nmap is a powerfull scanner available in Unix/Linux system. It’s very usefull for network exploration and security auditing. It was designed to rapidly scan large networks, although it works fine againts single hosts.
It’s very easy to install nmap in Ubuntu, just download from the internet.
taufanlubis@zyrex:~$ sudo apt-get install nmap
In this practice, I used 2 computer.
PC-01, IP = 192.168.0.3 (OpenSuse 10.1) with Kernel 2.6.16.13-4-default
PC-02, IP = 192.168.0.2 (Ubuntu Feisty)
I run nmap from Ubuntu to scan PC-01.
IP Scanning with range 192.168.0.0 – 192.168.0.255
taufanlubis@zyrex:~$ sudo nmap -sP 192.168.0.0/24
Starting Nmap 4.20 ( http://insecure.org ) at 2007-10-16 21:51 WIT
Host 192.168.0.2 appears to be up.
caught SIGINT signal, cleaning up
taufanlubis@zyrex:~$
IP Scanning with range 192.168.0.1 – 192.168.0.254
taufanlubis@zyrex:~$ sudo nmap -sP 192.168.0.1-254
Starting Nmap 4.20 ( http://insecure.org ) at 2007-10-16 21:53 WIT
Host 192.168.0.2 appears to be up.
Host 192.168.0.3 appears to be up.
MAC Address: 00:0D:88:B3:72:F3 (D-Link)
Nmap finished: 255 IP addresses (2 hosts up) scanned in 31.242 seconds
taufanlubis@zyrex:~$
Port Scanning with range port 100 – port 139
taufanlubis@zyrex:~$ nmap 192.168.0.3 -p100-139
Starting Nmap 4.20 ( http://insecure.org ) at 2007-10-16 22:06 WIT
Interesting ports on 192.168.0.3:
Not shown: 38 filtered ports
PORT STATE SERVICE
113/tcp closed auth
139/tcp open netbios-ssn
Nmap finished: 1 IP address (1 host up) scanned in 24.914 seconds
taufanlubis@zyrex:~$
For 40 ports, it took almost 25 seconds, so it will take much longer if you want to scan from 1-65535 (all ports in a computers).
Scanning Operating system on target IP
taufanlubis@zyrex:~$ sudo nmap -O 192.168.0.3
Starting Nmap 4.20 ( http://insecure.org ) at 2007-10-16 22:20 WIT
Interesting ports on 192.168.0.3:
Not shown: 1693 filtered ports
PORT STATE SERVICE
80/tcp open http
113/tcp closed auth
139/tcp open netbios-ssn
445/tcp open microsoft-ds
MAC Address: 00:0D:88:B3:72:F3 (D-Link)
Device type: general purpose|specialized|WAP|storage-misc
Running (JUST GUESSING) : Linux 2.6.X|2.4.X (97%), Atmel Linux 2.6.X (91%), Siemens linux (91%), Linksys Linux 2.4.X (89%), Asus Linux 2.4.X (89%), Maxtor Linux 2.4.X (89%), Inventel embedded (88%)
Aggressive OS guesses: Linux 2.6.13 – 2.6.18 (97%), Linux 2.6.11 – 2.6.15 (Ubuntu or Debian) (93%), Linux 2.6.14 – 2.6.17 (92%), Linux 2.6.17 – 2.6.18 (x86) (92%), Linux 2.6.17.9 (X86) (92%), Linux 2.6.15-27-686 (Ubuntu Dapper, X86) (92%), Linux 2.6.9-42.0.2.EL (RedHat Enterprise Linux) (92%), Linux 2.6.9 – 2.6.12 (x86) (92%), Atmel AVR32 STK1000 development board (runs Linux 2.6.16.11) (91%), Siemens Gigaset SE515dsl wireless broadband router (91%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 1 hop
OS detection performed. Please report any incorrect results at http://insecure.org/nmap/submit/ .
Nmap finished: 1 IP address (1 host up) scanned in 94.942 seconds
taufanlubis@zyrex:~$
nmap Faster Execution
If you want to make faster scan, use -T4 option on nmap command..
