f55\u4f1a\u8bdd\u3002\u5305\u62ecSSH\u4f1a\u8bdd\u3001\u60a8\u5728Web\u6d4f\u89c8\u5668\u4e2d\u5efa\u7acb\u7684\u4efb\u4f55HTTP(S)\u8fde\u63a5\u7b49\u3002<\/p>\n \u65e2\u7136\u6211\u4eec\u5df2\u7ecf\u51c6\u5907\u597d\u4e86\u670d\u52a1\u5668\u548c\u6587\u4ef6\uff0c\u60a8\u73b0\u5728\u53ef\u4ee5\u5f00\u59cb\u626b\u63cf\u76ee\u6807\u4e3b\u673a\u7684\u5f00\u653eTCP\u7aef\u53e3\u3002<\/p>\n \u5b9e\u9645\u4e0a\uff0c \u5728\u8fdb\u884c\u626b\u63cf\u4e4b\u524d\uff0c\u60a8\u9700\u8981\u5148\u8bbe\u7f6e \u60a8\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u542f\u52a8 \u9ed8\u8ba4\u60c5\u51b5\u4e0b\uff0c \u6211\u4eec\u53ef\u4ee5\u901a\u8fc7\u6309\u4e0b \u73b0\u5728\uff0c\u60a8\u53ef\u4ee5\u8f93\u5165\u201cbg\u201d\u6765\u5728\u540e\u53f0\u91cd\u65b0\u542f\u52a8\u5de5\u4f5c\u3002<\/p>\n \u60a8\u5e94\u8be5\u5f97\u5230\u4e00\u884c\u7c7b\u4f3c\u7684\u8f93\u51fa\uff0c\u8fd9\u6b21\u6ca1\u6709\u201c\u505c\u6b62\u201d\u6807\u7b7e\uff0c\u5e76\u4e14\u5728\u7ed3\u5c3e\u6709\u4e00\u4e2a\u201c&\u201d\u7b26\u53f7\u6765\u8868\u793a\u8be5\u8fdb\u7a0b\u5c06\u5728\u540e\u53f0\u8fd0\u884c\uff08\u5373\u4e0d\u518d\u963b\u585e\u60a8\u7684\u7ec8\u7aef\uff09\u3002<\/p>\n \u547d\u4ee4\u76ee\u524d\u6b63\u5728\u540e\u53f0\u8fd0\u884c\uff0c\u76d1\u542c\u60a8\u7684\u5ba1\u8ba1\u548c\u76ee\u6807\u673a\u5668\u4e4b\u95f4\u7684\u4efb\u4f55\u6570\u636e\u5305\u3002\u73b0\u5728\u6211\u4eec\u53ef\u4ee5\u8fdb\u884cSYN\u626b\u63cf\u4e86\u3002<\/p>\n \u8fd9\u662f\u6587\u7ae0\u300a\u5982\u4f55\u4f7f\u7528Nmap\u548cTcpdump\u6d4b\u8bd5\u60a8\u7684\u9632\u706b\u5899\u914d\u7f6e\u300b\u7684\u7b2c2\u90e8\u5206\uff08\u51717\u90e8\u5206\uff09\u3002<\/p>\n \u4f7f\u7528tcpdump\u5c06\u6d41\u91cf\u8bb0\u5f55\u5230\u76ee\u6807\u673a\u5668\u540e\uff0c\u60a8\u53ef\u4ee5\u5f00\u59cb\u8fd0\u884cnmap\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u6807\u5fd7\u8fd0\u884cnmap\uff1a<\/p>\n \u6ce8\u610f\uff1a\u8981\u68c0\u67e5IPv6\uff0c\u60a8\u9700\u8981\u5728\u547d\u4ee4\u4e2d\u6dfb\u52a0\u201c-6\u201d\u6807\u5fd7\u3002\u5b8c\u6574\u7684\u6307\u4ee4\u5c06\u662f\u4ee5\u4e0b\u5f62\u5f0f\uff1a<\/p>\n <\/p>\n \u5c3d\u7ba1\u5c06\u65f6\u5e8f\u6a21\u677f\u8bbe\u5b9a\u4e3a4\uff0c\u4f46\u7531\u4e8e\u8981\u626b\u63cf65535\u4e2a\u7aef\u53e3\uff0c\u626b\u63cf\u5f88\u53ef\u80fd\u9700\u8981\u76f8\u5f53\u957f\u7684\u65f6\u95f4\u3002\u5c06\u4f1a\u9010\u6e10\u5f00\u59cb\u6253\u5370\u51fa\u7c7b\u4f3c\u8fd9\u6837\u7684\u7ed3\u679c\u3002<\/p>\n