Beruflich Dokumente
Kultur Dokumente
Org
Insecure.Org
Scan Goals
Collect empirical data and use it to enhance Nmap functionality. Use the data to help knowledeable people make your scans more effective. Detect and resolve Nmap bugs and performance issues through the large-scale scanning. Demonstrate techniques useful for routine scans as well as wide-scale Internet scanning.
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Insecure.Org
Nmap News!
Insecure.Org
Insecure.Org
NSE Demo
# ./nmap -PN -; -sN -p5< -8 --scriptO$ns-t"st-op"nr"cursion+$ns-sa("-r"cursion-port.ns"+$ns-sa("-r"cursiontEi$.ns" $ns-1.#)ac,hat.com archim"$"s.shmoo.com %nt"r"sting ports on $ns-1.#)ac,hat.com (21!.2<1.!<.55): PH.8 S8&8@ S@.I%J@ 5</u$p op"n $omain /7 :NS sourc" port ran$omn"ss: @..H.: S"r;"r r"(us"$ r"cursion /7 :NS 8M%: ran$omn"ss: @..H.: S"r;"r r"(us"$ r"cursion %nt"r"sting ports on archim"$"s.shmoo.com (12.21.210.2< ): PH.8 S8&8@ S@.I%J@ 5</u$p op"n $omain /7 Nam"s"r;"r op"n r"cursi;" Pu"r*s (JI@-1999-002 ) (K%: 1<!+ !78): ."cursion s""ms "na#)"$ /7 :NS sourc" port ran$omn"ss: 12.21.210.2< is Q.@&8: 51 Pu"ri"s in <.2 s"con$s (rom 51 ports 'ith st$ $"; 1!099 /7 :NS 8M%: ran$omn"ss: 12.21.210.2< is Q.@&8: 52 Pu"ri"s in <.< s"con$s (rom 52 tEi$s 'ith st$ $"; 2099!
Insecure.Org
Zenmap GUI
Insecure.Org
2 Generation OS Detection
# nmap -& -8 scanm".nmap.org >...? :";ic" t*p": g"n"ra) purpos" .unning: -inuE 2.!.M HS $"tai)s: -inuE 2.!.20-1 (L"$ora Jor" 5)
nd
Insecure.Org
Version Detection
# nmap -& -8 scanm".nmap.org Starting Nmap ( http://nmap.org ) %nt"r"sting ports on scanm".nmap.org (! .1<.1< .52): Not sho'n: 1709 (i)t"r"$ ports PH.8 S8&8@ S@.I%J@ I@.S%HN 22/tcp op"n ssh Hp"nSSH .< (protoco) 2.0) 25/tcp c)os"$ smtp 5</tcp op"n $omain %SJ K%N: 9.<. 70/tcp c)os"$ goph"r 80/tcp op"n http &pach" http$ 2.2.2 ((L"$ora)) /7 H8B- tit)": Sit" $o"sn1t ha;" a tit)". 11</tcp c)os"$ auth :";ic" t*p": g"n"ra) purpos" .unning: -inuE 2.!.M HS $"tai)s: -inuE 2.!.20-1 (L"$ora Jor" 5) Nptim": 0. 25 $a*s (sinc" 8u" Ba* 1< 12: !:59 2008) Nmap $on": 1 %P a$$r"ss scann"$ in <0.5!7 s"con$s .a' pac,"ts s"nt: < ! (15 6K) / .c;$: !0 (<6K)
Insecure.Org
--reason
# nmap --r"ason -8 scanm".nmap.org >...? %nt"r"sting ports on scanm".nmap.org (205.217.15<.!2): Not sho'n: 1709 (i)t"r"$ ports ."ason: 1709 no-r"spons"s PH.8 S8&8@ S@.I%J@ .@&SHN 22/tcp op"n ssh s*n-ac, 25/tcp c)os"$ smtp r"s"t 5</tcp op"n $omain s*n-ac, 70/tcp c)os"$ goph"r r"s"t 80/tcp op"n http s*n-ac, 11</tcp c)os"$ auth r"s"t
Insecure.Org
--packet-trace
# nmap --pac,"t-trac" -p 25+11< scanm".nmap.org Starting Nmap ( http://nmap.org ) >...? .JI: (0.1 <0s) 8JP ! .1<.1< .52:25 5 192.1!8.0.8: !7<! .& tt)O55 i$O0 ip)"nO 0 s"PO0 'inO0 ac,O291 779 7 .JI: (0.1 0s) 8JP ! .1<.1< .52:11< 5 192.1!8.0.8: !7<! .& tt)O55 i$O0 ip)"nO 0 s"PO0 'inO0 ac,O291 779 7 >...? Nmap $on": 1 %P a$$r"ss (1 host up) scann"$ in 0.15 s"con$s
Insecure.Org
Advanced Traceroute
# nmap Dtrac"rout" scanm".nmap.org >...? 8.&J@.HN8@ (using port 22/tcp) HHP .88 &::.@SS 1 0.!0 'ap.nmap-int.org (192.1!8.0.!) >...? ! 9.7 151.1! .251. 2 7 10.89 so-1-0-0.mpr1.sCc2.us.a#o;".n"t (! .125.<0.17 ) 8 10.52 so- -2-0.mpr<.pao1.us.a#o;".n"t (! .125.28.1 2) 9 1 .25 m"tro0.s;.s;co)o.com (208.185.1!8.17<) 10 12.80 scanm".nmap.org (! .1<.1< .52)
Insecure.Org
Insecure.Org
Insecure.Org
Ncat
A modern interpretation of Hobbit's venerable Netcat Supports virtually all of the Netcat 1.10 features, except the basic portscanner. Also supports SSL, IPv6, multiple platforms, connection brokering, port redirection, proxies (client, server, chaining), shell execution, access control, and more. In development since 2005, nearly ready for release. Current dev lead is Kris Katterjohn. Available from svn://svn.insecure.org/ncat (login: guest/guest)
Insecure.Org
Ndiff
Compares two (or more) scans, displays changes (new/removed hosts, ports, changed services, etc.) Great for quick change detection with recurring scans. Perl version available from: svn://svn.insecure.org/nmap-exp/ndiff
Insecure.Org
Insecure.Org
Insecure.Org