使用netdiscover進行網絡發現

時間 2019-11-06

標籤使用 netdiscover 進行網絡發現欄目系統網絡简体版

原文原文鏈接

概述

腳本小子的平常就是隻能介紹一些工具了，今天介紹一個比較簡單的工具就是netdiscover了，這個工具最主要就是用來網絡發現的node

安裝

個人環境是在kali下面的，ubuntu的軟件源裏面也有，因此安裝很簡單，用包管理器安裝就行了 apt install netdiscoverexpress

使用

由於工具比較簡單因此使用也是比較簡單的沒有什麼複雜的參數 s首先看一下它的helpubuntu

root[@bboysoul](https://my.oschina.net/u/2557325):~# netdiscover --help
netdiscover: invalid option -- '-'

Netdiscover 0.3-pre-beta7 [Active/passive arp reconnaissance tool]
Written by: Jaime Penalba <jpenalbae@gmail.com>

Usage: netdiscover [-i device] [-r range | -l file | -p] [-m file] [-s time] [-n node] [-c count] [-f] [-d] [-S] [-P] [-c]
  -i device: your network device
  -r range: scan a given range instead of auto scan. 192.168.6.0/24,/16,/8
  -l file: scan the list of ranges contained into the given file
  -p passive mode: do not send anything, only sniff
  -m file: scan the list of known MACs and host names
  -F filter: Customize pcap filter expression (default: "arp")
  -s time: time to sleep between each arp request (milliseconds)
  -n node: last ip octet used for scanning (from 2 to 253)
  -c count: number of times to send each arp reques (for nets with packet loss)
  -f enable fastmode scan, saves a lot of time, recommended for auto
  -d ignore home config files for autoscan and fast mode
  -S enable sleep time supression between each request (hardcore mode)
  -P print results in a format suitable for parsing by another program
  -N Do not print header. Only valid when -P is enabled.
  -L in parsable output mode (-P), continue listening after the active scan is completed

If -r, -l or -p are not enabled, netdiscover will scan for common lan addresses.

以後介紹一下經常使用的幾個用法吧最簡單的就是直接輸入netdiscover 以後就是運行它的默認配置而後掃描局域網中全部的機器bash

Currently scanning: 192.168.75.0/16   |   Screen View: Unique Hosts                                                           
                                                                                                                               
 68 Captured ARP Req/Rep packets, from 21 hosts.   Total size: 4080                                                            
 _____________________________________________________________________________
   IP            At MAC Address     Count     Len  MAC Vendor / Hostname      
 -----------------------------------------------------------------------------
 192.168.1.2     48:7d:2e:53:81:70     12     720  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.252   48:7d:2e:7f:d5:09     10     600  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.253   48:7d:2e:80:48:f3     18    1080  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.1     48:7d:2e:53:6d:ce      9     540  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.78    f4:5c:89:a9:a5:e5      1      60  Apple, Inc.                                                                 
 192.168.1.82    6c:b3:50:08:02:b4      1      60  Anhui comhigher tech co.,ltd                                                
 192.168.1.103   dc:4a:3e:40:91:8b      1      60  Hewlett Packard                                                             
 192.168.1.50    e0:94:67:3e:89:74      3     180  Intel Corporate                                                             
 192.168.1.13    d4:61:9d:3b:17:be      1      60  Apple, Inc.                                                                 
 192.168.1.70    3c:2e:f9:46:80:12      1      60  Apple, Inc.                                                                 
 192.168.1.53    98:6f:60:1e:8d:d5      1      60  GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD                          
 192.168.1.43    c8:1e:e7:44:90:5b      1      60  Apple, Inc.                                                                 
 192.168.1.108   90:94:97:da:92:94      1      60  HUAWEI TECHNOLOGIES CO.,LTD                                                 
 192.168.1.49    f4:31:c3:41:35:79      1      60  Apple, Inc.                                                                 
 192.168.1.123   70:ef:00:19:b4:e6      1      60  Apple, Inc.                                                                 
 192.168.1.119   b0:e5:ed:7e:8a:38      1      60  HUAWEI TECHNOLOGIES CO.,LTD                                                 
 192.168.1.128   54:dc:1d:44:86:ce      1      60  Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd             
 192.168.1.76    4c:57:ca:af:7e:2a      1      60  Apple, Inc.                                                                 
 192.168.1.83    a4:f1:e8:9a:cd:3b      1      60  Apple, Inc.                                                                 
 192.168.1.81    f4:0f:24:1a:9e:61      1      60  Apple, Inc.                                                                 
 192.168.1.3     24:1f:a0:27:60:d1      1      60  HUAWEI TECHNOLOGIES CO.,LTD