Starting Nmap 6.49BETA4 ( https:\/\/nmap.org ) at 2022-12-19 16:54 EDT \u626b\u63cf\u5b8c\u6210\u540e\uff0c\u60a8\u53ef\u4ee5\u5c06tcpdump\u8fdb\u7a0b\u8c03\u81f3\u524d\u53f0\u5e76\u505c\u6b62\u5b83\u3002<\/p>\n \u901a\u8fc7\u8fd0\u884cfg\u547d\u4ee4\u5c06\u5176\u4ece\u540e\u53f0\u8c03\u81f3\u524d\u53f0\u3002<\/p>\n <\/p>\n \u6309\u4e0b Ctrl+C \u952e\u6765\u505c\u6b62\u6b63\u5728\u8fd0\u884c\u7684\u8fdb\u7a0b\u3002<\/p>\n \u73b0\u5728\u60a8\u7684 \u8ba9\u6211\u4eec\u9996\u5148\u770b\u4e00\u4e0b <\/p>\n \u4e0a\u9762\u7684\u9ad8\u4eae\u533a\u57df\u5305\u542b\u4e86\u626b\u63cf\u7684\u4e3b\u8981\u7ed3\u679c\u3002\u901a\u8fc7\u8fd9\u4e9b\u7ed3\u679c\uff0c\u6211\u4eec\u53ef\u4ee5\u63a8\u65ad\u626b\u63cf\u7684\u4e3b\u673a\u5f00\u653e\u4e8622\u7aef\u53e3\u548c80\u7aef\u53e3\uff0c\u4ee5\u4fbf\u5141\u8bb8SSH\u548cHTTP\u6d41\u91cf\u3002\u6211\u4eec\u8fd8\u53ef\u4ee5\u89c2\u5bdf\u5230\uff0c\u5171\u670965,533\u4e2a\u7aef\u53e3\u5904\u4e8e\u5173\u95ed\u72b6\u6001\u3002<\/p>\n \u53e6\u4e00\u4e2a\u53ef\u80fd\u7684\u7ed3\u679c\u662f\u201cfiltered\u201d\uff08\u5df2\u8fc7\u6ee4\uff09\uff0c\u8fd9\u610f\u5473\u7740\u8fd9\u4e9b\u7aef\u53e3\u88ab\u8bc6\u522b\u4e3a\u5728\u7f51\u7edc\u8def\u5f84\u4e0a\u88ab\u67d0\u79cd\u56e0\u7d20\u963b\u6b62\u4e86\u3002\u8fd9\u53ef\u80fd\u662f\u76ee\u6807\u4e3b\u673a\u4e0a\u7684\u9632\u706b\u5899\uff0c\u4e5f\u53ef\u80fd\u662f\u5ba1\u8ba1\u673a\u5668\u548c\u76ee\u6807\u673a\u5668\u4e4b\u95f4\u7684\u4efb\u4f55\u4e2d\u95f4\u4e3b\u673a\u4e0a\u7684\u8fc7\u6ee4\u89c4\u5219\u3002<\/p>\n \u8981\u67e5\u770b\u53d1\u9001\u548c\u63a5\u6536\u5230\u76ee\u6807\u7684\u5b9e\u9645\u6570\u636e\u5305\u6d41\u91cf\uff0c\u60a8\u53ef\u4ee5\u5c06\u6570\u636e\u5305\u6587\u4ef6\u91cd\u65b0\u8bfb\u5165tcpdump\uff0c\u5982\u4e0b\u6240\u793a\uff1a<\/p>\n \u8fd9\u4e2a\u6587\u4ef6\u5305\u542b\u4e86\u4e24\u4e2a\u4e3b\u673a\u4e4b\u95f4\u5b8c\u6574\u7684\u5bf9\u8bdd\u5185\u5bb9\u3002\u4f60\u53ef\u4ee5\u901a\u8fc7\u591a\u79cd\u65b9\u5f0f\u8fdb\u884c\u7b5b\u9009\u3002<\/p>\n \u4f8b\u5982\uff0c\u5982\u679c\u8981\u67e5\u770b\u4ec5\u53d1\u9001\u5230\u76ee\u6807\u7684\u6d41\u91cf\uff0c\u53ef\u4ee5\u8f93\u5165\uff1a<\/p>\n \u540c\u6837\u5730\uff0c\u4f60\u53ef\u4ee5\u5c06\u76ee\u7684\u5730\uff08dst\uff09\u6539\u4e3a\u6e90\u5730\u5740\uff08src\uff09\uff0c\u53ea\u67e5\u770b\u54cd\u5e94\u6d41\u91cf\uff1a<\/p>\n \u5f00\u653e\u7684TCP\u7aef\u53e3\u4f1a\u7528SYN-ACK\u5305\u54cd\u5e94\u8fd9\u4e9b\u8bf7\u6c42\u3002\u6211\u4eec\u53ef\u4ee5\u76f4\u63a5\u901a\u8fc7\u7c7b\u4f3c\u8fd9\u6837\u7684\u8fc7\u6ee4\u5668\u641c\u7d22\u6b64\u7c7b\u578b\u7684\u54cd\u5e94\uff1a<\/p>\n \u8fd9\u5c06\u53ea\u663e\u793a\u6210\u529f\u7684SYN-ACK\u54cd\u5e94\uff0c\u5e76\u5e94\u4e0e\u60a8\u5728Nmap\u8fd0\u884c\u4e2d\u770b\u5230\u7684\u7aef\u53e3\u5339\u914d\u3002<\/p>\n \u5728\u60a8\u8ba4\u4e3a\u5408\u9002\u7684\u60c5\u51b5\u4e0b\uff0c\u60a8\u53ef\u4ee5\u5bf9\u8fd9\u4e9b\u6570\u636e\u8fdb\u884c\u66f4\u591a\u7684\u5206\u6790\u3002\u8fd9\u4e9b\u6570\u636e\u5df2\u7ecf\u88ab\u6355\u83b7\u5e76\u7528\u4e8e\u5f02\u6b65\u5904\u7406\u548c\u5206\u6790\u3002<\/p>\n \u65e2\u7136\u60a8\u5df2\u7ecf\u638c\u63e1\u4e86\u5982\u4f55\u8fd0\u884c\u8fd9\u4e9b\u6d4b\u8bd5\uff0c\u60a8\u53ef\u4ee5\u5b8c\u6210\u7c7b\u4f3c\u7684\u6d41\u7a0b\u6765\u626b\u63cf\u5f00\u653e\u7684UDP\u7aef\u53e3\u3002<\/p>\n \u518d\u6b21\u521b\u5efa\u4e00\u4e2a\u76ee\u5f55\u6765\u4fdd\u5b58\u60a8\u7684\u7ed3\u679c\u3002<\/p>\n \u91cd\u65b0\u5f00\u59cb\u4e00\u4e2atcpdump\u7684\u6355\u83b7\u3002\u8fd9\u6b21\uff0c\u5c06\u6587\u4ef6\u5199\u5165\u65b0\u7684 \u6682\u505c\u8fdb\u7a0b\u5e76\u5c06\u5176\u653e\u5165\u540e\u53f0\uff0c\u53ef\u901a\u8fc7\u8f93\u5165 \u73b0\u5728\uff0c\u60a8\u5df2\u51c6\u5907\u597d\u8fdb\u884cUDP\u626b\u63cf\u3002\u7531\u4e8eUDP\u534f\u8bae\u7684\u7279\u6027\uff0c\u8fd9\u79cd\u626b\u63cf\u901a\u5e38\u6bd4SYN\u626b\u63cf\u8017\u65f6\u66f4\u957f\u3002\u4e8b\u5b9e\u4e0a\uff0c\u5982\u679c\u60a8\u6b63\u5728\u626b\u63cf\u7cfb\u7edf\u4e0a\u7684\u6bcf\u4e2a\u7aef\u53e3\uff0c\u53ef\u80fd\u9700\u8981\u8d85\u8fc7\u4e00\u5929\u7684\u65f6\u95f4\u3002UDP\u662f\u4e00\u79cd\u65e0\u8fde\u63a5\u534f\u8bae\uff0c\u56e0\u6b64\u672a\u6536\u5230\u54cd\u5e94\u53ef\u80fd\u610f\u5473\u7740\u76ee\u6807\u7aef\u53e3\u88ab\u963b\u585e\u3001\u5df2\u63a5\u53d7\u6570\u636e\u5305\u6216\u6570\u636e\u5305\u4e22\u5931\u3002\u4e3a\u4e86\u533a\u5206\u8fd9\u4e9b\u60c5\u51b5\uff0cNmap\u5fc5\u987b\u91cd\u65b0\u4f20\u8f93\u989d\u5916\u7684\u6570\u636e\u5305\u4ee5\u5c1d\u8bd5\u83b7\u5f97\u54cd\u5e94\u3002<\/p>\n \u5927\u591a\u6570\u7684\u6807\u5fd7\u4e0e\u60a8\u7528\u4e8eSYN\u626b\u63cf\u65f6\u76f8\u540c\u3002\u5b9e\u9645\u4e0a\uff0c\u552f\u4e00\u65b0\u589e\u7684\u6807\u5fd7\u662f\uff1a<\/p>\n \u5982\u679c\u60a8\u62c5\u5fc3\u6b64\u6d4b\u8bd5\u6240\u9700\u7684\u65f6\u95f4\uff0c\u60a8\u53ef\u80fd\u53ea\u60f3\u5148\u6d4b\u8bd5\u4e00\u90e8\u5206UDP\u7aef\u53e3\u3002\u60a8\u53ef\u4ee5\u901a\u8fc7\u4e0d\u4f7f\u7528 \u56e0\u4e3a\u60a8\u6b63\u5728\u626b\u63cf\u81ea\u5df1\u7684\u57fa\u7840\u8bbe\u65bd\uff0c\u52a0\u5febUDP\u626b\u63cf\u7684\u6700\u4f73\u9009\u62e9\u53ef\u80fd\u662f\u5728\u76ee\u6807\u7cfb\u7edf\u4e0a\u6682\u65f6\u7981\u7528ICMP\u901f\u7387\u9650\u5236\u3002\u901a\u5e38\uff0cLinux\u4e3b\u673a\u5c06ICMP\u54cd\u5e94\u9650\u5236\u4e3a\u6bcf\u79d21\u4e2a\uff08\u8fd9\u901a\u5e38\u662f\u597d\u4e8b\uff0c\u4f46\u4e0d\u9002\u7528\u4e8e\u6211\u4eec\u7684\u5ba1\u8ba1\uff09\uff0c\u8fd9\u610f\u5473\u7740\u5b8c\u6574\u7684UDP\u626b\u63cf\u5c06\u9700\u8981\u8d85\u8fc718\u4e2a\u5c0f\u65f6\u3002\u60a8\u53ef\u4ee5\u901a\u8fc7\u8f93\u5165\u4ee5\u4e0b\u547d\u4ee4\u6765\u68c0\u67e5\u76ee\u6807\u673a\u5668\u4e0a\u7684\u6b64\u8bbe\u7f6e\uff1a<\/p>\n net.ipv4.icmp_ratelimit = 1000<\/p>\n \u201c1000\u201d\u662f\u54cd\u5e94\u4e4b\u95f4\u7684\u6beb\u79d2\u6570\u3002\u60a8\u53ef\u4ee5\u901a\u8fc7\u8f93\u5165\u4ee5\u4e0b\u547d\u4ee4\u5728\u76ee\u6807\u7cfb\u7edf\u4e0a\u6682\u65f6\u7981\u7528\u6b64\u901f\u7387\u9650\u5236\uff1a<\/p>\n \u5728\u60a8\u7684\u6d4b\u8bd5\u4e4b\u540e\uff0c\u6062\u590d\u8fd9\u4e2a\u503c\u975e\u5e38\u91cd\u8981\u3002<\/p>\n \u786e\u4fdd\u5c06\u7ed3\u679c\u5199\u5165 \u626b\u63cf\u5b8c\u6210\u540e\uff0c\u60a8\u5e94\u8be5\u5c06\u76ee\u6807\u673a\u5668\u4e0a\u7684ICMP\u901f\u7387\u9650\u5236\u6062\u590d\u5230\u539f\u6765\u7684\u8bbe\u7f6e\uff08\u5982\u679c\u60a8\u8fdb\u884c\u4e86\u4fee\u6539\uff09\u3002<\/p>\n\u6211\u4eec\u5c06\u4f7f\u7528\u7684\u5de5\u5177<\/h2>\n
\u6570\u636e\u5305\u5206\u6790\u5668<\/h3>\n
tcpdump<\/code>\u5de5\u5177\u3002\u8fd9\u662f\u4e00\u4e2a\u597d\u9009\u62e9\uff0c\u56e0\u4e3a\u5b83\u5728Linux\u7cfb\u7edf\u4e0a\u529f\u80fd\u5f3a\u5927\u3001\u7075\u6d3b\uff0c\u5e76\u4e14\u65e0\u5904\u4e0d\u5728\u3002\u60a8\u5c06\u4f7f\u7528\u5b83\u6765\u6355\u83b7\u6211\u4eec\u5728\u8fd0\u884c\u6d4b\u8bd5\u65f6\u7684\u539f\u59cb\u6570\u636e\u5305\uff0c\u4ee5\u5907\u540e\u7eed\u5206\u6790\u65f6\u4f7f\u7528\u3002\u5176\u4ed6\u4e00\u4e9b\u53d7\u6b22\u8fce\u7684\u9009\u9879\u5305\u62ecWireshark\uff08\u6216\u5176\u547d\u4ee4\u884c\u7248\u672ctshark\uff09\u548ctcpflow\uff0c\u540e\u8005\u53ef\u4ee5\u6709\u6761\u7406\u5730\u7ec4\u5408\u6574\u4e2aTCP\u5bf9\u8bdd\u3002<\/p>\n\u7aef\u53e3\u626b\u63cf\u5668<\/h3>\n
