Friday 26 January 2024

CEH: Identifying Services & Scanning Ports | Gathering Network And Host Information | NMAP


CEH scanning methodology is the important step i.e. scanning for open ports over a network. Port is the technique used to scan for open ports. This methodology performed for the observation of the open and close ports running on the targeted machine. Port scanning gathered a valuable information about  the host and the weakness of the system more than ping sweep.

Network Mapping (NMAP)

Basically NMAP stands for Network Mapping. A free open source tool used for scanning ports, service detection, operating system detection and IP address detection of the targeted machine. Moreover, it performs a quick and efficient scanning a large number of machines in a single session to gathered information about ports and system connected to the network. It can be used over UNIX, LINUX and Windows.

There are some terminologies which we should understand directly whenever we heard like Open ports, Filtered ports and Unfiltered ports.

Open Ports means the target machine accepts incoming request on that port cause these ports are used to accept packets due to the configuration of TCP and UDP.

Filtered ports means the ports are usually opened but due to firewall or network filtering the nmap doesn't detect the open ports.

Unfiltered means the nmap is unable to determine whether the port is open or filtered  while the port is accessible.

Types Of NMAP Scan


Scan Type Description
Null Scan This scan is performed by both an ethical hackers and black hat hackers. This scan is used to identify the TCP port whether it is open or closed. Moreover, it only works over UNIX  based systems.
TCP connect The attacker makes a full TCP connection to the target system. There's an opportunity to connect the specifically port which you want to connect with. SYN/ACK signal observed for open ports while RST/ACK signal observed for closed ports.
ACK scan Discovering the state of firewall with the help ACK scan whether it is stateful or stateless. This scan is typically used for the detection of filtered ports if ports are filtered. Moreover, it only works over the UNIX based systems.
Windows scan This type of scan is similar to the ACK scan but there is ability to detect an open ports as well filtered ports.
SYN stealth scan This malicious attack is mostly performed by attacker to detect the communication ports without making full connection to the network.
This is also known as half-open scanning. 

 

All NMAP Commands 


Commands Scan Performed
-sT TCP connect scan
-sS SYN scan
-sF FIN scan
-sX XMAS tree scan
-sN Null scan
-sP Ping scan
-sU UDP scan
-sO Protocol scan
-sA ACK scan
-sW Window scan
-sR RPC scan
-sL List/DNS scan
-sI Idle scan
-Po Don't ping
-PT TCP ping
-PS SYN ping
-PI ICMP ping
-PB ICMP and TCP ping
-PB ICMP timestamp
-PM ICMP netmask
-oN Normal output
-oX XML output
-oG Greppable output
-oA All output
-T Paranoid Serial scan; 300 sec between scans
-T Sneaky Serial scan; 15 sec between scans
-T Polite Serial scan; .4 sec between scans
-T Normal Parallel scan
-T Aggressive Parallel scan, 300 sec timeout, and 1.25 sec/probe
-T Insane Parallel scan, 75 sec timeout, and .3 sec/probe

 

How to Scan

You can perform nmap scanning over the windows command prompt followed by the syntax below. For example, If you wanna scan the host with the IP address 192.168.2.1 using a TCP connect scan type, enter this command:

nmap 192.168.2.1 –sT

nmap -sT 192.168.2.1

More info


  1. Pentest Tools Android
  2. Hacking Tools For Windows 7
  3. Tools Used For Hacking
  4. Hack Tool Apk
  5. Hacking Tools For Pc
  6. Hack Tools Download
  7. Hacking Tools 2019
  8. Hack Tools Github
  9. Hacker Tools Linux
  10. What Are Hacking Tools
  11. Hacking Tools Windows
  12. Pentest Tools Open Source
  13. Hacker Tools Hardware
  14. Pentest Tools For Ubuntu
  15. Pentest Tools For Android
  16. Pentest Tools For Ubuntu
  17. Hacking Tools 2019
  18. Hack Tools For Ubuntu
  19. Hack Tools
  20. Hacking Tools Free Download
  21. Hacker Techniques Tools And Incident Handling
  22. Computer Hacker
  23. Hack Tools For Games
  24. Hak5 Tools
  25. Pentest Tools Subdomain
  26. Free Pentest Tools For Windows
  27. Pentest Tools Find Subdomains
  28. Hacker Search Tools
  29. Hackrf Tools
  30. Hacker Tool Kit
  31. Pentest Tools Framework
  32. Hacking App
  33. Hacking App
  34. Hack Tools Github
  35. Hacking Apps
  36. Easy Hack Tools
  37. Hacker Tools Windows
  38. Physical Pentest Tools
  39. Hacking App
  40. New Hacker Tools
  41. Hacking Tools Name
  42. Hackers Toolbox
  43. Hacker Tool Kit
  44. Hacking Tools Github
  45. Tools Used For Hacking
  46. Hacking Tools Kit
  47. Android Hack Tools Github
  48. Hacker Tool Kit
  49. Hacker
  50. Hacker Tools Windows
  51. Hack Tools Download
  52. Pentest Tools Open Source
  53. Hacking Tools Name
  54. Hacker Tools Apk Download
  55. Hacking Tools
  56. Growth Hacker Tools
  57. Hacker
  58. Pentest Tools For Windows
  59. Pentest Tools Framework
  60. Pentest Tools Port Scanner
  61. Hacking Tools For Windows
  62. Hack Rom Tools
  63. Hacker
  64. Hack Tools For Windows
  65. Hacking App
  66. Hacker Tools Hardware
  67. Hack Rom Tools
  68. Hacker Tools Free Download
  69. Hacks And Tools
  70. Hacking Tools Pc
  71. Pentest Tools For Ubuntu
  72. Hack App
  73. Hack Tool Apk
  74. Pentest Tools Free
  75. Hacker Tools Mac
  76. Hacker Tools Online
  77. Kik Hack Tools
  78. Github Hacking Tools
  79. Hacker Tools For Ios
  80. Blackhat Hacker Tools
  81. Pentest Tools Port Scanner
  82. Pentest Tools Download
  83. Hacking Tools Free Download
  84. What Is Hacking Tools
  85. Hacking Tools Mac
Posted by at

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)