注意看起来拉曼在“发布答案”按钮上有点快...
假设:
nmap输出将始终像OP提供的两个示例之一nmap输出将始终在相同的字段中具有Hostname和OS名称(即,不必担心nmap由于数据长度的变化而在不同的单词处换行)- OP
OS guess在其示例中显示时awk,示例nmap数据显示OS details(以下答案基于OS details; OP可以根据其nmap调用实际返回的内容进行修改) nmap实际上,数据确实在>每行输出的第一列中包含一个(如OP样本输入中所示);这意味着OPawk字段引用可能需要相应地移动+/-(OP可以根据行是否以开头来调整答案-下方->)
输入样本(代替nmap在主机上运行):
$ cat nmap.up.dat
> Starting Nmap 6.40 ( http://nmap.org ) at 2020-11-29 14:58 EST
> Nmap scan report for HostName (134.99.120.2) Host is up (0.00067s
> latency). PORT STATE SERVICE 22/tcp open ssh Warning: OSScan
> results may be unreliable because we could not find at least 1 open
> and 1 closed port Device type: general purpose Running: Linux OS CPE:
> xx:/o:xxx:xxxxxos:9.10 OS details: Linux Network Distance: 7 hops OS
> detection performed. Please report any incorrect results at
> http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned
> in 2.58 seconds
$ cat nmap.down.dat
> Starting Nmap 6.40 ( http://nmap.org ) at 2020-11-29 15:00 EST
> Note: Host seems down. If it is really up, but blocking our ping
> probes, try -Pn Nmap done: 1 IP address (0 hosts up) scanned in 3.64
> seconds
一个awk解决方案,尽管我假设OP实际上不会nmap为单个IP地址(???)提供2套输出...
ipaddr='134.99.120.2'
awk -v ip="${ipaddr}" ' # pass ip addr in as awk variable "ip"
FNR==1 { hstat="host_up" # reset defaults for status ...
hname=hos="unknown" # hostname and host OS
}
/down/ { hstat="host_down" ; next } # reset status
/scan report for/ { hname=$6 ; next } # reset hostname
/OS details/ { hos=$5 ; next } # reset host OS
ENDFILE { fmt="%-18s%-12s%-15s%s\n" # re-usable format
if ( NR==FNR ) # for first file print a header:
{ printf fmt, "$ip", "$status", "$host_name", "$os" }
printf fmt, ip, hstat, hname, hos # otherwise print results
}
' nmap.up.dat nmap.down.dat
注意:ENDFILE要求GNU awk(根据Ed Morton的评论)
上面生成:
$ip $status $host_name $os
134.99.120.2 host_up HostName Linux
134.99.120.2 host_down unknown unknown
“一个awk解决方案,尽管我假设OP实际上不会为单个IP地址(???)提供2套nmap输出...”-正确。这是一个很棒的解决方案!
您应该提到,需要ENDFILE的GNU awk。