lunes, 22 de enero de 2024

CEH: Identifying Services & Scanning Ports | Gathering Network And Host Information | NMAP


CEH scanning methodology is the important step i.e. scanning for open ports over a network. Port is the technique used to scan for open ports. This methodology performed for the observation of the open and close ports running on the targeted machine. Port scanning gathered a valuable information about  the host and the weakness of the system more than ping sweep.

Network Mapping (NMAP)

Basically NMAP stands for Network Mapping. A free open source tool used for scanning ports, service detection, operating system detection and IP address detection of the targeted machine. Moreover, it performs a quick and efficient scanning a large number of machines in a single session to gathered information about ports and system connected to the network. It can be used over UNIX, LINUX and Windows.

There are some terminologies which we should understand directly whenever we heard like Open ports, Filtered ports and Unfiltered ports.

Open Ports means the target machine accepts incoming request on that port cause these ports are used to accept packets due to the configuration of TCP and UDP.

Filtered ports means the ports are usually opened but due to firewall or network filtering the nmap doesn't detect the open ports.

Unfiltered means the nmap is unable to determine whether the port is open or filtered  while the port is accessible.

Types Of NMAP Scan


Scan Type Description
Null Scan This scan is performed by both an ethical hackers and black hat hackers. This scan is used to identify the TCP port whether it is open or closed. Moreover, it only works over UNIX  based systems.
TCP connect The attacker makes a full TCP connection to the target system. There's an opportunity to connect the specifically port which you want to connect with. SYN/ACK signal observed for open ports while RST/ACK signal observed for closed ports.
ACK scan Discovering the state of firewall with the help ACK scan whether it is stateful or stateless. This scan is typically used for the detection of filtered ports if ports are filtered. Moreover, it only works over the UNIX based systems.
Windows scan This type of scan is similar to the ACK scan but there is ability to detect an open ports as well filtered ports.
SYN stealth scan This malicious attack is mostly performed by attacker to detect the communication ports without making full connection to the network.
This is also known as half-open scanning. 

 

All NMAP Commands 


Commands Scan Performed
-sT TCP connect scan
-sS SYN scan
-sF FIN scan
-sX XMAS tree scan
-sN Null scan
-sP Ping scan
-sU UDP scan
-sO Protocol scan
-sA ACK scan
-sW Window scan
-sR RPC scan
-sL List/DNS scan
-sI Idle scan
-Po Don't ping
-PT TCP ping
-PS SYN ping
-PI ICMP ping
-PB ICMP and TCP ping
-PB ICMP timestamp
-PM ICMP netmask
-oN Normal output
-oX XML output
-oG Greppable output
-oA All output
-T Paranoid Serial scan; 300 sec between scans
-T Sneaky Serial scan; 15 sec between scans
-T Polite Serial scan; .4 sec between scans
-T Normal Parallel scan
-T Aggressive Parallel scan, 300 sec timeout, and 1.25 sec/probe
-T Insane Parallel scan, 75 sec timeout, and .3 sec/probe

 

How to Scan

You can perform nmap scanning over the windows command prompt followed by the syntax below. For example, If you wanna scan the host with the IP address 192.168.2.1 using a TCP connect scan type, enter this command:

nmap 192.168.2.1 –sT

nmap -sT 192.168.2.1

Read more
  1. Hacking Tools Windows 10
  2. World No 1 Hacker Software
  3. Android Hack Tools Github
  4. New Hack Tools
  5. Pentest Tools For Ubuntu
  6. What Are Hacking Tools
  7. Termux Hacking Tools 2019
  8. Hack Tools For Mac
  9. New Hacker Tools
  10. Hackrf Tools
  11. Hacking Tools Name
  12. Hacking Tools For Windows Free Download
  13. Hacking Tools Mac
  14. Hack Tools For Mac
  15. Tools For Hacker
  16. Pentest Tools Website
  17. Pentest Tools Tcp Port Scanner
  18. Hacking Tools For Windows 7
  19. Hacker Tools Software
  20. Hack And Tools
  21. Nsa Hack Tools
  22. Pentest Tools Free
  23. Hacker Tools Apk
  24. Computer Hacker
  25. Pentest Tools For Android
  26. New Hacker Tools
  27. Pentest Tools Framework
  28. Pentest Tools
  29. Hack Tools Github
  30. Hacking Tools Mac
  31. Hack Tools For Games
  32. Hacking Tools And Software
  33. Hack Tools Github
  34. Nsa Hacker Tools
  35. Physical Pentest Tools
  36. Pentest Tools Online
  37. Beginner Hacker Tools
  38. Pentest Tools Find Subdomains
  39. Hacking Tools Usb
  40. Hack Tools For Mac
  41. Pentest Tools Port Scanner
  42. Hack Apps
  43. Hacking Tools Mac
  44. Pentest Tools Free
  45. Hacking Tools For Pc
  46. Pentest Tools For Windows
  47. Hacker Tools Windows
  48. Hack Tools Download
  49. Wifi Hacker Tools For Windows
  50. Hacking Tools Windows 10
  51. Pentest Recon Tools
  52. Pentest Tools For Mac
  53. Hack And Tools
  54. Best Hacking Tools 2019
  55. Hacker Tool Kit
  56. Tools 4 Hack
  57. Hack And Tools
  58. Hacker Security Tools
  59. Hacking Tools Name
  60. Easy Hack Tools
  61. Hacking Apps
  62. Pentest Tools Find Subdomains
  63. Pentest Tools
  64. Hacker Tools Mac
  65. What Is Hacking Tools
  66. Hacker Tools For Ios
  67. Hack Tools Mac
  68. Pentest Tools List
  69. Hacker Tools For Ios
  70. Hacker Hardware Tools
  71. Pentest Tools Download
  72. Pentest Reporting Tools
  73. Hacker Tools For Mac
  74. Hacking Tools Usb
  75. Pentest Tools Download
  76. Pentest Tools Linux
  77. Hacker Hardware Tools
  78. What Is Hacking Tools
  79. Pentest Tools Website
  80. Hacking Tools Free Download
  81. Hack Tools For Windows
  82. Hack Tool Apk
  83. Hacking Tools Windows 10
  84. Hacking Tools For Kali Linux
  85. Hacking Tools
  86. Pentest Tools Tcp Port Scanner
  87. Nsa Hack Tools Download
  88. Pentest Automation Tools
  89. Hack Tools
  90. Hacker Techniques Tools And Incident Handling
  91. Pentest Tools Subdomain
Publicado por en

No hay comentarios:

Publicar un comentario

Suscribirse a: Enviar comentarios (Atom)