NMap 101: Scanning Networks For Open Ports To Access, HakTip 94
ฝัง
- เผยแพร่เมื่อ 15 ก.ย. 2024
- Hak5 -- Cyber Security Education, Inspiration, News & Community since 2005:
____________________________________________
NMap can be used to obtain a much more aggressive scan than the ones we have seen so far. It's very simple to do this too, by simply adding the -A command, like this: nmap -A 10.73.31.64
Aggressive scans simply put together some of the most popularly used commands in Nmap, into one command for you to type. It uses commands such as -O, -sC --traceroute and others. We'll go over these in more detail soon. For now, simply know that -O works for operating system detection, and -sC runs several scripts inside nmap at once such as speed and verbosity. When running this scan, which will take longer because of the extra scripts involved, you'll receive back a bunch of strange looking fingerprint information. I tried running this on our printer, which doesn't give us much information. But running this against our NAS gives us some interesting facts, such as the name of our NAS (Synology Diskstation), the open ports with more information, even the SSH hostkey with DSA and RSA encryptions.
If I nmap our network... This is what I find. nmap 10.73.31.0/24 ---- we found .64 which is an HP printer with telnet open on port 23. So now I'll open netcat in another window and connect to it. nc 10.73.31.64 23 We've just telnetted into our HP printer. Now we can ls and see what directories are available, change directories, etc.
What would you like to see next about NMAP? Send me a comment below or email us at tips@hak5.org. If you like NMap, perhaps you'll enjoy our new show, Metasploit Minute with Mubix, airing every Monday at hak5.org. And be sure to check out our sister show, Hak5 for more great stuff just like this. I'll be there, reminding you to trust your technolust.
~-~~-~~~-~~-~
Please watch: "Bash Bunny Primer - Hak5 2225"
• Bash Bunny Primer - Ha...
~-~~-~~~-~~-~
____________________________________________
Founded in 2005, Hak5's mission is to advance the InfoSec industry. We do this through our award winning educational podcasts, leading pentest gear, and inclusive community - where all hackers belong.
![Haunt a Computer Using SSH [Tutorial]](http://i.ytimg.com/vi/M0eEwqUpKDc/mqdefault.jpg)
I love her enthusiasm!! As opposed to some dude speaking in monotone that is easy to fall asleep to. haha
this video perfectly gives me what i actually want thank you after 7 years ❤️
I'll need to watch this later. I wonder if there is a way to add videos to a wish list?
Jesse Esquibel There is man, it's called "watch later" --> Move your cursor underneath the TH-cam video to a tab called "add to" then select watch later, this creates a private playlist that you can use select later on from your screen :)
your "terminal" is that basically a cmd or do you have to download it because there is nothing on my pc called terminal
+Zach's Hacks In Linux
she is use mint for system
and Terminal for run nmap
Stupid - _-
I love how relevant this remains. Nmap FTW.
I appreciate the enthusiasm in this video!
some networks will appear down when using nmap so use -Pn to complete the scan
What that mean?? -pn
Wonderful job. Appreciate your contributions immensely.
Watching your vids never get old ;)
Finally i got the best channel
Appreciate your efforts
great intro tutorial guys, great job!
nmap -oG - [Ip address] -vv
is a good command too
You must have meant -oS lol
I love your content, fan for life ❤️
Great Thanks. Just subscribed and like the video!
Awesome I was wondering what I could do with the results of nmap
Would highly recommend the book great resource
The perfect girl doesnt exi-
st
simp
Stop the cap
Who is going to attack her open ports? No pun intented.
Best comment on the page
time for some penetration testing.
Andrew Heisler I’ll let her disable my firewall
I bet she knows how to release a payload.
With her permission, I can do a lot more than attacking her open ports ;)
-A is amplified
You're the best!!!
my netcat commands are hanging up, i have to press CTRL + C every time
I'm a new student trying to learn, so I can become a programmer with python and I have a project on how to make a port scan.
So far I already make a port scan with Python3, and it scans fine, give a date and everything working good so far.
I see on your video tutorial, it is very good.
I would like to ask for your advice if you can and guide me on how I will add this 3
in a Python script, I have:
2. System should look for all the ports between the range of 1 to 1025
3. If the Ports is open, it should create a file and add an entry for port number
4. In case of any exception for instance “host is not available”, “host name could not be resolved” or
due to any other error, you need to write that exception into the same file.
Thank you and Merry Christmas.
I tried to support you guys on hakshop but my order was but on hold for a week asking that I verify my ID. I didn't get a response to my 2x emails 2x calls and voicemail. Then my order was auto-cancelled. Guess I'll try again when the mark 6 comes out...
NoNotepad that sucks
Really nice channel 👌👌
Yes. I am also facing the sa issue. Did you find out wNice tutorialch instrunt to use instead?
God bless the First Amendment and Shannon Morse
...script kiddie?
nice tutorial, thanks
Can you login to a computer with nmap and netcat ??
