find 命令示例_带有示例的Arp-Scan命令教程

作者:神秘网友 发布时间:2020-10-15 21:57:16

find 命令示例_带有示例的Arp-Scan命令教程

find 命令示例_带有示例的Arp-Scan命令教程 find 命令示例_带有示例的Arp-Scan命令教程

find 命令示例

Network scanning is one of the steps of penetration testing. There are different and popular tools to scan network line masscan, nmap etc. Arp-scan is a tool specifically designed to scan network with layer 2 or mac or Ethernet arp packets.

网络扫描是渗透测试的步骤之一。 有多种不同的流行工具可以扫描网络线路masscan,nmap等。Arp-scan是专门设计用来扫描具有第2层或mac或以太网arp数据包的网络的工具。

安装 (Install)

We can install arp-scan tool with the following command.


$ sudo apt install arp-scan -y
find 命令示例_带有示例的Arp-Scan命令教程


We can print help information with the -h option.


$ arp-scan -h
find 命令示例_带有示例的Arp-Scan命令教程


Usage: arp-scan [options] [hosts...]

扫描本地网络 (Scan Local Network)

Most basic usage of arp-scan is scanning local network with a single options named --localnet or-l . This will scan whole local network with arp packets. While using arp-scan we need root privileges.

arp-scan的最基本用法是使用名为--localnet-l的单个选项扫描本地网络。 这将使用arp数据包扫描整个本地网络。 在使用arp-scan时,我们需要root特权。

$ arp-scan  --localnet
find 命令示例_带有示例的Arp-Scan命令教程
Scan Local Network

指定网络接口(Specify Network Interface)

Enterprise environments requires more than one network interface for backup, load balancing etc. In this situations we need to specify network interface. We will use -i option. In the example we will use network interface named ens3 .

企业环境需要一个以上的网络接口来进行备份,负载平衡等。在这种情况下,我们需要指定网络接口。 我们将使用-i选项。 在示例中,我们将使用名为ens3网络接口。

$ arp-scan --interface=ens3 --localnet
find 命令示例_带有示例的Arp-Scan命令教程
Specify Network Interface

设置源Mac地址(Set Source Mac Address)

During the scan process our exisiting mac address will be used. This may create some clue about the scan. We can change the source mac address during scan. This will make all sent packets have different mac address than our hardware mac address. We will use --destaddr or -T option.

在扫描过程中,将使用现有的mac地址。 这可能会产生一些有关扫描的线索。 我们可以在扫描过程中更改源mac地址。 这将使所有发送的数据包具有与我们的硬件mac地址不同的mac地址。 我们将使用--destaddr-T选项。

$ arp-scan -T aa:bb:cc:dd:ee:ff

设置目标Mac地址 (Set Destination Mac Address)

Another useful option is setting destination mac address with --srcaddr or -S option.


$ arp-scan -S aa:bb:cc:dd:ee:ff

指定VLAN (Specify Vlan)

In real world networks single interface can host multiple networks. This is generally done using some multiplexing protocol named Virtual Local Area Network or simply VLAN. If the interface is trunk which means interface hosts multiple VLANS we may need to specify VLAN id. We will use --vlan or -Q option to specify VLAN id. In the example we will only scan VLAN 10 .

在现实世界的网络中,单个接口可以托管多个网络。 通常使用某些称为虚拟局域网或VLAN的多路复用协议来完成此操作。 如果接口是中继线,则意味着接口承载多个VLAN,我们可能需要指定VLAN ID。 我们将使用--vlan-Q选项指定VLAN ID。 在示例中,我们将仅扫描VLAN 10

$ arp-scan -i ens3 -Q 10

将收到的数据包写入Pcap (Write Received Packets To Pcap)

If the responses return by the scanned hosts are important for us we can save them in pcap format. Pcap format is supported by tools like tcpdump, wireshark etc. We will us -pcapsavefile or -W options to specify pcap file.

如果扫描的主机返回的响应对我们很重要,我们可以将它们保存为pcap格式。 pcap格式受tcpdump,wireshark等工具支持。我们将使用-pcapsavefile-W选项来指定pcap文件。

$ sudo arp-scan  --localnet -W scan.pcap
find 命令示例_带有示例的Arp-Scan命令教程
Write Received Packets To Pcap

We can read pcap file with tcpdump like below.


$ tcpdump -r scan.pcap

To get more information about tcpdump read following tutorial.


LEARN MORE  How To Install WinPcap For Windows? 了解更多如何为Windows安装WinPcap?


find 命令示例

find 命令示例_带有示例的Arp-Scan命令教程相关教程

  1. Linux Qemu-img命令教程,其中包含创建,更改和缩小磁盘映像的示

    Linux Qemu-img命令教程,其中包含创建,更改和缩小磁盘映像的示例 KVM (Kernel Virtualization Module) is an open source, popular and efficient virtualization technology provided by Linux kernel. Virtualization creates virtual ram, devices, disk

  2. linux日志转储_Linux od命令教程,其中包含转储文件八进制数字格

    linux日志转储_Linux od命令教程,其中包含转储文件八进制数字格式的示例 linux日志转储 od is a tool used to dump files or input in different presentation formtas like octal, decimal, hexadecimal etc. od command especially useful for binary anal

  3. mailx的命令_Linux邮件和mailx命令教程,包括示例和从命令行发送

    mailx的命令_Linux邮件和mailx命令教程,包括示例和从命令行发送电子邮件 mailx的命令 Linux has a lot of tools, services, and applications related to email. An email has a different architecture than standard client-server. We will look at a com

  4. linux基本命令示例_Linux正常运行时间命令教程,以显示正常运行

    linux基本命令示例_Linux正常运行时间命令教程,以显示正常运行时间的示例 linux基本命令示例 Linux uptime command is a simple command used to display how many times ago the computer or server restarted. Uptime command provides following informat

  5. 命令行修改本地组策略_通过命令行从Windows进行本地组管理

    命令行修改本地组策略_通过命令行从Windows进行本地组管理 命令行修改本地组策略 Modern operating systems like Linux, Windows uses groups to manage user rights more flexible way. Users generally assigned to the groups to use groups related privi

  6. tzutil时区选项_在Windows中从命令行在Tzutil中设置时区

    tzutil时区选项_在Windows中从命令行在Tzutil中设置时区 tzutil时区选项 Time and date configuration is very important for servers. Some logs and security rules are tied with date and time information. In windows environments this information ca

  7. windows sc命令_Windows Sc从命令行进行服务管理

    windows sc命令_Windows Sc从命令行进行服务管理 windows sc命令 Operating systems run services to server operating system or user level features. These windows services generally starts in the startup and stopped at the shutdown. But some time

  8. 使用Windows Powershell从命令行获取服务服务管理

    使用Windows Powershell从命令行获取服务服务管理 Windows Powershell provides easy to use commands or command-lets to manage Windows systems. Powershell can be used to manage Windows Services and provides builtin command for related operations