Nmap Network vulnerability scanning tool


nmap-project-logo Network vulnerability scanning

Network vulnerability scanning tool Yes I’am talking about Nmap. Nmap means Network Mapper. It is a vulnerability scanning tool used by many hackers and security researchers for testing there network. Nmap is written by Gordon Lyon. Nmap is released on Phrack magazine on Sept. 1,1997.

In the list of vulnerability scanners there are many tools but the best one is nmap. It is the best tool for network mapping. For rapidly scanning large networks, security audits and for network inventory the nmap is designed.

Features Of Nmap

  1. Host discovery
  2. Port scanning
  3. Version detection
  4. OS detection
  5. Scriptable interaction with the target

Host Discovery

Host discovery means to determine the accessible hosts on a particular network. For host discovery we can use this command :-

nmap –sS –O 172.xxx.xxx.xxx/29

Port scanning

This is used to determine the ports which are open in host. For port scanning we can use this command :-

nmap -p 80 172.xxx.xxx.xxx

For move commands and how to use them this video is helpful for you.

 

  1. nmap x.x.x.x or you can give Range like x.x.x.0-255 or x.x.x.0/24
    It scans 1000 TCP Ports by Default.

  2. nmap -sP x.x.x.x you can also give Range like x.x.x.0-255 or x.x.x.0/24
    for ping scan.

  3. nmap -sS -PO -sV -o x.x.x.x you can also give range.oppsss somthing went wrong. sorry
    -sS for TCP syn scan
    -pO for Protocol Scan
    -sV for Determine the Version If Possible.
    -o for discover the Operating System if Possible.

  4. nmap -T5 x.x.x.x
    -T5 Regarding Timming (Faster)
    -T1 also regarding timming but its slow its too slow.

  5. nmap –top-port 20 x.x.x.0/24
    It display top most likely ports
    We also use 100 for top 100 most likely ports.

  6. nmap -sT -p80 x.x.x.0/24
    For find who is running web services.
    -sT for tcp connect scan.
    -p80 for display only tcp port 80.

Now run wireshark and select your interface and click start capture
your network trafick.

Now go to your terminal and type

  1. nmap -sS x.x.x.0/24 -D x.x.x.x x.x.x.x
    -sS for tcp syn scan
    -D for decoy that means you can hide your identity when you running scan.
    You can also use list of IP address for Decoy option.

Now see on the scan in wireshark.
See decoy option is working in Nmap

  1. nmap -F x.x.x.0/24

-v for verbose mode

  1. nmap -F x.x.x.0/24 –exclude x.x.x.x
    -F for top 100 most likely ports.
    –exclude for skip ip address.

  2. nmap -Pn x.x.x.x
    -Pn for Ping scan.

Written by

Raven Adler

Dropout of engineering now working as a full-time blogger. Her areas of Interest are Computers, Programming, and Blogging. At HackBS she writes articles related to Apps, Networking, Ethical hacking and cyber security.

One thought on “Nmap Network vulnerability scanning tool

  1. Hey how do you download a hacking software if you want to get started it will be really helpful if you give me some tips

Leave a Reply