taufanlubis@zyrex:~$ sudo nmap -A -T4 192.168.0.3
Starting Nmap 4.20 ( http://insecure.org ) at 2007-10-16 22:42 WIT
Interesting ports on 192.168.0.3:
Not shown: 1693 filtered ports
PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.2.0 ((Linux/SUSE))
113/tcp closed auth
139/tcp open netbios-ssn Samba smbd 3.X (workgroup: HOME)
445/tcp open netbios-ssn Samba smbd 3.X (workgroup: HOME)
MAC Address: 00:0D:88:B3:72:F3 (D-Link)
Device type: general purpose|WAP|specialized|storage-misc|broadband router
Running (JUST GUESSING) : Linux 2.6.X|2.4.X (97%), Siemens linux (93%), Atmel Linux 2.6.X (92%), Inventel embedded (89%), Linksys Linux 2.4.X (89%), Asus Linux 2.4.X (89%), Maxtor Linux 2.4.X (89%), Netgear embedded (87%)
Aggressive OS guesses: Linux 2.6.13 – 2.6.18 (97%), Siemens Gigaset SE515dsl wireless broadband router (93%), Linux 2.6.11 – 2.6.15 (Ubuntu or Debian) (93%), Linux 2.6.15-27-686 (Ubuntu Dapper, X86) (93%), Atmel AVR32 STK1000 development board (runs Linux 2.6.16.11) (92%), Linux 2.6.14 – 2.6.17 (92%), Linux 2.6.17 – 2.6.18 (x86) (92%), Linux 2.6.17.9 (X86) (92%), Linux 2.6.9-42.0.2.EL (RedHat Enterprise Linux) (92%), Linux 2.6.9 – 2.6.12 (x86) (92%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 1 hop
OS and Service detection performed. Please report any incorrect results at http://insecure.org/nmap/submit/ .
Nmap finished: 1 IP address (1 host up) scanned in 58.830 seconds
taufanlubis@zyrex:~$
Now, you only need 58,83 seconds compare to 94.94 seconds (without -T4 option).
For more details, just open the nmap manual.
taufanlubis@zyrex:~$ man nmap
makasih info nya.
gimana kalo blognya didaftarkan di planet ubuntu-id?
Sudah terdaftar, pak. Dengan nama Taufan Lubis.
kayaknya udah deh
CMIIW
Thank you..quite useful.
how to open 5060 port in ubuntu .please help me
hi .
its very good ,thank u .
1 request :::>> in Windows Os we can search an ip address from ISP and connect to admin Directory with this operate :
for example :
in URL : 192.168.12.34\admin$
i want to know how to do this operate in ubuntu
in fact i want to connect with their node on internet whit this command .in ubuntu .
help me if may …
nice share man… thank you…
[…] Fonte: https://taufanlubis.wordpress.com/2007/10/20/ip-and-port-scanning-using-nmap-network-mapper-in-ubuntu… Share this:TwitterFacebookGostar disso:GostoSeja o primeiro a gostar disso post. CategoriasUncategorized Tags:Network Comentários (0) Trackbacks (0) Deixe um comentário Trackback […]
[…] https://taufanlubis.wordpress.com/2007/10/20/ip-and-port-scanning-using-nmap-network-mapper-in-ubuntu… […]
Hello just wanted to give you a quick heads up.
The words in your content seem to be running off the screen
in Ie. I’m not sure if this is a format issue or something to do with internet browser compatibility but I thought I’d
post to let you know. The design look great though!
Hope you get the problem resolved soon. Cheers
You can unblock each site on the web including youtube and facebook utilizing a proxy server. I’ve used this free proxy browser . It is exceptionally quick and its completely anonymous. This is far and away the best proxy site that i know.
bhs inggris ey.. akhirnya bisa juga, hehe… tks bro
For SIP UDP 5060 the command is:
nmap -p 5060 -sU 10.0.0.1
Hey! Do you know if they make any plugins to safeguard against hackers?
I’m kinda paranoid about losing everything I’ve worked hard on. Any
tips?
Reblogged this on Eknaprasath.
Thanks on your marvelous posting! I quite enjoyed reading it, you happen to be a great author.I will be sure to bookmark your blog and may come back sometime
soon. I want to encourage you to continue your great job, have a nice afternoon!
Why visitors still use to read news papers when in this technological world all is available
on net?
Hi! Quick question that’s completely off topic. Do you know howw to makme your site mobile friendly?
My weblog looks weird when vieewing from my iphone4. I’m trying to find a theme or
plugin that might be able to resolve this problem. If you have any
recommendations, plewse share. Appreciate it!
What’s up to every body, it’s my first go to see of this weblog; this blog consists of remarkable and
in fact fine stuff for visitors.
Undeniably believe that which you stated. Your favorite justification appeared to be on the
net the easiest thing to be aware of. I say to you,
I definitely get irked while people think about worries that they just do not know about.
You managed to hit the nail upon the top and also defined out the whole thing without having side-effects , people could take a signal.
Will probably be back to get more. Thanks
Excellent article. Keep writing such kind of
info on your page. Im really impressed by it.
Hello there, You’ve performed an excellent job.
I will certainly digg it and individually recommend to my friends.
I’m sure they will be benefited from this site.
Wonderful goods from you, man. I’ve remember your stuff previous to and
you are just extremely magnificent. I really like what you’ve acquired here,
certainly like what you are stating and the way by which you say
it. You’re making it entertaining and you continue to take care of to keep
it wise. I can not wait to read much more from you.
This is really a wonderful web site.