Jen Beveridge and Joe Kolenda. Developed by Gordon Lyon Features –Host discovery –Port scanning –Version detecting –OS detection –Scriptable interaction.

Slides:



Advertisements
Similar presentations
 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,
Advertisements

Nmap Experiment.
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning Last updated
System Security Scanning and Discovery Chapter 14.
ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.
Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
Computer Security and Penetration Testing
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.
1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.
Automating Endpoint Security Policy Enforcement Computing and Networking Services University of Toronto.
Penetration Testing.
Port Scanning.
LINUX Security, Firewalls & Proxies. Course Title Introduction to LINUX Security Models Objectives To understand the concept of system security To understand.
Ana Chanaba Robert Huylo
SCSC 555 Frank Li.  Port scanning  Port-scanning tools  Ping sweeps 2.
Mohan Kumar Puttasiddaiah
Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.
AppSec USA 2014 Denver, Colorado nmap 101 An introduction to the timeless network scanner.
CIS 450 – Network Security Chapter 3 – Information Gathering.
Scapy. Introduction  It’s a packet manipulation tool.  It can forge or decode packets of a wide number of protocols, send them on the wire, capture.
Snort & Nmap Mike O’Connor Eric Tallman Matt Yasiejko.
MIS Week 4 Site:
Port Scanning and Enumeration (NMAP)
Information Networking Security and Assurance Lab National Chung Cheng University 1 Port Scanners.
Network Assessment How intrusion techniques contribute to system/network security Network and system monitoring System mapping Ports, OS, applications.
Scanning & Enumeration Lab 3 Once attacker knows who to attack, and knows some of what is there (e.g. DNS servers, mail servers, etc.) the next step is.
Trinity Uses Nmap, shouldn’t you?. From “The Art of War” "... knowing your enemy 100% of the time, you will win your battle 100% of the time, knowing.
Assessing a Target System Source: Chapter 3 Computer Security Fundamentals Chuck Easttom Prentice Hall, 2006.
1 Figure 4-1: Targeted System Penetration (Break-In Attacks) Host Scanning  Ping often is blocked by firewalls  Send TCP SYN/ACK to generate RST segments.
Topics Network topology Virtual LAN Port scanners and utilities Packet sniffers Weak protocols Practical exercise.
Information Security 493. Lab 10.1: Look for Security Events within Windows XP Logging is automatically enabled for many items on a workstation, but the.
Retina Network Security Scanner
Hands-On Ethical Hacking and Network Defense
TUTORIAL #3 INFORMATION SECURITY : LOOK FOR SECURITY EVENTS WITHIN WINDOWS XP Logging is automatically enabled for many items on a workstation,
Firewalls Fighting Spyware, Viruses, and Malware Ch 5.
Scanning.
Command Line Interface Introduction Configuration Example Alcatel-Lucent Security Products Configuration Example Series.
Kali Linux BY BLAZE STERLING. Roadmap  What is Kali Linux  Installing Kali Linux  Included Tools  In depth included tools  Conclusion.
By Matt Jennings & David Spano.  History of Nmap  What is Nmap  How Nmap works  The goal of Nmap  What is Zenmap  Advantages of Zenmap  How to.
Penetration Testing By Blaze Sterling. Roadmap What is Penetration Testing How is it done? Penetration Testing Tools Kali Linux In depth included tools.
Steven Geisel Gabe Owens.  Angry IP Scanner is an open-source and cross-platform network scanner  Features include IP Address scanning, port scanning,
Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.
Common System Exploits Tom Chothia Computer Security, Lecture 17.
Microsoft OS Vulnerabilities April 1, 2010 MIS 4600 – MBA © Abdou Illia.
Penetration Testing Reconnaissance 2
Protection (tools).
Hands-On Ethical Hacking and Network Defense
CITA 352 Chapter 6 Enumeration.
Jen Beveridge and Joe Kolenda
IBM Tivoli Provisioning Manager IPv6 Enablement
Penetration Testing Scanning
Port Scanning James Tate II
Click to edit Master subtitle style
Penetration Testing Armitage: Metasploit GUI and Machine-Gun Style Attack CIS 6395, Incident Response Technologies Fall 2016, Dr. Cliff Zou
CITA 352 Chapter 5 Port Scanning.
The Linux Operating System
Network Commands 2 Linux Ubuntu A.S.
Network Tools and Utilities
Footprinting (definition 1)
6. Operating Systems Finger printing & Scanning
Intro to Ethical Hacking
Metasploit Analysis Report Overview
Analyzing OS Sample Windows 7 image provided by different class
A Patch A Day Keeps The Malware Away
Acknowledgement Content from the book:
Cyber Operation and Penetration Testing Armitage: Metasploit GUI and Machine-Gun Style Attack Cliff Zou University of Central Florida.
Hacking Your Local Internets
Presentation transcript:

Jen Beveridge and Joe Kolenda

Developed by Gordon Lyon Features –Host discovery –Port scanning –Version detecting –OS detection –Scriptable interaction with the target secret.pathetic.net

Identifying open ports Network Mapping Auditing security

Runs on Linux, Windows, Mac OS X and other smaller operating systems GUI options: – Zenmap – XNMap – NmapFE

DNS lookup- matches name with IP NMap pings the remote target with 0 byte packets to each port – If packets are not received back, port is open – If packets are received, port is closed Sends different packets with different timing to determine filtered/unfiltered, version, etc. Firewalls can interfere with this process

Displays open ports Different output based upon constraints on run, but can show – Version type – Filtered/unfiltered

When run through command prompt or terminal, entry fields are: – Program – Constraints on run – Target Ex. > nmap –sS scanme.nmap.org Ex. > nmap -Db ftp.pathetic.net secret.pathetic.net

Easy to install Fairly easy to use, firewall problems and network setting issues User guide available, many tutorials Scan time- can range from a few seconds to several hours Can scan over a range of IP addresses and utilize stealthy scanning

Can be used for hacking- to discover vulnerable ports System admins can use it to check that systems meet security standards Unauthorized use of Nmap on a system could be illegal. Make sure you have permission before using this tool

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.