NMap 101: Scanning Networks For Open Ports To Access, HakTip 94
HTML-код
- Опубликовано: 10 апр 2014
- Hak5 -- Cyber Security Education, Inspiration, News & Community since 2005:
____________________________________________
NMap can be used to obtain a much more aggressive scan than the ones we have seen so far. It's very simple to do this too, by simply adding the -A command, like this: nmap -A 10.73.31.64
Aggressive scans simply put together some of the most popularly used commands in Nmap, into one command for you to type. It uses commands such as -O, -sC --traceroute and others. We'll go over these in more detail soon. For now, simply know that -O works for operating system detection, and -sC runs several scripts inside nmap at once such as speed and verbosity. When running this scan, which will take longer because of the extra scripts involved, you'll receive back a bunch of strange looking fingerprint information. I tried running this on our printer, which doesn't give us much information. But running this against our NAS gives us some interesting facts, such as the name of our NAS (Synology Diskstation), the open ports with more information, even the SSH hostkey with DSA and RSA encryptions.
If I nmap our network... This is what I find. nmap 10.73.31.0/24 ---- we found .64 which is an HP printer with telnet open on port 23. So now I'll open netcat in another window and connect to it. nc 10.73.31.64 23 We've just telnetted into our HP printer. Now we can ls and see what directories are available, change directories, etc.
What would you like to see next about NMAP? Send me a comment below or email us at tips@hak5.org. If you like NMap, perhaps you'll enjoy our new show, Metasploit Minute with Mubix, airing every Monday at hak5.org. And be sure to check out our sister show, Hak5 for more great stuff just like this. I'll be there, reminding you to trust your technolust.
~-~~-~~~-~~-~
Please watch: "Bash Bunny Primer - Hak5 2225"
• Bash Bunny Primer - Ha...
~-~~-~~~-~~-~
____________________________________________
Founded in 2005, Hak5's mission is to advance the InfoSec industry. We do this through our award winning educational podcasts, leading pentest gear, and inclusive community - where all hackers belong. 
Наука
I love her enthusiasm!! As opposed to some dude speaking in monotone that is easy to fall asleep to. haha
I'll need to watch this later. I wonder if there is a way to add videos to a wish list?
Jesse Esquibel There is man, it's called "watch later" --> Move your cursor underneath the RUclips video to a tab called "add to" then select watch later, this creates a private playlist that you can use select later on from your screen :)
your "terminal" is that basically a cmd or do you have to download it because there is nothing on my pc called terminal
+Zach's Hacks In Linux
she is use mint for system
and Terminal for run nmap
Stupid - _-
this video perfectly gives me what i actually want thank you after 7 years ❤️
I appreciate the enthusiasm in this video!
Wonderful job. Appreciate your contributions immensely.
Watching your vids never get old ;)
great intro tutorial guys, great job!
I love how relevant this remains. Nmap FTW.
my netcat commands are hanging up, i have to press CTRL + C every time
Great Thanks. Just subscribed and like the video!
can i connect to a remote pc with the port i scanned with telnet?
Hello! I'm using nmap to scan for open ports in an Ubuntu VMbox but always the results are about closed ports.... I tried almost anything to open some of them but I get nothing... Any advice ?
Would highly recommend the book great resource
Can you login to a computer with nmap and netcat ??
I love your content, fan for life ❤️
i get an error: dnet: Failed to open device eth1
pls help me :c
nmap not showing all devices Nmap showed only the router and my own computer when scanning the whole network how can i fix that ??
am having windows 10 and mac and both not showing only my own computer and the router ,am in china ...am using kali linux as main OS
some networks will appear down when using nmap so use -Pn to complete the scan
What that mean?? -pn
which ip did you scan? was that a in network /default?
I scan windows 10 with all its options and gives all the ports are filtered, you can help me
hi, i'm trying to lear nmap but i'm stuck, im trying to scan an external network (that is also mine) but i just don't know how, i have the public ip but it only points to the router, how should i aproach this?
You're the best!!!
Appreciate your efforts
i love the show but how do i download your version of nmap and what is the name of the other software u used?
Hello Shannon,
I want to know what will be the good lab configuration for NMAP testing. I mean how many VM's will be good with Kali to test NMAP..
Download it on your local machine and scan your network. It doesn’t hurt to scan
can't you make a zombie in the network with Nmap to do all the commands???
what OS were you using when making these kinds of vids?
nice tutorial, thanks
Yes. I am also facing the sa issue. Did you find out wNice tutorialch instrunt to use instead?
Hello, so I am getting a "host seems to be down" I've tried many different options and ive been getting the same results. Have any idea what can be done?
Lee Wayne wait for them to come online?
are they on a switch or hub?
Really nice channel 👌👌
everything is good but below u see 1 ip addresses found how do we view it?
Finally i got the best channel
This still works nowadays? Like effectively? I used this around 2005-2010 and it didnt help super much
Depends on what you are doing?
