Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Services Module shows no open ports when ports are open #1087

Open
duncangreene opened this issue Jan 28, 2025 · 0 comments
Open

Services Module shows no open ports when ports are open #1087

duncangreene opened this issue Jan 28, 2025 · 0 comments

Comments

@duncangreene
Copy link

This might be regarded as the same issue as #1080, but raising as a separate issue just in case the Services vs. TLS output covered in #1080 might be regarded as a separate issue.

Describe the bug
Services module shows no open ports...

Image

...but a standalone nmap scan against the same device yields the below open ports.

PS C:\Users\Lenovo ThinkPad> nmap -sTUV --top-ports 1000 10.225.10.179
Starting Nmap 7.93 ( https://nmap.org/ ) at 2025-01-28 11:40 GMT Standard Time
NSOCK ERROR [0.0580s] ssl_init_helper(): OpenSSL legacy provider failed to load.
 
Warning: 10.225.10.179 giving up on port because retransmission cap hit (10).
Nmap scan report for 10.225.10.179
Host is up (0.0030s latency).
Not shown: 994 filtered tcp ports (no-response), 908 closed udp ports (port-unreach), 87 open|filtered udp ports (no-response)
PORT      STATE SERVICE        VERSION
22/tcp    open  ssh            OpenSSH 8.2 (protocol 2.0)
23/tcp    open  telnet         BusyBox telnetd
53/tcp    open  domain         dnsmasq 2.86
80/tcp    open  http           nginx
443/tcp   open  ssl/http       nginx
8080/tcp  open  ssl/http-proxy
53/udp    open  domain         dnsmasq 2.86
123/udp   open  ntp            NTP v4 (secondary server)
161/udp   open  snmp           SNMPv1 server; net-snmp SNMPv3 server (public)
1701/udp  open  L2TP?
47808/udp open  bacnet
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
SF-Port8080-TCP:V=7.93%T=SSL%I=7%D=1/28%Time=6798CBDC%P=i686-pc-windows-wi
SF:ndows%r(GenericLines,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-
SF:Type:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n40
SF:0\x20Bad\x20Request")%r(GetRequest,2D9,"HTTP/1\.0\x20404\x20Not\x20Foun
SF:d\r\nAccess-Control-Allow-Credentials:\x20true\r\nAccess-Control-Allow-
SF:Headers:\x20Accept,\x20Content-Type,\x20Content-Length,\x20Accept-Encod
SF:ing,\x20Authorization\r\nAccess-Control-Allow-Methods:\x20POST,\x20GET,
SF:\x20DELETE,\x20PUT,\x20OPTIONS\r\nAccess-Control-Allow-Origin:\x20\*\r\
SF:nAccess-Control-Expose-Headers:\x20Accept,\x20Content-Type,\x20Content-
SF:Length,\x20Accept-Encoding,\x20Authorization\r\nAccess-Control-Request-
SF:Headers:\x20Accept,\x20Content-Type,\x20Authorization\r\nAccess-Control
SF:-Request-Method:\x20POST\r\nAccess-Control-Request-Method:\x20GET\r\nAc
SF:cess-Control-Request-Method:\x20DELETE\r\nAccess-Control-Request-Method
SF::\x20PUT\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nX-Content-
SF:Type-Options:\x20nosniff\r\nDate:\x20Tue,\x2028\x20Jan\x202025\x2012:21
SF::48\x20GMT\r\nContent-Length:\x2019\r\n\r\n404\x20page\x20not\x20found\
SF:n")%r(HTTPOptions,274,"HTTP/1\.0\x20200\x20OK\r\nAccess-Control-Allow-C
SF:redentials:\x20true\r\nAccess-Control-Allow-Headers:\x20Accept,\x20Cont
SF:ent-Type,\x20Content-Length,\x20Accept-Encoding,\x20Authorization\r\nAc
SF:cess-Control-Allow-Methods:\x20POST,\x20GET,\x20DELETE,\x20PUT,\x20OPTI
SF:ONS\r\nAccess-Control-Allow-Origin:\x20\*\r\nAccess-Control-Expose-Head
SF:ers:\x20Accept,\x20Content-Type,\x20Content-Length,\x20Accept-Encoding,
SF:\x20Authorization\r\nAccess-Control-Request-Headers:\x20Accept,\x20Cont
SF:ent-Type,\x20Authorization\r\nAccess-Control-Request-Method:\x20POST\r\
SF:nAccess-Control-Request-Method:\x20GET\r\nAccess-Control-Request-Method
SF::\x20DELETE\r\nAccess-Control-Request-Method:\x20PUT\r\nDate:\x20Tue,\x
SF:2028\x20Jan\x202025\x2012:21:48\x20GMT\r\nContent-Length:\x200\r\n\r\n"
SF:)%r(RTSPRequest,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:
SF:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20
SF:Bad\x20Request")%r(Help,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nConte
SF:nt-Type:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\
SF:n400\x20Bad\x20Request");
MAC Address: 24:E1:24:F4:78:A8 (Xiamen Milesight IoT)
Service Info: Host: gateway
 
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 2999.06 seconds
PS C:\Users\Lenovo ThinkPad>

To Reproduce
DUT is here.

Expected behaviour
Services Module in report should show necessary TCP and UDP ports as flagged up in nmap scan.

Error logs
ug67services.zip

Environment (please provide the following information about your setup):

  • Version: 2.1

Additional context
Only modifications from official 2.1 release are as below.

  • resources/test_packs/qualification.json (Set tests to excluded/recommended/informational as appropriate)
  • resources/devices/device_profile.json (Add custom questions)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@duncangreene