nmap<\/code>\u7f51\u7edc\u6620\u5c04\u548c\u7aef\u53e3\u626b\u63cf\u5de5\u5177\u3002\u60a8\u53ef\u4ee5\u4f7f\u7528nmap<\/code>\u53d1\u9001\u4e0d\u540c\u7c7b\u578b\u7684\u6570\u636e\u5305\uff0c\u5c1d\u8bd5\u786e\u5b9a\u76ee\u6807\u673a\u5668\u4e0a\u6709\u54ea\u4e9b\u670d\u52a1\u4ee5\u53ca\u5b83\u6240\u53d7\u5230\u7684\u9632\u706b\u5899\u89c4\u5219\u662f\u4ec0\u4e48\u3002<\/p>\n\u8bbe\u7f6e\u5ba1\u8ba1\u673a<\/h2>\n
tcpdump<\/code>\u548cnmap<\/code>\u3002\u8fd0\u884capt update<\/code>\u547d\u4ee4\u6765\u66f4\u65b0\u60a8\u672c\u5730\u7684\u8f6f\u4ef6\u5305\u5217\u8868\uff0c\u7136\u540e\u4f7f\u7528apt install<\/code>\u547d\u4ee4\u6765\u5b89\u88c5\u5b83\u4eec\u3002<\/p>\nsudo<\/span> apt<\/span> update\r\nsudo<\/span> apt<\/span> install<\/span> tcpdump nmap<\/code><\/pre>\nmkdir<\/span> ~\/scan_results<\/code><\/pre>\n\u626b\u63cf\u60a8\u7684\u76ee\u6807\u4ee5\u67e5\u627e\u5f00\u653e\u7684TCP\u7aef\u53e3<\/h2>\n
nmap<\/code>\u77e5\u9053\u5982\u4f55\u8fdb\u884c\u51e0\u79cdTCP\u626b\u63cf\u3002\u901a\u5e38\u6700\u597d\u5f00\u59cb\u4f7f\u7528\u7684\u662fSYN\u626b\u63cf\uff0c\u4e5f\u79f0\u4e3a\u201c\u534a\u5f00\u653e\u626b\u63cf\u201d\uff0c\u56e0\u4e3a\u5b83\u5b9e\u9645\u4e0a\u6ca1\u6709\u8fdb\u884c\u5b8c\u6574\u7684TCP\u8fde\u63a5\u534f\u5546\u3002\u653b\u51fb\u8005\u7ecf\u5e38\u4f7f\u7528\u6b64\u65b9\u6cd5\uff0c\u56e0\u4e3a\u5b83\u4e0d\u4f1a\u5728\u67d0\u4e9b\u5165\u4fb5\u68c0\u6d4b\u7cfb\u7edf\u4e0a\u6ce8\u518c\uff0c\u56e0\u4e3a\u5b83\u4ece\u672a\u5b8c\u6210\u5b8c\u6574\u7684\u63e1\u624b\u8fc7\u7a0b\u3002<\/p>\n\u8bbe\u7f6e\u6570\u636e\u5305\u6355\u83b7<\/h3>\n
tcpdump<\/code>\u6765\u6355\u83b7\u6d4b\u8bd5\u751f\u6210\u7684\u6d41\u91cf\u3002\u5982\u679c\u9700\u8981\u7684\u8bdd\uff0c\u8fd9\u5c06\u5e2e\u52a9\u60a8\u66f4\u6df1\u5165\u5730\u5206\u6790\u53d1\u9001\u548c\u63a5\u6536\u7684\u6570\u636e\u5305\u3002\u5728~\/scan_results<\/code>\u76ee\u5f55\u4e2d\u521b\u5efa\u4e00\u4e2a\u6587\u4ef6\u5939\uff0c\u4ee5\u4fbf\u5c06\u4e0e\u60a8\u7684SYN\u626b\u63cf\u76f8\u5173\u7684\u6587\u4ef6\u653e\u5728\u4e00\u8d77\u3002<\/p>\nmkdir<\/span> ~\/scan_results\/syn_scan<\/code><\/pre>\ntcpdump<\/code>\u6293\u5305\uff0c\u5e76\u5c06\u7ed3\u679c\u5199\u5165\u5230\u60a8\u7684~\/scan_results\/syn_scan<\/code>\u76ee\u5f55\u4e2d\u7684\u6587\u4ef6\u3002<\/p>\nsudo<\/span> tcpdump