whois query
whois is used to query domain name registration information. Take the commonly used Baidu as an example, enter whois baidu.com to query the 3R registration information, including the registrant's name, organization and city.
It is worth noting that prefixes such as www should be removed when doing whois query, otherwise it may not be queried.
nslookup, dig query
The ip address corresponding to the URL can be obtained through the dig command or the nslookup command,
but nslookup can obtain the result of the cache saved by the DNS resolution server, which is not necessarily accurate. dig can query exact results from official DNS servers.
You can query the ip you got through Baidu
The traceroute command performs route reconnaissance
These 5 pieces of information in turn represent the time to live, the return time of the ICMP packets sent three times, and the IP address of the router. The information of * indicates that the return time of the ICMP packet is timed out.
Use of nmap
-O to identify the operating system
-sn to find active hosts
this is my host
-sS tcp scan
-sU udp scan
Vulnerability Scan
First install openvas
apt-get install openvas
and then configure (it takes some time, please wait patiently) After
openvas-setup
is successfully configured, check and install
openvas-check-setup
Add user
openvasmd --user admin --new-password admin
Start using
openvas-start
scan host
Vulnerability information
