Nmap (Network Mapper)

 Nmap (Network Mapper)

Nmap (Network Mapper) is the flagship network discovery and security auditing tool included in Kali Linux. It is used to discover hosts, open ports, running services, and even operating system versions on a network. 

                                                 

                                                            you can Download Book

At its core, Nmap sends raw IP packets and analyzes the responses to determine what is live on the network. It is incredibly versatile, supporting advanced scripting, version detection, and various scanning techniques to evade firewalls.


Here are practical examples of its most common uses:


- Basic Host Discovery (Ping Sweep): To find all live devices on a local network, use a ping scan. This quickly identifies which IPs are responsive without probing ports. 

  `nmap -sn 192.168.1.0/24`


- Port Scanning: To aggressively discover open ports, service versions, and operating systems on a specific target, use the `-A` (Aggressive) flag. This combines OS detection, version detection, and traceroute. 

  `nmap -A 192.168.1.10`


- Vulnerability Scripting: Nmap includes the Nmap Scripting Engine (NSE) which allows users to run vulnerability checks. For example, to test if a web server is vulnerable to the EternalBlue exploit, you can use:

  `nmap --script vuln 192.168.1.10`


- Firewall Evasion: To bypass basic firewall rules, you can use a SYN stealth scan (`-sS`), which never completes a full TCP handshake, making it less likely to be logged by the target. 

  `nmap -sS -p 443 192.168.1.10`


Because of its speed, flexibility, and extensive scripting library, Nmap remains the first tool security professionals reach for during the reconnaissance phase of any penetration test.

Comments

Post a Comment

Popular posts from this blog

Termux tutorial

Termux: A Powerful Linux Terminal for Android Termux is a free and open-source terminal emulator and Linux environment application for Android devices. It allows users to run a Linux command-line interface directly on their smartphones or tablets without requiring root access. Designed for developers, ethical hackers, system administrators, and technology enthusiasts, Termux transforms an Android device into a portable Linux workstation. One of the biggest advantages of Termux is its simplicity and flexibility. After installation, users are provided with a Bash shell and a package manager that allows them to install hundreds of Linux packages. Common programming languages such as Python, C, C++, Java, Ruby, PHP, Node.js, and Go can be installed easily. This makes Termux an excellent platform for learning programming, writing scripts, and testing applications on the go. Termux uses the pkg and apt package managers to install software packages. Users can update the environment with ...
Read more

Bug Bounty Hunter – The Professional Vulnerability Hunter

Image
A Bug Bounty Hunter is a cybersecurity researcher who finds and reports security flaws in websites, apps, and systems in exchange for cash rewards (bounties) from companies like Google , Facebook , and Uber.  💰 How Bug Bounties Work    1. Target Selection – Choose a program (e.g., HackerOne, Bugcrowd).   2. Recon & Testing – Hunt for vulnerabilities (e.g., SQLi, XSS, RCE).   3. Submit a Report – Document the bug with PoC (Proof of Concept).   4. Get Paid – Rewards range from  $50 to $500,000+ per bug.   You can Download book from here 🔥 Top Bug Bounty Platforms  |    Platform     |     Popular Programs   |    Avg. Payout |   |-------------|---------------------|------------|   |    HackerOne   | Uber, Twitter, GitHub | $500–$20K |   |     Bugcrowd    | AWS, Tesla, Cisco | $300–$15K | ...
Read more

Vulnerability Assessor – The Proactive Security Specialist

Image
A Vulnerability Assessor is a cybersecurity professional who identifies, classifies, and prioritizes security weaknesses in systems, networks, and applications before attackers exploit them. Unlike penetration testers (who exploit flaws), assessors focus on discovery and risk analysis.  🔍 Core Responsibilities 1. Vulnerability Scanning       - Run automated scans (Nessus, Qualys, OpenVAS).      - Identify CVEs, misconfigurations, and outdated software.   2. Risk Assessment & Prioritization       - Rate vulnerabilities using CVSS scores.      - Focus on critical risks (e.g., RCE, SQLi).   3. Compliance Auditing     - Check adherence to PCI DSS, HIPAA, NIST.   4. Reporting & Remediation Guidance    - Provide actionable fixes (patching, hardening).  Key Tools & Technologies                ...
Read more