Nmap commands

Find hosts/devices on the network

nmap -sP 192.168.0.1/24
To find out what devices are on the network you need to know the ip of the router.
Here are some common:
10.0.1.1
10.0.0.2
10.0.0.138
192.168.0.1
192.168.1.1
192.168.1.10.1
192.168.11.1
192.168.2.1
192.168.3.1
192.168.1.254
192.168.254.254

Here is a more complete list, and according to model.
For default usernames and passwords check here.

Scan for open ports

The most simple of commands to check for some standard ports is:

nmap 192.168.0.103

But that does not check all of the possible ports.

nmap -p 1-65535 192.168.0.164

Or decide what ports you do want to check.

Check what service uses a specific port

Let’s say we find some open ports. But the port is either to high to have a specific service. Or it is on a port that is not usually used for it. For example, a lot of people are moving their ssh to not be port 22 to avoid spam-attacks.

45061/tcp open  unknown

So we just add the -sV flag.

sudo nmap -sV -p 45061 192.168.1.103

Here is the Nmap-documentation for it.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s