Solved

Nmap how to find wich type of socks is this?

Posted on 2016-10-24
4
71 Views
Last Modified: 2016-11-11
Npam how to find wich type of socks is this?
i use this syntax

nmap -sS -n -Pn --max-retries 1 -T 4 --script socks-open=proxy xxxxxx/xx 

Open in new window


Result:
Can't see if is socks 4 or 5
Nmap scan report for xxxxxxxx
Host is up (0.016s latency).
PORT     STATE    SERVICE
1080/tcp open socks

Open in new window

0
Comment
Question by:john lambert
  • 2
  • 2
4 Comments
 
LVL 26

Expert Comment

by:skullnobrains
ID: 41857383
nmap does not know and does not perform such detections.

the standard protocol for 1080 is socks proxy
the port being 1080 ca, also be a web server but you can't be sure.

first try and declare the host and port as a socks server and see if it works. if yes, you have your answer.

try and connect with telnet. if you get a banner, you probably have the protocol written in the banner.

nc smtp.gmail.com 25
220 smtp.gmail.com ESMTP f17sm15860558wmf.10 - gsmtp

for banner-less protocols, you'd have to fish and expect to be lucky. often, sending a dummy or empty query will produce a reasonably significant error string that will help you guess.

sending "DUMMY" as a request to a web server produces an error that is obviously HTTP

$ nc -v localhost 80
Connection to localhost 80 port [tcp/http] succeeded!
DUMMY
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>501 Not Implemented</title>
</head><body>
<h1>Not Implemented</h1>
<p>DUMMY to / not supported.<br />
</p>
<hr>
<address>Apache Server at 127.0.1.1 Port 80</address>
</body></html>

in some cases you'd be less lucky. i do not know of a working all-purpose detector ( but many which claim to be able to do so are actually dummies )
0
 

Author Comment

by:john lambert
ID: 41857386
i use windows os , telnet? i need a syntax to test,i need socks 4 not socks 5
0
 
LVL 26

Accepted Solution

by:
skullnobrains earned 500 total points
ID: 41857399
keep it simple. declare a socks4 server and see if that works. socks is semi-binary protocol so it's a pita to use socks with telnet. note that socks5 servers usually speak socks4
0
 

Author Closing Comment

by:john lambert
ID: 41883939
thank you......
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

This is an article about Leadership and accepting and adapting to new challenges. It focuses mostly on upgrading to Windows 10.
A Bare Metal Image backup allows for the restore of an entire system to a similar or dissimilar hardware. They are highly useful for migrations and disaster recovery. Bare Metal Image backups support Full and Incremental backups. Differential backup…
The viewer will learn how to dynamically set the form action using jQuery.
This Micro Tutorial will give you a basic overview of Windows DVD Burner through its features and interface. This will be demonstrated using Windows 7 operating system.

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now