On 10/2/08, Gustin Johnson <[EMAIL PROTECTED]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > Gustin Johnson wrote: > > nmap -PN -sU -sS -sV -sC -oA nmap-scan-%T-%D -O --webxml --reason > > 192.168.3.61 > > > > Since you are specifically interested in TCP ports, you can probably > omit the -sU flag. Personally I would leave it in to see if anything > else turns up. > > I would also insert a machine inline with this one and start capturing > packets (wireshark, tcpdump etc.) I would take a machine with a couple > of NICs, put two of them into a bridge, which should make it invisible > to the machine you are investigating.
Hmm... in this case, since it is a VM, could you do that with another VM? Or, would you just use a virtual network bridge? :-) -Mark C. _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