host<\/span> target_ip_addr<\/mark> -w<\/span> ~\/scan_results\/syn_scan\/packets<\/code><\/pre>\ntcpdump<\/code>\u5c06\u5728\u524d\u53f0\u8fd0\u884c\u3002\u4e3a\u4e86\u5728\u540c\u4e00\u7a97\u53e3\u4e2d\u8fd0\u884c\u60a8\u7684nmap<\/code>\u626b\u63cf\uff0c\u60a8\u9700\u8981\u6682\u505ctcpdump<\/code>\u8fdb\u7a0b\uff0c\u7136\u540e\u5c06\u5176\u5728\u540e\u53f0\u91cd\u65b0\u542f\u52a8\u3002<\/p>\nCTRL-Z<\/code>\u6765\u6682\u505c\u8fd0\u884c\u4e2d\u7684\u8fdb\u7a0b\u3002<\/p>\n^Z\r\n[1]+ Stopped sudo tcpdump host target_ip_addr<\/mark> -w ~\/scan_results\/syn_scan\/packets<\/code><\/pre>\nbg<\/span><\/code><\/pre>\n[1]+ sudo tcpdump host target_ip_addr<\/mark> -w ~\/scan_results\/syn_scan\/packets &<\/code><\/pre>\n\u8fdb\u884c SYN \u626b\u63cf<\/h3>\n
\n
<\/code><\/pre>\n\n
<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n
\nInitiating Parallel DNS resolution of 1 host. at 16:54
\nCompleted Parallel DNS resolution of 1 host. at 16:54, 0.12s elapsed
\nInitiating SYN Stealth Scan at 16:54
\nScanning 198.51.100.15 [65535 ports]
\nDiscovered open port 22\/tcp on 198.51.100.15
\nDiscovered open port 80\/tcp on 198.51.100.15
\nSYN Stealth Scan Timing: About 6.16% done; ETC: 17:02 (0:07:52 remaining)
\nSYN Stealth Scan Timing: About 8.60% done; ETC: 17:06 (0:10:48 remaining)
\n. . .<\/p>\n<\/code><\/pre>\n\u505c\u6b62tcpdump\u7684\u6570\u636e\u5305\u6355\u83b7<\/h3>\n
<\/code><\/pre>\n\n
<\/code><\/pre>\n<\/code><\/pre>\n\u5206\u6790\u7ed3\u679c<\/h3>\n
~\/scan_results\/syn_scan<\/code>\u76ee\u5f55\u4e2d\u5e94\u8be5\u6709\u4e24\u4e2a\u6587\u4ef6\u3002\u4e00\u4e2a\u662f\u7531tcpdump\u8fd0\u884c\u751f\u6210\u7684\u540d\u4e3apackets<\/code>\u7684\u6587\u4ef6\uff0c\u53e6\u4e00\u4e2a\u662f\u7531nmap\u751f\u6210\u7684\u540d\u4e3anmap.results<\/code>\u7684\u6587\u4ef6\u3002<\/p>\nnmap.results<\/code>\u6587\u4ef6\uff1a<\/p>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n<\/code><\/pre>\n~\/scan_results\/syn_scan\/nmap.results<\/code><\/p>\n# Nmap 6.49BETA4 scan initiated Mon Dec 19 17:05:13 2022 as: nmap -sS -Pn -p- -T4 -vv --reason -oN \/home\/user\/scan_results\/syn_scan\/nmap.results 198.51.100.15\r\nIncreasing send delay for 198.51.100.15 from 0 to 5 due to 9226 out of 23064 dropped probes since last increase.