Sponsored Links
-->

Wednesday, June 6, 2018

Nmap Tutorial - Part 1 (OS Detecting) - YouTube
src: i.ytimg.com

Nmap (Network Mapper) is a security scanner, originally written by Gordon Lyon (also known by his pseudonym Fyodor Vaskovich), used to discover hosts and services on a computer network, thus building a "map" of the network. To accomplish its goal, Nmap sends specially crafted packets to the target host(s) and then analyzes the responses.

The software provides a number of features for probing computer networks, including host discovery and service and operating-system detection. These features are extensible by scripts that provide more advanced service detection, vulnerability detection, and other features. Nmap can adapt to network conditions including latency and congestion during a scan. The Nmap user community continues to develop and refine the tool.

Nmap started as a Linux-only utility, but porting to Windows, Solaris, HP-UX, BSD variants (including macOS), AmigaOS, and IRIX have followed. Linux is the most popular platform, followed closely by Windows.


Video Nmap



Features

Nmap features include:

  • Host discovery - Identifying hosts on a network. For example, listing the hosts that respond to TCP and/or ICMP requests or have a particular port open.
  • Port scanning - Enumerating the open ports on target hosts.
  • Version detection - Interrogating network services on remote devices to determine application name and version number.
  • OS detection - Determining the operating system and hardware characteristics of network devices.
  • Scriptable interaction with the target - using Nmap Scripting Engine (NSE) and Lua programming language.

Nmap can provide further information on targets, including reverse DNS names, device types, and MAC addresses.

Typical uses of Nmap:

  • Auditing the security of a device or firewall by identifying the network connections which can be made to, or through it.
  • Identifying open ports on a target host in preparation for auditing.
  • Network inventory, network mapping, maintenance and asset management.
  • Auditing the security of a network by identifying new servers.
  • Generating traffic to hosts on a network, response analysis and response time measurement.
  • Finding and exploiting vulnerabilities in a network.

Maps Nmap



Graphical interfaces

NmapFE, originally written by Zach Smith, was Nmap's official GUI for Nmap versions 2.2 to 4.22. For Nmap 4.50 (originally in the 4.22SOC development series) NmapFE was replaced with Zenmap, a new official graphical user interface based on UMIT, developed by Adriano Monteiro Marques.

Various web-based interfaces allow controlling Nmap or analysing Nmap results from a web browser. These include Nmap-CGI, and IVRE.

Microsoft Windows specific GUIs exist, including NMapWin, which has not been updated since June 2003 (v1.4.0), and NMapW by Syhunt.


How to install Nmap 7.40 on Linux Ubuntu, Fedora, Redhat, Suse etc
src: uvelinux.com


Reporting results

Nmap provides four possible output formats. All but the interactive output is saved to a file. Nmap output can be manipulated by text processing software, enabling the user to create customized reports.

Interactive
presented and updated real time when a user runs Nmap from the command line. Various options can be entered during the scan to facilitate monitoring.
XML
a format that can be further processed by XML tools. It can be converted into a HTML report using XSLT.
Grepable
output that is tailored to line-oriented processing tools such as grep, sed or awk.
Normal
the output as seen while running Nmap from the command line, but saved to a file.
Script kiddie
meant to be an amusing way to format the interactive output replacing letters with their visually alike number representations. For example, Interesting ports becomes Int3rest1ng p0rtz.

Nmap vs Zenmap Port Scanner - YouTube
src: i.ytimg.com


History

Nmap was first published in September 1997, as an article in Phrack Magazine with source-code included. With help and contributions of the computer security community, development continued. Enhancements included operating system fingerprinting, service fingerprinting, code rewrites (C to C++), additional scan types, protocol support (e.g. IPv6, SCTP) and new programs that complement Nmap's core features. Changes include:


The Nmap Changelog records all changes.


Install Nmap on Windows | Nmap
src: geek-university.com


Ethical issues and legality

Nmap is a tool that can be used to discover services running on Internet connected systems. Like any tool it could potentially be used for black hat hacking, as a precursor to attempts to gain unauthorized access to computer systems; however, Nmap is also used by security and systems administration to assess their own networks for vulnerabilities (i.e. white hat hacking).

System administrators can use Nmap to search for unauthorized servers, or for computers that do not conform to security standards.

Nmap is related to vulnerability assessment tools such as Nessus, which test for common vulnerabilities in open ports. The included NSE scripts that are packaged with modern versions of Nmap are able to perform vulnerability checks against discovered services.

In some jurisdictions, unauthorized port scanning is illegal.


WannaCry - Part 1 - How to Detect with NMAP if you're vulnerable ...
src: i.ytimg.com


License

Nmap was originally distributed under the GNU Public License (GPL). In later releases, Nmap's authors added clarifications and specific interpretations to the license where they felt the GPL was unclear or lacking. For instance, Nmap 3.50 specifically revoked the license of SCO Group to distribute Nmap software because of their views on the SCO-Linux controversies.


Ethical Hacking Lesson: Unicornscan and Comparison with nmap
src: 4.bp.blogspot.com


In popular culture

In The Matrix Reloaded, Trinity is seen using Nmap to access a power plant's computer system, allowing Neo to "physically" break in to a building. The appearance of Nmap in the film was widely discussed on Internet forums and hailed as an unusually realistic example of hacking.

Nmap and NmapFE were used in The Listening, a 2006 movie about a former NSA officer who defects and mounts a clandestine counter-listening station high in the Italian alps.

Nmap source code can be seen in the movie Battle Royale, as well as brief views of the command line version of Nmap executing in Live Free or Die Hard and Bourne Ultimatum. In 2013, Nmap continued to make appearances in movies including popular sci-fi movie Elysium.

The film Dredd, a film adaptation of the famous Judge Dredd comics, was released in 2012 and also contains multiple Nmap scenes. Nmap is used for network reconnaissance and exploitation of the slum tower network. It is even seen briefly in the movie's trailer.

The command Nmap is widely used in the video game Hacknet, allowing to probe the network ports of a target system to hack it.


Opening nmap with Excel - YouTube
src: i.ytimg.com


In academia

Nmap is an integral part of academic activities. It has been used for research involving the TCP/IP protocol suite and networking in general. As well as being a research tool, Nmap has become a research topic.


Movies Featuring the Nmap Security Scanner
src: nmap.org


Sample output


Opening nmap with Excel - YouTube
src: i.ytimg.com


See also

  • Aircrack-ng
  • BackBox
  • BackTrack
  • dSploit
  • Kali linux
  • Kismet (software)
  • Metasploit Framework
  • Nessus (software)
  • Netcat
  • OpenVAS
  • SAINT (software)
  • SATAN
  • Wireshark

Ethical Hacking Lesson: Unicornscan and Comparison with nmap
src: 4.bp.blogspot.com


References


Movies Featuring the Nmap Security Scanner
src: nmap.org


Bibliography


Bypassing Firewall using Nmap - YouTube
src: i.ytimg.com


External links

  • Official website
  • nmap-online.com - Online tool to check your computer
  • HackerTarget.com - Online version of the Nmap Port Scanner
  • Poftut.com - Nmap Tutorial

Source of article : Wikipedia