Nmap
What is Nmap?
Nmap is a free and open-source network scanner. Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the responses. Nmap provides a number of features for probing computer networks, including host discovery and service and operating system detection.
How to download Nmap?
If you are using Kali Linux Operating System, Nmap is already pre-installed.
If you are using any other operating system, then we can download it at:
https://nmap.org/download.html
So, once we've downloaded the Nmap latest version, we are ready to run it.
Installing is a simple task and can be completed within a minute or two.
Working:
Open the command prompt with admin privileges and type: nmap
We get a result like this:
Nmap with ip address:
So in this as we can see, I scanned a random IP addresss using Nmap. Through this command we get to know which all ports in the target system are closed and open, through which we can use other apt tools to penetrate and maybe do a Privilege Escalation attack.
As we can see that port 80 is open, so there is a web application up and running in http, which makes hacker's work a bit too easy to penetrate and launch other attacks on the web app.
Similar to this we have tons of Nmap commands that are used to do different functionalities. To get familiarized with these commands use:
nmap --help
which is like a manual to see different ways of network scanning.
Now let's run a vulnerability test against a random target:
We use the command line:
Nmap is one of the most complete and accurate port scanners used by infosec professionals today. With it, we can perform simple port scan tasks or use its powerful scripting engine to launch DOS attacks, detect malware or brute force testings on remote and local servers.
Nmap is a free and open-source network scanner. Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the responses. Nmap provides a number of features for probing computer networks, including host discovery and service and operating system detection.
How to download Nmap?
If you are using Kali Linux Operating System, Nmap is already pre-installed.
If you are using any other operating system, then we can download it at:
https://nmap.org/download.html
So, once we've downloaded the Nmap latest version, we are ready to run it.
Installing is a simple task and can be completed within a minute or two.
Working:
Open the command prompt with admin privileges and type: nmap
We get a result like this:
Nmap with ip address:
So in this as we can see, I scanned a random IP addresss using Nmap. Through this command we get to know which all ports in the target system are closed and open, through which we can use other apt tools to penetrate and maybe do a Privilege Escalation attack.
As we can see that port 80 is open, so there is a web application up and running in http, which makes hacker's work a bit too easy to penetrate and launch other attacks on the web app.
Similar to this we have tons of Nmap commands that are used to do different functionalities. To get familiarized with these commands use:
nmap --help
which is like a manual to see different ways of network scanning.
Now let's run a vulnerability test against a random target:
We use the command line:
nmap -Pn --script vuln 192.0.2.0Nmap is one of the most complete and accurate port scanners used by infosec professionals today. With it, we can perform simple port scan tasks or use its powerful scripting engine to launch DOS attacks, detect malware or brute force testings on remote and local servers.
Comments
Post a Comment