\r\nIncreasing send delay for 198.51.100.15 from 5 to 10 due to 14 out of 34 dropped probes since last increase.\r\nNmap scan report for 198.51.100.15\r\nHost is up, received user-set (0.00097s latency).\r\nScanned at 2022-12-19 17:05:13 EDT for 2337s\r\nNot shown: 65533 closed ports<\/mark>\r\nReason: 65533 resets<\/mark>\r\nPORT STATE SERVICE REASON<\/mark>\r\n22\/tcp open ssh syn-ack ttl 63<\/mark>\r\n80\/tcp open http syn-ack ttl 63<\/mark>\r\n\r\nRead data files from: \/usr\/local\/bin\/..\/share\/nmap\r\n# Nmap done at Mon Dec 19 17:44:10 2022 -- 1 IP address (1 host up) scanned in 2336.85 seconds\r\n<\/code><\/pre>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n<\/code><\/pre>\n\n
<\/code><\/pre>\nreading from file packets, link-type EN10MB (Ethernet) 17:05:13.557597 IP 198.51.100.15.22 > 198.51.100.2.63872: Flags [S.], seq 2144564104, ack 4206039348, win 29200, options [mss 1460], length 0\r\n17:05:13.558085 IP 198.51.100.15.80 > 198.51.100.2.63872: Flags [S.], seq 3550723926, ack 4206039348, win 29200, options [mss 1460], length 0\r\n<\/code><\/pre>\n\u626b\u63cf\u60a8\u7684\u76ee\u6807\u4ee5\u67e5\u627e\u5f00\u653e\u7684UDP\u7aef\u53e3<\/h2>\n
\u8bbe\u7f6e\u6570\u636e\u5305\u6355\u83b7<\/h3>\n
<\/code><\/pre>\n\n
<\/code><\/pre>\n~\/scan_results\/udp_scan<\/code>\u76ee\u5f55\u4e2d\u3002<\/p>\n<\/code><\/pre>\n\n
<\/code><\/pre>\nCtrl+Z<\/code>\u7136\u540e\u8fd0\u884cbg<\/code>\u547d\u4ee4\u5b9e\u73b0\u3002<\/p>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n\u8fdb\u884cUDP\u626b\u63cf<\/h3>\n
\u51c6\u5907\u8fdb\u884cUDP\u626b\u63cf<\/h4>\n
\n
-sU<\/code>: \u6b64\u6807\u5fd7\u544a\u8bc9Nmap\u6267\u884cUDP\u626b\u63cf\u3002<\/li>\n<\/ul>\n\u52a0\u5febUDP\u6d4b\u8bd5\u901f\u5ea6<\/h4>\n
-p-<\/code>\u6807\u5fd7\u6765\u4ec5\u6d4b\u8bd5\u6700\u5e38\u89c1\u76841000\u4e2a\u7aef\u53e3\u3002\u8fd9\u6837\u53ef\u4ee5\u5927\u5927\u7f29\u77ed\u626b\u63cf\u65f6\u95f4\u3002\u4f46\u5982\u679c\u60a8\u60f3\u8981\u5b8c\u6574\u7684\u7aef\u53e3\u72b6\u6001\uff0c\u60a8\u4e4b\u540e\u8fd8\u9700\u8981\u56de\u6765\u626b\u63cf\u6574\u4e2a\u7aef\u53e3\u8303\u56f4\u3002<\/p>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n\u8fdb\u884c\u6d4b\u8bd5<\/h4>\n
~\/scan_results\/udp_scan<\/code>\u76ee\u5f55\u4e2d\u3002\u603b\u7684\u6765\u8bf4\uff0c\u547d\u4ee4\u5e94\u8be5\u662f\u8fd9\u6837\u7684\uff1a<\/p>\n<\/code><\/pre>\n\n
<\/code><\/pre>\n