Hy you explained so easy I like you
Hello Shannon,
I want to know what will be the good lab configuration for NMAP testing. I mean how many VM's will be good with Kali to test NMAP..
Download it on your local machine and scan your network. It doesn’t hurt to scan
that pretty cool !
7 years later, she super Saiyan hacked so much she now has many colors of hair.
Hello! I'm using nmap to scan for open ports in an Ubuntu VMbox but always the results are about closed ports.... I tried almost anything to open some of them but I get nothing... Any advice ?
she is awesome
i get an error: dnet: Failed to open device eth1
pls help me :c
Dayum!!!!!! 😍😍😍
This still works nowadays? Like effectively? I used this around 2005-2010 and it didnt help super much
Depends on what you are doing?
what is terminal?
spoff the class routers ip address and scanned the tafe subnet (at the time dint know i scanned all the tafe computers in nsw aus i was hoping for all of Wollongong tafes pc) ( knew it was a class wide ddos attack )
Is Wollongong in NSW?
i love the show but how do i download your version of nmap and what is the name of the other software u used?
I'm a total beginner here and my question is what terminals were you using? I didn't recognize those as any Linux distro terminals (again, total noob here). I like your videos. I will keep learning from them. Thank you. =).
Its the base terminal in Linux Mint. Any linux terminal will do, just have nmap installed. (nmap isnt a terminal built-in, its a program which can be installed like any other)
hi, i'm trying to lear nmap but i'm stuck, im trying to scan an external network (that is also mine) but i just don't know how, i have the public ip but it only points to the router, how should i aproach this?
what OS were you using when making these kinds of vids?
nmap not showing all devices Nmap showed only the router and my own computer when scanning the whole network how can i fix that ??
am having windows 10 and mac and both not showing only my own computer and the router ,am in china ...am using kali linux as main OS
awesome
everything is good but below u see 1 ip addresses found how do we view it?
I’ve nmapped my works network and found all sorts of fun stuff
which ip did you scan? was that a in network /default?
Nice
can't you make a zombie in the network with Nmap to do all the commands???
You need to let people know this is not cmd
lol... "cmd"
it is cmd with nmap
TheMagic Gaming Thanks. I got confused, a little.
np
its actually terminal on nmap
Hello, so I am getting a "host seems to be down" I've tried many different options and ive been getting the same results. Have any idea what can be done?
Lee Wayne wait for them to come online?
your "terminal" is that basically a cmd or do you have to download it because there is nothing on my pc called terminal
Terminal is the cmd on Linux, OS X and pretty much every computer running/based on a unix system.
Thanks man there is a load of people calling it terminal and I was getting confused
It's different to cmd, more powerful and using different commands. Although some commands are universal. If you have nmap on windows cmd you can do the same as this in cmd.
6 years ago u must be a pro by now
I scan windows 10 with all its options and gives all the ports are filtered, you can help me
keep up
I like your smile.
can i connect to a remote pc with the port i scanned with telnet?
Can we utilize netcat on nmap or we download netcat
are they on a switch or hub?
So when she highlighted that RSA that was the public key, am I correct
Yes it's the public key, to unlock it you need the private key.
Thanks now random people are hacking my computer everyday
You make nmap beautiful. :)
can i scan others router with nmap?
Ashish Soni yes you can but I won't recommended it. If you want to see routing pattern try using subnet script and also launch wireshark simultaneously to see all the IP( networking 2 layer of OSI model) with TCP ( 4 layer of OSI model)
"nmap" command showing "your host specification is illegal"
what to do then
The command is not allowed to be executed. Perhaps run nmap as Sudo? Or all of your other commands as sudo?
good
(proceeds to continue)
does anybody have the link where to download netcat? TIA
"nmap is not recognized as an internal or external command, operable program or batchfile."
Linda you need to install nmap
sudo apt install nmap
Or if you’re on an arch based distro use:
sudo pacman -S nmap
She is adorable
Don't understand this. Virtually nothing achieved?
How do you figure out what your printer ip is?
Run "Print Settings" from menu and look for IP Address of printer. You may see the same address on nmap output.
hello mem how to hijack Mozilla on wan network?
that's a hard thing to do...
good xd
Is that the IP address??
Guy scans the FBI - yells while in his cell. I did it! I'm a hacker!!!
I could fix tNice tutorials?
More More More
Moar haktip naow!
What open wrong internet adres
I want to see their what's app status
I am from future 2021
DAMN, way to make cyber security look sexy
It's not worked
Hi
bash terminal in windows is better
lynis
She was so fine
but hey students get away with every thing in the name of learning
you re so pretty woman...
How to hack others Mobile
Mobile hacking is nearly impossible...
teach me things you mujer hermosa
sudo ssh 192.168.101
ssh password y/n
password :????
what is the passowrd of ssh
u w0t m8 ;-;
seriously?????
It's your password or the password of the box you're sshing into
Horrible explanation of nmap.
TMUX NOOB
r u a hacker