Script To Blind Test Local Ports On Linux And Unix

[ Thanks to Mike Golvach for this link. ]

"We've elected to have our port scan start at 80 (The traditional http server port) and grab every other (higher) listening port on the localhost and query all of them, as if they were http servers, by sending a simple HTTP/1.0 GET request. As a blanket request to any number of known, and unknown, ports, it's not always the best way to interrogate, but it does get lots of useful information from any sort of web server and a few other sorts of servers as well. The only thing you have to settle down and be comfortable with is the fact that, a lot of the time, you can find out just as much about what's running on a particular port by reading the error message you receive from a bogus query as you can from reading the result of a successful one."

Complete Story

Related Stories:

• Single Packet Authorisation Using FWKNOP(Sep 23, 2008)
• An Easy Tutorial on IP Tables and Port Knocking(Feb 05, 2008)
• Hack and Crack Proof SSH on Linux(Aug 06, 2007)
• NewsForge: Nessus Assesses System Vulnerabilities(Feb 09, 2005)
• Hacking Linux Exposed: SSH Bouncing--How to Get Through Firewalls Easily(Sep 01, 2004)