Nmap Tool/ Command
- Nmap is a tool that is used for determining the hosts that are running and which services the hosts are running.
- Nmap can be a valuable diagnostic tool for network administrators while they can be also a potent reconnaissance tool for the Black-hat community (Hackers, Crackers, Script Kiddies, etc).
- Once the network is charted out using tools like Lan MapShot, the Nmap can be used to determine the type of services and hosts running in the network.
- Nmap is one of the most popular tools used for the enumeration of a targeted host. Nmap can use scans that provide the OS, version, and service detection for individual or multiple devices.
- Detection scans are critical to the enumeration process when conducting penetration testing of a network.
- It is important to know where vulnerable machines are located on the network so they can be fixed or replaced before they are attacked.
- Many attackers will use these scans to figure out what payloads would be most effective on a victim's device. The OS scan works by using the TCP/IP stack fingerprinting method.
- The services scan works by using the Nmap-service-probes database to enumerate details of services running on a targeted host.
