Friday, August 28, 2020

CEH: Identifying Services & Scanning Ports | Gathering Network And Host Information | NMAP


CEH scanning methodology is the important step i.e. scanning for open ports over a network. Port is the technique used to scan for open ports. This methodology performed for the observation of the open and close ports running on the targeted machine. Port scanning gathered a valuable information about  the host and the weakness of the system more than ping sweep.

Network Mapping (NMAP)

Basically NMAP stands for Network Mapping. A free open source tool used for scanning ports, service detection, operating system detection and IP address detection of the targeted machine. Moreover, it performs a quick and efficient scanning a large number of machines in a single session to gathered information about ports and system connected to the network. It can be used over UNIX, LINUX and Windows.

There are some terminologies which we should understand directly whenever we heard like Open ports, Filtered ports and Unfiltered ports.

Open Ports means the target machine accepts incoming request on that port cause these ports are used to accept packets due to the configuration of TCP and UDP.

Filtered ports means the ports are usually opened but due to firewall or network filtering the nmap doesn't detect the open ports.

Unfiltered means the nmap is unable to determine whether the port is open or filtered  while the port is accessible.

Types Of NMAP Scan


Scan TypeDescription
Null Scan This scan is performed by both an ethical hackers and black hat hackers. This scan is used to identify the TCP port whether it is open or closed. Moreover, it only works over UNIX  based systems.
TCP connectThe attacker makes a full TCP connection to the target system. There's an opportunity to connect the specifically port which you want to connect with. SYN/ACK signal observed for open ports while RST/ACK signal observed for closed ports.
ACK scanDiscovering the state of firewall with the help ACK scan whether it is stateful or stateless. This scan is typically used for the detection of filtered ports if ports are filtered. Moreover, it only works over the UNIX based systems.
Windows scanThis type of scan is similar to the ACK scan but there is ability to detect an open ports as well filtered ports.
SYN stealth scanThis malicious attack is mostly performed by attacker to detect the communication ports without making full connection to the network.
This is also known as half-open scanning. 

 

All NMAP Commands 


CommandsScan Performed
-sTTCP connect scan
-sSSYN scan
-sFFIN scan
-sXXMAS tree scan
-sNNull scan
-sPPing scan
-sUUDP scan
-sOProtocol scan
-sAACK scan
-sWWindow scan
-sRRPC scan
-sLList/DNS scan
-sIIdle scan
-PoDon't ping
-PTTCP ping
-PSSYN ping
-PIICMP ping
-PBICMP and TCP ping
-PBICMP timestamp
-PMICMP netmask
-oNNormal output
-oXXML output
-oGGreppable output
-oAAll output
-T ParanoidSerial scan; 300 sec between scans
-T SneakySerial scan; 15 sec between scans
-T PoliteSerial scan; .4 sec between scans
-T NormalParallel scan
-T AggressiveParallel scan, 300 sec timeout, and 1.25 sec/probe
-T InsaneParallel scan, 75 sec timeout, and .3 sec/probe

 

How to Scan

You can perform nmap scanning over the windows command prompt followed by the syntax below. For example, If you wanna scan the host with the IP address 192.168.2.1 using a TCP connect scan type, enter this command:

nmap 192.168.2.1 –sT

nmap -sT 192.168.2.1

Related links


  1. Hacker Tools Online
  2. Hacker Tools For Pc
  3. Install Pentest Tools Ubuntu
  4. Hacking Tools For Beginners
  5. Pentest Tools Find Subdomains
  6. Pentest Tools Alternative
  7. Free Pentest Tools For Windows
  8. Hack App
  9. Hacker Tools Linux
  10. Free Pentest Tools For Windows
  11. Hacking Tools For Windows Free Download
  12. Bluetooth Hacking Tools Kali
  13. Hacker Tools List
  14. Pentest Tools Free
  15. Pentest Tools Apk
  16. Best Pentesting Tools 2018
  17. Hacker Tools Windows
  18. Nsa Hacker Tools
  19. Hack Tools For Mac
  20. Game Hacking
  21. Kik Hack Tools
  22. Pentest Tools Subdomain
  23. Pentest Tools Alternative
  24. Pentest Tools List
  25. Pentest Tools Website
  26. Hacker Security Tools
  27. Hacking Tools And Software
  28. Hacking Apps
  29. Pentest Tools For Android
  30. World No 1 Hacker Software
  31. Hacking Tools Pc
  32. Hacker Tools Apk Download
  33. Pentest Box Tools Download
  34. Hacking Tools Pc
  35. Hacker Tools
  36. Hack Tools 2019
  37. Pentest Tools For Windows
  38. Hacker Techniques Tools And Incident Handling
  39. Underground Hacker Sites
  40. Pentest Tools For Android
  41. Hacking Tools
  42. Physical Pentest Tools
  43. Hacking Tools Github
  44. Best Hacking Tools 2020
  45. Github Hacking Tools
  46. Hacker Tools 2019
  47. Pentest Tools Port Scanner
  48. Beginner Hacker Tools
  49. Android Hack Tools Github
  50. Kik Hack Tools
  51. Hacker Tools Software
  52. Hacker Tools Hardware
  53. Hacking Tools And Software
  54. Hacking Tools For Mac
  55. Hack Tools Online
  56. Pentest Tools Website Vulnerability
  57. Pentest Tools Tcp Port Scanner
  58. Pentest Recon Tools
  59. Hacking Tools For Windows 7
  60. Hack Tools For Games
  61. Pentest Tools Website
  62. Best Pentesting Tools 2018
  63. Hack Tools For Ubuntu
  64. Hack App
  65. Best Hacking Tools 2019
  66. Blackhat Hacker Tools
  67. Hacker Tools Software
  68. Pentest Tools Kali Linux
  69. Best Hacking Tools 2020
  70. Pentest Tools Nmap
  71. Pentest Tools Find Subdomains
  72. Hak5 Tools
  73. Install Pentest Tools Ubuntu
  74. Pentest Tools For Windows
  75. Hacker Tools Windows
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)