How to scan rdp  ''only'' open port 3333?

Posted on 2016-10-22
Medium Priority
Last Modified: 2016-11-07
Nmap:How to scan rdp only open port 3333? I use this syntax but I receive port 3333 open for mysql , for rdp and for other hosts. My question is: how to scan 100% RDP ,to show only RDP open ports:3333 or 3392 etc..?


nmap -sT -sV -T4 -oN save.txt -p T:3333 --open CIDR/IP

Open in new window

Results (are more res. but i posted only the last 2 ):

Nmap scan report for mail.imas-inc.com (x.xx.xx.xx) 
Host is up (0.015s latency). 
PORT     STATE SERVICE VERSION 3333/tcp open  mysql   MySQL
Nmap scan report for static-xxxxxx (x.xx.xx.xx)
Host is up (0.015s latency). 
3333/tcp open  ssl/dec-notes?
the last one have rdp 3333 open port.

Open in new window

The last one is for RDP:3333, the first result is for Mysql and i want to show me only rdp nothing else
Question by:john lambert
LVL 72

Accepted Solution

Qlemo earned 2000 total points
ID: 41855891
AFAIK nmap does not supply a RDP service probe. With RDP 6 and network authentication active it would prove difficult to do so anyway. A probe has to initiate the connection as far as necessary to detect RDP.
Without a specific probe all you can do is exclude what do you not want to get, e.g by filtering the "grepable" output accordingly.

Author Comment

by:john lambert
ID: 41855946
first of all i wanna know if the syntax is correct:

nmap -n -sS -p T:3390 -T4 --open 5x.x.x.x/xx 

Open in new window

LVL 34

Expert Comment

ID: 41855967
I can understand why you'd want to do that, but nmap isn't capable of doing what you're asking. You might be lucky enough to find a script that may help, but I doubt it.

Expert Comment

by:Senior IT System Engineer
ID: 41856541
by default RDP is on port 3389, so did you change it to custom port number ?

Author Closing Comment

by:john lambert
ID: 41877654

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This article will show a step by step guide on how use Break in Python
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…

607 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question