-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gustin Johnson wrote: > nmap -PN -sU -sS -sV -sC -oA nmap-scan-%T-%D -O --webxml --reason > 192.168.3.61 > Since you are specifically interested in TCP ports, you can probably omit the -sU flag. Personally I would leave it in to see if anything else turns up.
I would also insert a machine inline with this one and start capturing packets (wireshark, tcpdump etc.) I would take a machine with a couple of NICs, put two of them into a bridge, which should make it invisible to the machine you are investigating. Hth, -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFI5UyewRXgH3rKGfMRAjnQAJ9pQVafwRo/iGhjQ284FMK2XgFEcACeIr8v 9ckD+33sB4sRzI0NTDrw6Pc= =EcXL -----END PGP SIGNATURE----- _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
