Presentation is loading. Please wait.

Presentation is loading. Please wait.

Jen Beveridge and Joe Kolenda

Published byMeghan Gregory Modified over 6 years ago

Similar presentations

Presentation on theme: "Jen Beveridge and Joe Kolenda"— Presentation transcript:

1 Jen Beveridge and Joe Kolenda
NMAP Jen Beveridge and Joe Kolenda

2

3 History of NMAP Developed by Gordon Lyon Features Host discovery
secret.pathetic.net History of NMAP Developed by Gordon Lyon Features Host discovery Port scanning Version detecting OS detection Scriptable interaction with the target

4 Uses of NMAP Identifying open ports Network Mapping Auditing security

5 Tool Environment Runs on Linux, Windows, Mac OS X and other smaller operating systems GUI options: Zenmap XNMap NmapFE

6 How It Works DNS lookup- matches name with IP
NMap pings the remote target with 0 byte packets to each port If packets are not received back, port is open If packets are received, port is closed Sends different packets with different timing to determine filtered/unfiltered, version, etc. Firewalls can interfere with this process

7 Output from NMAP Displays open ports
Different output based upon constraints on run, but can show Version type Filtered/unfiltered

8 Basic NMAP scans When run through command prompt or terminal, entry fields are: Program Constraints on run Target Ex. > nmap –sS scanme.nmap.org Ex. > nmap -Db ftp.pathetic.net secret.pathetic.net

9 User Experience Easy to install
Fairly easy to use, firewall problems and network setting issues User guide available, many tutorials Scan time- can range from a few seconds to several hours Can scan over a range of IP addresses and utilize stealthy scanning

10 Ethical Issues Can be used for hacking- to discover vulnerable ports
System admins can use it to check that systems meet security standards Unauthorized use of Nmap on a system could be illegal. Make sure you have permission before using this tool

Download ppt "Jen Beveridge and Joe Kolenda"

Similar presentations

 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,

 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,
Nmap Experiment.

Nmap Experiment.
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning.

Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning Last updated 9-18-08.

Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning Last updated
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.

ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.
1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.

1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.
Penetration Testing.

Penetration Testing.
Port Scanning.

Port Scanning.
LINUX Security, Firewalls & Proxies. Course Title Introduction to LINUX Security Models Objectives To understand the concept of system security To understand.

LINUX Security, Firewalls & Proxies. Course Title Introduction to LINUX Security Models Objectives To understand the concept of system security To understand.
Ana Chanaba Robert Huylo

Ana Chanaba Robert Huylo
SCSC 555 Frank Li.  Port scanning  Port-scanning tools  Ping sweeps 2.

SCSC 555 Frank Li.  Port scanning  Port-scanning tools  Ping sweeps 2.
Mohan Kumar Puttasiddaiah

Mohan Kumar Puttasiddaiah
Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.

Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.
AppSec USA 2014 Denver, Colorado nmap 101 An introduction to the timeless network scanner.

AppSec USA 2014 Denver, Colorado nmap 101 An introduction to the timeless network scanner.
CIS 450 – Network Security Chapter 3 – Information Gathering.

CIS 450 – Network Security Chapter 3 – Information Gathering.

Similar presentations

Ads by Google