2. Outline
īŽWhat is IP network scanning?
īŽ Concepts, motivation
īŽExample Tool
īŽ nmap
īŽScanning types
īŽ Host discovery
īŽ port scanning
īŽ Version detection
īŽ OS detection
3. What is Scanning?
âĸ Method to gather information regarding the
devices running on the network
â Typically to discover services or servers on a network
âĸ Which hosts are up?
âĸ Which services are offering?
âĸ Do not confuse with âhost vulnerability scannerâ
which further explore a computer by testing for
common vulnerabilities (nessus)
4. Why Scanning?
īŽ Network Security assessment
īŽ Evaluation and Auditing the security
īŽ Firewall Penetration Test (Policy auditing)
īŽ IDS proof/evaluation
īŽ Identifying unexpected new servers
īŽ Identifying open ports for
īŽ proactively protect the network (Network and security
admin)
īŽ attacking it (Hackers)
5. Why nmap
īŽ An excellent tool
īŽ Long history of development and support
īŽ Continuous development and improvements
īŽ âIndustry Standardâ port scanner
6. nmap features
âĸ Host Discovery: Which host is alive?
â Identifying computers on a network, for example listing the computers
which respond to pings (Ping Sweeps)
âĸ Port Scanning : What services are available?
â Enumerating the open ports on one or more target computers
âĸ Service and Version Detection : Which version is running?
â Determine the application name and version number
âĸ OS Detection: What platforms are served?
â Remotely determining the OS and some hardware characteristics of
network devices
7. Host Discovery
īŽ Querying multiple hosts using this method is
referred to as ping sweeps
īŽ The most basic step in mapping out a network.
īŽ Several Sweeps technique
īŽ ICMP Sweeps
īŽ Broadcast ICMP
īŽ NON Echo ICMP
īŽ TCP sweep
īŽ UDP sweep