How to Use : Nmap for ports and Network scanning?

Here, doors and windows are similar to ports and the person standing on the door can be understood as the services running on the specific ports.

There are various tools and methods to scan a host/server/web-server. Let’s begin going through them one by one.

In the Network ans Port scanner section of Information gathering tab of our Kali Linux, there are mainly two tools in the list.

N-map is one of those tools that a pen-tester can’t live without. It has so many modules and modes, that it does everything. It can scan open ports, identify what services is running on the ports, it even has various scripts that can make your life ultra easy while scanning. No matter, how much I exaggerate, n-map always exceeds your expectations. It’s so good that it is even shown in movies with hacking scenes. If you visit N-map Official Website, you can know more about it’s development and uses in a orderly manner.

Also Read : 50+ Awesome Tor Tools For Browsing Dark-web Safely.

In addition to the interesting ports table, N-map can provide further
information on targets, including reverse DNS names, operating system
guesses, device types, and MAC addresses.

A typical N–map scan is shown in Example 1. The only N-map arguments used
in this example are -A, to enable OS and version detection, script
scanning, and trace-route; -T4 for faster execution; and then the
hostname.

Moving forward, we should learn some basic commands.

You can use either hostname(DNS) or host-IP(preferably ipv4).

N-map basic scan with -v (verbosity)

You can see the difference between both the output. So, always use -v tag. You can also increase the verbosity level by adding more v like this.

All you have to do is type the next IPs in your syntax like this.

At the end of the syntax add ‘*’.

I did a random subnet scan and just look at the output, I got!

Tip- Don’t forget to add verbosity (-v) tag in your syntax.

Use ‘-sA’ tag in the syntax, and you will need the root* privileges to do this type of scan.

Use ‘-iL’ in your syntax.

Here -A indicates aggressive, it will give us extra information, like OS detection (-O), version detection, script scanning (-sC), and traceroute (–traceroute). It even provides a lot of valuable information about the host.

Here is the final output for. If you have any queries or questions, ask me in the comment.

Also Read : Using Python Steal Browser Data Of Anybody

Conclusion :

N-map is clearly a major part of the “Swiss Army Knife” of networking, thanks to its inventory of versatile commands. It lets you quickly scan and discover essential information about your network, hosts, ports, firewalls, and operating systems. N-map has numerous settings, flags, and preferences that help system administrators analyze a network in detail.

If you want to learn more about n-map and how it works and it;s various uses with scripts, check out their official website “N-map: the Network Mapper — Free Security Scanner”.

With this article, we have finished our “Network and port scanner” section of our Information gathering section.