Nmap (“Network Mapper”) is a free and open source (license) utility for network exploration or security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. n addition to my list you can also check out this Comprehensive Guide to Nmap here and of course the man pages
Here are some really cool scanning techniques using Nmap1) GET INFO ABOUT REMOTE HOST PORTS AND OS DETECTION nmap -sS -P0 -sV -O <target>Where < target > may be a single IP, a hostname or a subnet-sS TCP SYN scanning (also known as half-open, or stealth scanning)-P0 option allows you to switch off ICMP pings. -sV option enables version detection-O flag attempt to identify the remote operating systemOther option:-A option enables both OS fingerprinting and version detection-v use -v twice for more verbosity. nmap -sS -P0 -A -v < target >
2) GET LIST OF SERVERS WITH A SPECIFIC PORT OPENnmap -sT -p 80 -oG – 192.168.1.* | grep openChange the -p argument for the port number. See “man nmap” for different ways to specify address ranges. 3) FIND ALL ACTIVE IP ADDRESSES IN A NETWORKnmap -sP 192.168.0.*There are several other options. This one is plain and simple.Another option is:nmap -sP 192.168.0.0/24 for specific subnets4) PING A RANGE OF IP ADDRESSESRead more: urfix blog
Here are some really cool scanning techniques using Nmap1) GET INFO ABOUT REMOTE HOST PORTS AND OS DETECTION nmap -sS -P0 -sV -O <target>Where < target > may be a single IP, a hostname or a subnet-sS TCP SYN scanning (also known as half-open, or stealth scanning)-P0 option allows you to switch off ICMP pings. -sV option enables version detection-O flag attempt to identify the remote operating systemOther option:-A option enables both OS fingerprinting and version detection-v use -v twice for more verbosity. nmap -sS -P0 -A -v < target >
2) GET LIST OF SERVERS WITH A SPECIFIC PORT OPENnmap -sT -p 80 -oG – 192.168.1.* | grep openChange the -p argument for the port number. See “man nmap” for different ways to specify address ranges. 3) FIND ALL ACTIVE IP ADDRESSES IN A NETWORKnmap -sP 192.168.0.*There are several other options. This one is plain and simple.Another option is:nmap -sP 192.168.0.0/24 for specific subnets4) PING A RANGE OF IP ADDRESSESRead more: urfix blog
Posts
0 comments:
Post a Comment