Thread: Nmap: The network scanner and OS fingerprinting

Nmap is the best open source network scanner for system and network managers and security professionals for many years since Fyodor posted it. It can determine the OS of local/remote host and OS used if your services are not installed correctly. Of course many knows it from matrix reloaded where a character (Trinity) runs it and then follows it with ssh exploits which was found to be open. Though this tool has been criticise by some people who are not related to security as they don't know anything but if it would not have been then the lives of security experts would have been in mess. Of course crackers would have find some other tools it but if it would not have been public then it would have been insome forums or as ftp where no search engines crawls and there's secrecy .
Some cool techniques with it:
xxxxxxxx = url or ip address. It doesn't matter but if you give ip address and you give -n option then it gives faster results as it don't do reverse dna looup
nmap -A xxxxxxxxx
it performs service and OS scan

nmap -O xxxxxxxxxxxx
it performs OS fingerprinting
nmap -sV xxxxxxxxxxxxxxxx
Services and applications


nmap -–scanflags (options flags)

Flags can be syn or push or ack.

If you have any ports open showing and OS and services are detectable then you have trouble.............


To be Contd( to solve the trouble of OS detection)

These were just kids options.........