Awesome I was wondering what I could do with the results of nmap
that pretty cool !
Hy you explained so easy I like you
Can we utilize netcat on nmap or we download netcat
nmap -oG - [Ip address] -vv
is a good command too
You must have meant -oS lol
I'm a total beginner here and my question is what terminals were you using? I didn't recognize those as any Linux distro terminals (again, total noob here). I like your videos. I will keep learning from them. Thank you. =).
Its the base terminal in Linux Mint. Any linux terminal will do, just have nmap installed. (nmap isnt a terminal built-in, its a program which can be installed like any other)
does anybody have the link where to download netcat? TIA
what is terminal?
your "terminal" is that basically a cmd or do you have to download it because there is nothing on my pc called terminal
Terminal is the cmd on Linux, OS X and pretty much every computer running/based on a unix system.
Thanks man there is a load of people calling it terminal and I was getting confused
It's different to cmd, more powerful and using different commands. Although some commands are universal. If you have nmap on windows cmd you can do the same as this in cmd.
you have to download it
6 years ago u must be a pro by now
I tried to support you guys on hakshop but my order was but on hold for a week asking that I verify my ID. I didn't get a response to my 2x emails 2x calls and voicemail. Then my order was auto-cancelled. Guess I'll try again when the mark 6 comes out...
NoNotepad that sucks
So when she highlighted that RSA that was the public key, am I correct
Yes it's the public key, to unlock it you need the private key.
can i scan others router with nmap?
Ashish Soni yes you can but I won't recommended it. If you want to see routing pattern try using subnet script and also launch wireshark simultaneously to see all the IP( networking 2 layer of OSI model) with TCP ( 4 layer of OSI model)
God bless the First Amendment and Shannon Morse
...script kiddie?
Dayum!!!!!! 😍😍😍
7 years later, she super Saiyan hacked so much she now has many colors of hair.
Who is going to attack her open ports? No pun intented.
Best comment on the page
time for some penetration testing.
Andrew Heisler I’ll let her disable my firewall
I bet she knows how to release a payload.
With her permission, I can do a lot more than attacking her open ports ;)
spoff the class routers ip address and scanned the tafe subnet (at the time dint know i scanned all the tafe computers in nsw aus i was hoping for all of Wollongong tafes pc) ( knew it was a class wide ddos attack )
Is Wollongong in NSW?
"nmap" command showing "your host specification is illegal"
what to do then
The command is not allowed to be executed. Perhaps run nmap as Sudo? Or all of your other commands as sudo?
How do you figure out what your printer ip is?
Run "Print Settings" from menu and look for IP Address of printer. You may see the same address on nmap output.
keep up
I'm a new student trying to learn, so I can become a programmer with python and I have a project on how to make a port scan.
So far I already make a port scan with Python3, and it scans fine, give a date and everything working good so far.
I see on your video tutorial, it is very good.
I would like to ask for your advice if you can and guide me on how I will add this 3
in a Python script, I have:
2. System should look for all the ports between the range of 1 to 1025
3. If the Ports is open, it should create a file and add an entry for port number
4. In case of any exception for instance “host is not available”, “host name could not be resolved” or
due to any other error, you need to write that exception into the same file.
Thank you and Merry Christmas.
Nice
awesome
I’ve nmapped my works network and found all sorts of fun stuff
she is awesome
hello mem how to hijack Mozilla on wan network?
that's a hard thing to do...
-A is amplified
Is that the IP address??
The perfect girl doesnt exi-
st
simp
Stop the cap
I could fix tNice tutorials?
"nmap is not recognized as an internal or external command, operable program or batchfile."
Linda you need to install nmap
sudo apt install nmap
Or if you’re on an arch based distro use:
sudo pacman -S nmap
good
You make nmap beautiful. :)
I like your smile.
You need to let people know this is not cmd
lol... "cmd"
it is cmd with nmap
TheMagic Gaming Thanks. I got confused, a little.
np
its actually terminal on nmap
I want to see their what's app status
What open wrong internet adres
(proceeds to continue)
Thanks now random people are hacking my computer everyday
good xd
It's not worked
Don't understand this. Virtually nothing achieved?
She is adorable
More More More
Moar haktip naow!
I am from future 2021
Guy scans the FBI - yells while in his cell. I did it! I'm a hacker!!!
bash terminal in windows is better
Hi
lynis
DAMN, way to make cyber security look sexy
She was so fine
but hey students get away with every thing in the name of learning
How to hack others Mobile
Mobile hacking is nearly impossible...
you re so pretty woman...
teach me things you mujer hermosa
sudo ssh 192.168.101
ssh password y/n
password :????
what is the passowrd of ssh
u w0t m8 ;-;
seriously?????
It's your password or the password of the box you're sshing into
TMUX NOOB
r u a hacker
Horrible explanation of nmap.