默認的配置掃描網絡會比較慢由於你能夠看到是掃描B類地址的，因此在局域網中咱們不必這麼複雜輸入下面就行了網絡

netdiscover -i eth0 -r 192.168.1.1/24工具

-i是指定網卡 -r是指定ip地址的範圍ui

以後你們能夠看一下結果.net

Currently scanning: Finished!   |   Screen View: Unique Hosts                                                                 
                                                                                                                               
 1164 Captured ARP Req/Rep packets, from 29 hosts.   Total size: 69840                                                         
 _____________________________________________________________________________
   IP            At MAC Address     Count     Len  MAC Vendor / Hostname      
 -----------------------------------------------------------------------------
 192.168.1.2     48:7d:2e:53:81:70    254   15240  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.252   48:7d:2e:7f:d5:09    238   14280  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.253   48:7d:2e:80:48:f3    223   13380  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.1     48:7d:2e:53:6d:ce    144    8640  TP-LINK TECHNOLOGIES CO.,LTD.                                               
 192.168.1.78    f4:5c:89:a9:a5:e5      1      60  Apple, Inc.                                                                 
 192.168.1.50    e0:94:67:3e:89:74      9     540  Intel Corporate                                                             
 192.168.1.36    14:bd:61:9a:73:6c      1      60  Apple, Inc.                                                                 
 192.168.1.43    c8:1e:e7:44:90:5b      3     180  Apple, Inc.                                                                 
 192.168.1.82    6c:b3:50:08:02:b4      4     240  Anhui comhigher tech co.,ltd                                                
 192.168.1.103   dc:4a:3e:40:91:8b      6     360  Hewlett Packard                                                             
 192.168.1.70    3c:2e:f9:46:80:12      5     300  Apple, Inc.                                                                 
 192.168.1.76    4c:57:ca:af:7e:2a      5     300  Apple, Inc.                                                                 
 192.168.1.81    f4:0f:24:1a:9e:61      6     360  Apple, Inc.                                                                 
 192.168.1.83    a4:f1:e8:9a:cd:3b      1      60  Apple, Inc.                                                                 
 192.168.1.53    98:6f:60:1e:8d:d5      5     300  GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD                          
 192.168.1.92    e0:c7:67:66:96:e5      1      60  Apple, Inc.                                                                 
 192.168.1.123   70:ef:00:19:b4:e6      5     300  Apple, Inc.                                                                 
 192.168.1.108   90:94:97:da:92:94     13     780  HUAWEI TECHNOLOGIES CO.,LTD                                                 
 192.168.1.128   54:dc:1d:44:86:ce      2     120  Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd             
 192.168.1.51    74:23:44:8e:a0:4e      1      60  Xiaomi Communications Co Ltd                                                
 192.168.1.72    c0:9f:05:5b:6e:0d      6     360  GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD                          
 192.168.1.13    d4:61:9d:3b:17:be      5     300  Apple, Inc.                                                                 
 192.168.1.119   b0:e5:ed:7e:8a:38     16     960  HUAWEI TECHNOLOGIES CO.,LTD                                                 
 192.168.1.9     38:ca:da:37:a6:79      3     180  Apple, Inc.                                                                 
 0.0.0.0         70:f0:87:47:ac:03      2     120  Apple, Inc.                                                                 
 192.168.1.16    70:f0:87:47:ac:03    196   11760  Apple, Inc.                                                                 
 192.168.1.132   98:ca:33:27:1c:9a      4     240  Apple, Inc.                                                                 
 0.0.0.0         48:3b:38:d8:ec:42      3     180  Apple, Inc.                                                                 
 192.168.1.33    48:3b:38:d8:ec:42      2     120  Apple, Inc.

爲何會有這麼多機器和路由器呢，那是由於我在公寓外面鏈接了一個公共WiFi，至於在作什麼你們能夠想象一下。code

歡迎關注Bboysoul的博客www.bboysoul.com Have Funorm