Scribd
Upload
36 views

Practice Exercises 4

Nmap is an open source tool used to scan networks and systems to determine available hosts, services, operating systems, firewalls and other network details. It is commonly used for security audits and network management. The document demonstrates using Nmap to scan scanme.nmap.org, identifying available ports and services like FTP, SSH, HTTP and determining the operating system is Linux. Nmap can help with network security by identifying vulnerabilities and inventorying systems, but can also be used by threat actors for reconnaissance.

Uploaded by

Tran Tran
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
36 views

Practice Exercises 4

Nmap is an open source tool used to scan networks and systems to determine available hosts, services, operating systems, firewalls and other network details. It is commonly used for security audits and network management. The document demonstrates using Nmap to scan scanme.nmap.org, identifying available ports and services like FTP, SSH, HTTP and determining the operating system is Linux. Nmap can help with network security by identifying vulnerabilities and inventorying systems, but can also be used by threat actors for reconnaissance.

Uploaded by

Tran Tran
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 2

Lab - Exploring Nmap

What is Nmap?
Nmap ("Network Mapper") is an open source tool for network exploration and security auditing. It was
designed to rapidly scan large networks, although it works fine against single hosts.
What is nmap used for?
Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services
(application name and version) those hosts are offering, what operating systems (and OS versions) they are
running, what type of packet filters/firewalls are in use, and dozens of other characteristics. While Nmap is
commonly used for security audits, many systems and network administrators find it useful for routine tasks
such as network inventory, managing service upgrade schedules, and monitoring host or service uptime.
Look at Example 1. What is the nmap command used?
Nmap -A -T4 scanme.nmap.org
What does the switch -A do?
-A: to enable OS and version detection, script scanning, and traceroute
What does the switch -T4 do?
-T4 for faster execution; and then the hostname.
Which ports and services are opened?
21/tcp: ftp, 22/tcp: ssh, 23/tcp:telnet, 80/tcp:http
For each of the open ports, record the software that is providing the services.
ftp: vsftpd, ssh: OpenSSH
What is the operating system?
Linux
Record the IP address and subnet mask for your VM. Which network does your VM belong to?
IP 192.168.23.1/ subnet mask 255.255.255.0 /
How many hosts are up?

From your Nmap results, list the IP addresses of the hosts that are on the same LAN as your VM. List some of
the services that are available on the detected hosts.

Open a web browser and navigate to scanme.nmap.org. Please read the message posted.
What is the purpose of this site?
We set up this machine to help folks learn about Nmap and also to test and make sure that
their Nmap installation (or Internet connection) is working properly or use this site to test your ssh
brute-force password cracking tool.
Which ports and services are opened?
22/tcp: ssh
80/tcp: http
9929/tcp: n ping-echo
31337/tcp: tcpwrapped
Which ports and services are filtered?
25/tcp: smtp
135/tcp: msrpc
139/tcp: netbios-ssn
445/tcp: microsoft-ds
What is the IP address of the server?
45.33.32.156, 2600:3c01::f03c:91ff:fe18:bb2f
What is the operating system?
Linux
Nmap is a powerful tool for network exploration and management. How can Nmap help with
network security? How can Nmap be used by a threat actor as a nefarious tool?
- Nmap can be used to scan an internal network for specific open ports to identify the extent
of a security breach
- Nmap can be used for reconnaissance to determine open ports and other information about
the network. used to inventory ensure possible systems have been patched to avoid security
concerns

You might also like