Thread by @b0rk: “nmap i haven’t used nmap much except to scan my home network for fun so if i missed something really important i’d love to know! […]”
Posted by jpluimers on 2021/02/05
[WayBack] Thread by @b0rk: “nmap i haven’t used nmap much except to scan my home network for fun so if i missed something really important i’d love to know! […]”
i haven’t used nmap much except to scan my home network for fun so if i missed something really important i’d love to know!also i need to find space in there somewhere for “if you don’t run nmap as root it can’t send icmp (ping) packets, it’s better to run nmap as root”
also be careful when nmapping in a network you don’t administer! it’s a popular hacking tool so using nmap is often discouraged / banned. i made all of the examples in this comic “
nmap scanme.nmap.org
” and “nmap your home network
” for a reason :)
There are are quite a few interesting comments on the thread:
- [WayBack] infosec pigeon on Twitter: “Just go nuts… nmap -Pn -sV –script vulners 10.0.0.0/24 -p-… “
- [WayBack] Josef Schugt on Twitter: “There also is a nice Android app for the same purpose that is GPL 3.0. It is called “Port Authority” https://f-droid.org/en/packages/com.aaronjwood.portauthority/ … – comes in handy to find the Raspberry Pis on the network using MAC address vendor identification 😍”
- [WayBack] Port Authority | F-Droid – Free and Open Source Android App Repository
- [WayBack] GitHub – aaronjwood/PortAuthority: A handy systems and security-focused tool, Port Authority is a very fast Android port scanner. Port Authority also allows you to quickly discover hosts on your network and will display useful network information about your device and other hosts.
- [WayBack] Port Authority – LAN Host Discovery & Port Scanner – Apps on Google Play
- [WayBack] jJ on Twitter: “Remote Root Exploit – Carrie-Anne Moss in “Matrix Reloaded” (2003) youtu.be/94F5S75ybSI via @YouTube… “
And it taught me about scanme.nmap.org
: [WayBack] Go ahead and ScanMe!
Hello, and welcome to Scanme.Nmap.Org, a service provided by the Nmap Security Scanner Project and Insecure.Org.
We set up this machine to help folks learn about Nmap and also to test and make sure that their Nmap installation (or Internet connection) is working properly. You are authorized to scan this machine with Nmap or other port scanners. Try not to hammer on the server too hard. A few scans in a day is fine, but dont scan 100 times a day or use this site to test your ssh brute-force password cracking tool.
Thanks
–Fyodor
–jeroen
Via: [WayBack] 🔎Julia Evans🔍 on Twitter: “nmap… “
Leave a Reply