Recon
$ nmap -p- --min-rate=1000 -Pn -v 192.168.185.137
Starting Nmap 7.94SVN ( https://nmap.org ) at 2024-09-10 07:44 CDT
Initiating Parallel DNS resolution of 1 host. at 07:44
Completed Parallel DNS resolution of 1 host. at 07:44, 0.01s elapsed
Initiating Connect Scan at 07:44
Scanning 192.168.185.137 [65535 ports]
Discovered open port 143/tcp on 192.168.185.137
Discovered open port 22/tcp on 192.168.185.137
Discovered open port 995/tcp on 192.168.185.137
Discovered open port 993/tcp on 192.168.185.137
Discovered open port 80/tcp on 192.168.185.137
Discovered open port 25/tcp on 192.168.185.137
Discovered open port 110/tcp on 192.168.185.137
Completed Connect Scan at 07:44, 17.96s elapsed (65535 total ports)
Nmap scan report for 192.168.185.137
Host is up (0.040s latency).
Not shown: 65528 closed tcp ports (conn-refused)
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
80/tcp open http
110/tcp open pop3
143/tcp open imap
993/tcp open imaps
995/tcp open pop3s
Read data files from: /usr/bin/../share/nmap
Nmap done: 1 IP address (1 host up) scanned in 18.07 secondsStarting Nmap 7.94SVN ( https://nmap.org ) at 2024-09-10 07:46 CDT
Nmap scan report for 192.168.185.137
Host is up (0.041s latency).
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 8.2p1 Ubuntu 4ubuntu0.1 (Ubuntu Linux; protocol 2.0)
| ssh-hostkey:
| 3072 c1:99:4b:95:22:25:ed:0f:85:20:d3:63:b4:48:bb:cf (RSA)
| 256 0f:44:8b:ad:ad:95:b8:22:6a:f0:36:ac:19:d0:0e:f3 (ECDSA)
|_ 256 32:e1:2a:6c:cc:7c:e6:3e:23:f4:80:8d:33:ce:9b:3a (ED25519)
25/tcp open smtp Postfix smtpd
| ssl-cert: Subject: commonName=ubuntu
| Subject Alternative Name: DNS:ubuntu
| Not valid before: 2021-01-26T10:26:37
|_Not valid after: 2031-01-24T10:26:37
|_ssl-date: TLS randomness does not represent time
|_smtp-commands: postfish.off, PIPELINING, SIZE 10240000, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME, DSN, SMTPUTF8, CHUNKING
80/tcp open http Apache httpd 2.4.41 ((Ubuntu))
|_http-server-header: Apache/2.4.41 (Ubuntu)
|_http-title: Site doesn't have a title (text/html).
110/tcp open pop3 Dovecot pop3d
|_pop3-capabilities: SASL(PLAIN) RESP-CODES PIPELINING UIDL AUTH-RESP-CODE TOP CAPA STLS USER
|_ssl-date: TLS randomness does not represent time
| ssl-cert: Subject: commonName=ubuntu
| Subject Alternative Name: DNS:ubuntu
| Not valid before: 2021-01-26T10:26:37
|_Not valid after: 2031-01-24T10:26:37
143/tcp open imap Dovecot imapd (Ubuntu)
|_imap-capabilities: SASL-IR OK more ENABLE have Pre-login post-login listed LOGIN-REFERRALS IDLE ID capabilities AUTH=PLAINA0001 IMAP4rev1 STARTTLS LITERAL+
|_ssl-date: TLS randomness does not represent time
| ssl-cert: Subject: commonName=ubuntu
| Subject Alternative Name: DNS:ubuntu
| Not valid before: 2021-01-26T10:26:37
|_Not valid after: 2031-01-24T10:26:37
993/tcp open ssl/imap Dovecot imapd (Ubuntu)
| ssl-cert: Subject: commonName=ubuntu
| Subject Alternative Name: DNS:ubuntu
| Not valid before: 2021-01-26T10:26:37
|_Not valid after: 2031-01-24T10:26:37
|_ssl-date: TLS randomness does not represent time
|_imap-capabilities: SASL-IR OK ENABLE more Pre-login post-login have LOGIN-REFERRALS IDLE listed capabilities AUTH=PLAINA0001 IMAP4rev1 LITERAL+ ID
995/tcp open ssl/pop3 Dovecot pop3d
| ssl-cert: Subject: commonName=ubuntu
| Subject Alternative Name: DNS:ubuntu
| Not valid before: 2021-01-26T10:26:37
|_Not valid after: 2031-01-24T10:26:37
|_ssl-date: TLS randomness does not represent time
|_pop3-capabilities: TOP SASL(PLAIN) RESP-CODES CAPA UIDL USER PIPELINING AUTH-RESP-CODE
Service Info: Host: postfish.off; OS: Linux; CPE: cpe:/o:linux:linux_kernel
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 16.77 secondsLast updated