Blocked Ports Still Show up on Nmap?

Btw I apologize if I sound kinda stupid, I'm not new to cyber security as a whole but I don't have much knowledge of the topic and how stuff works, but anyways; I was pen testing today and found open, vulnerable, ports on Nmap (those being 135, 139, 445, 53, 80, 443, and some other random ones), and on my Windows Defender Firewall settings I made inbound rules to block connections to those ports, but after running Nmap again, as well as "netstat -ano" the ports I thought I had closed were still in fact open (according to Nmap), and listening on cmd. Is this normal? Is there something else I need to do to ensure my ports are closed? Thanks for your understanding and your help!
CF
Cyber Forum199d ago
Post created!
🔎 This post has been indexed in our web forum and will be seen by search engines so other users can find it outside Discord 🕵️ Your user profile is private by default and won't be visible to users outside Discord, if you want to be visible in the web forum you can add the "Public Forum Profile" role in <id:customize> ✅ You can mark a message as the answer for your post with Right click -> Apps -> Mark Solution (if you don't see the option, try refreshing Discord with Ctrl + R)
From An unknown user
D
DirtyJ199d ago
I know Windows can be a bit weird sometimes, but you can at least get a representation of what's bound to those ports here if netstat isn't giving you enough https://learn.microsoft.com/en-us/sysinternals/downloads/tcpview This guide from them may also help https://learn.microsoft.com/en-us/windows/security/operating-system-security/network-security/windows-firewall/best-practices-configuring
W
w33t199d ago
What flags are you running on NMAP? -sU or -Pn? Try it with -sV
M
Mony199d ago
I don't quite understand what you mean
W
w33t199d ago
When you're running NMAP, you generally provide it with flags that controls how it functions, so -p- will scan all ports, T1 - T5 controls the speed, -v - -vvv controls the verbosity. You can adjust what types of packets you're sending, which can change the response you're getting. You might need to do this in some scenarios depending on the firewall you're scanning. -sV is the most "common" one
M
Mony199d ago
Here you can see the rule I set, to block, and what Nmap says
W
w33t199d ago
You can also do -A, if I recall, to do an OS fingerprint
M
Mony199d ago
oh btw im using zenmap if that helps
W
w33t199d ago
Same premise, it's just a GUI for NMAP
M
Mony199d ago
yeah i know i think thats what im doing
W
w33t199d ago
But 135, 139, and 445 are kind of expected to be open. I'm 99% sure there will be another firewall rule there that's overriding the one you made
M
Mony199d ago
possible
W
w33t199d ago
Are you running this against the machine that you're currently on?
M
Mony199d ago
yep also did i just leak my ip?
W
w33t199d ago
It's... a private IP, dawg, it doesn't matter lol
M
Mony199d ago
i yeah i forgot lmao i also ran the default gateway and that had other ports opened, idk if that means anything but
W
w33t199d ago
But if you're running NMAP against the same system that it's running on, I feel like the loopback wouldn't feed through the firewall NMAP can also be wrong, depending on what types of packets you're sending and it might assume something is "open (filtered)", depending on the device's response
M
Mony199d ago
That’s a good point I can try running it on another device
More Posts
Need helpHaving a brain fart trying to answer this question... any help would be great. Thank you What file, cyber securityHello I need help with my lab that says challenge on it I tried doing this and got errors so please Host Name resolutionI am having a project in security for host name resolution but the main problem my code is facing isi need a person that can help me on my cyber security class please pin me on dms if you are helpingme with my class thank youXSS injection questionI’m creating a very simple website that will use ChatGPTs api. I want to display the content I get fmunmap_chunk() : invalid pointer error in client server codeHello, I am doing a project on client server using socket programming in c++ using aes encryption anDJVU RansomHello, I am having a really big problem, yesterday my PC got hacked and all of my files have been enResolve /app in Flatpak's /proc/<pid/mapsHello, guys. I really need some help here, I have asked this in so many places and have never gottenvirus not getting detected svchost.exe filei have a virus on my computer, its not getting detected by Kaspersky, windows defender or virustotalHello everyoneI need access to a bot's steam accountSnort Struggles: How to detect the FTP service name?I am muddling through learning Snort and feeling a bit daft. I'm trying to write a rule that allows Hi there, I am having an issue with my instagram account, its hacked. can you help with this.Hi there, I am here to bring this into your notice that my account is hacked few days ago. i can't rNeed some help answering this questionI have answered it but It's mostly wrong im pretty sure would just appreciate someone to help me outIdk if im wording this right.I was wondering if someone could kinda guide or teach me a little about code stuff. Maybe just enoughow to set up a proxy?So im living here in Delhi, India and I have wifi connection in Mumbai, india how can I use that wifNeed help choosing what to do for my future in cybersecurity (PLEASE READ)Im a full time college student getting my bachelors in IT and cyber , i do 40 hrs a week in college,hello i'm violet how can i learn cybersequrityEthical Hacking ReportI want someone to look through this please and give me suggests on improvementsI wanna learn ethical hackingHi, i cant disclose my name because i dont want to but you can refer me as unknown. I have some knowwanting to learn Cyber securityHI my name is sal, and i wanted to ask if any know someone and is a mentor on teaching me cyber secu