First, the 445 port
445 port is a port of a mixed record, with which we can LAN easy access to a variety of shared folders or shared printer, but also because of it, the hackers who have the opportunity, they can the port secretly share your hard disk, even your hard drive silently in the format away! In October 2017, due to the virus "bad bunny" struck, the National Internet Emergency Response Center and other security agencies recommended to close the 445 and 139 port on your computer and network equipment.
Port 445 is the default port IPC services, precisely because IPC services become targets, which relies on a remote server must listen 445/139 port, port 445 thus become subject invasion.
Second, how to hack 445 port
First, see nmap port open host 445:
Here I sweep segments within the school network, the following is to open 445 ports:
Nmap scan report for 192.168.16.10
Host is up (0.23s latency).
PORT STATE SERVICE
445/tcp open microsoft-ds
Nmap scan report for 192.168.16.11
Host is up (0.10s latency).
PORT STATE SERVICE
445/tcp open microsoft-ds
Nmap scan report for 192.168.16.16
Host is up (0.099s latency).
PORT STATE SERVICE
445/tcp open microsoft-ds
……However, please note that this is a loophole windows NT / 2000 and other systems, first check with the operating system.
Here we can see if you can reproduce MS08_067 vulnerability, found proof of the value of open port 445.
Details here, I do not write in detail, you can refer to: https://blog.csdn.net/s0mor/article/details/98937473
Third, the 445-port defense
Useless time, it is recommended to close the pro ~
