Study of nmap Command

 

Experiment

Study of nmap Command

๐ŸŽฏ Aim

To explore and analyze network hosts and services using the nmap command.

๐Ÿ“˜ Objective

By the end of this experiment, students will be able to:

  • Discover active hosts in a network
  • Scan open ports
  • Identify running services
  • Understand basic network security scanning

๐Ÿ“– Theory

The nmap (Network Mapper) command is a powerful tool used for:

  • Network discovery
  • Security auditing
  • Port scanning

๐Ÿ‘‰ It works by sending packets to target systems and analyzing responses.

๐Ÿ‘‰ It can detect:

  • Open ports
  • Closed ports
  • Filtered ports (blocked by firewall)

๐Ÿงพ Syntax

nmap [options] <target>
  • <target> → IP address, hostname, or network range

๐Ÿ”ง Common Options

  • -sS → TCP SYN scan (stealth scan)
  • -sT → TCP connect scan
  • -sU → UDP scan
  • -p → Specify port(s)
  • -A → Aggressive scan (OS + version detection)
  • -O → OS detection
  • -v → Verbose output
  • -F → Fast scan (common ports only)

๐Ÿงฐ Prerequisites

  • Linux system
  • Root/sudo privileges (for advanced scans)
  • nmap installed

Installation:

sudo apt install nmap

๐Ÿ”ฌ Procedure & Commands

1️⃣ Scan a Single Host

nmap 192.168.1.1

2️⃣ Scan a Domain

nmap google.com

3️⃣ Scan Specific Ports

nmap -p 22,80,443 192.168.1.1

4️⃣ Scan a Range of IPs

nmap 192.168.1.1-100

5️⃣ Perform Stealth Scan

sudo nmap -sS 192.168.1.1

6️⃣ Detect OS and Services

sudo nmap -A 192.168.1.1

7️⃣ Fast Scan

nmap -F 192.168.1.1

๐Ÿ–ฅ️ Sample Output

PORT        STATE      SERVICE
22/tcp      open       ssh
80/tcp      open       http
443/tcp     open       https

๐Ÿ” Output Interpretation

FieldMeaning
PORT        Port number and protocol
STATE        open / closed / filtered
SERVICE        Service running on the port

๐Ÿ”‘ Port States

  • Open → Service is running
  • Closed → No service running
  • Filtered → Blocked by firewall

๐Ÿ“ Exercises for Students

  1. Scan your local system (localhost).
  2. Identify open ports on a given IP.
  3. Perform a fast scan and compare with normal scan.
  4. Scan a network range and list active hosts.
  5. Analyze differences between TCP and UDP scans.

❓ Viva Questions

  • What is nmap used for?
  • What is port scanning?
  • Difference between open and filtered ports?
  • What is a stealth scan?
  • Why is nmap important in security?

⚠️ Precautions

  • ⚠️ Scan only authorized systems (important ethical rule)
  • Requires root privileges for advanced scans
  • Can be detected by firewalls/IDS

✅ Result

The nmap command is a powerful tool for network exploration and security auditing, widely used by network administrators and cybersecurity professionals.

Comments

Post a Comment

Popular posts from this blog

Networks Lab PCCSL507 Semester 5 KTU CS 2024 Scheme - Dr Binu V P

 About Me   Dr Binu V P Syllabus Learn Linux well before you start- refer blog Experiments Familiarize Linux networking commands ifconfig ifplugstatus iftop ping ip traceroute mtr netstat whois nmap nmcli speedtest-cli bmon nslookup tcpdump Wireshark     Download Wireshark     Wireshark Documentaion     Setting up a capture     Capturing Live network data      Analysis of HTTP Protocol using Wireshark Socket Programming Basic Implementation of  TCP Client Server Communication using sockets. TCP Client-Server Communication to Identify Matrix Type (Upper/Lower/Diagonal) Implementation of UDP Client-Server Communication using Sockets in C UDP Client-Server Communication for Translating “New Generation English” to Formal English Cisco's Packet Tracer
Read more

Analysis of HTTP Protocol using Wireshark

Experiment Title Analysis of HTTP Protocol using Wireshark Aim To capture and analyze HTTP packets using Wireshark and study the structure of HTTP request and response messages. Objective To understand HTTP request and response formats To analyze packet-level communication using Wireshark To extract protocol-specific information from captured traffic Software Required Wireshark Web Browser (Chrome / Firefox / Edge) Internet Connection Theory ๐ŸŒ What is HTTP? HTTP (HyperText Transfer Protocol) is an application-layer protocol used for communication between web clients (browsers) and web servers. ๐Ÿ” HTTP Communication Client sends a GET request Server responds with: Status code Requested resource Metadata ๐Ÿ“ฆ HTTP Message Types Request Message Contains: Method (GET, POST) URL Headers (Accept, User-Agent, etc.) Response Message Contains: Status code (200, 404, etc.) Headers (Content-Type, Content-Length, etc.) Body (HTML co...
Read more

Study and Use of ifconfig Command

   Experiment  Study and Use of ifconfig Command ๐ŸŽฏ Aim To familiarize students with the ifconfig command in Linux for viewing and configuring network interfaces. ๐Ÿ“˜ Objective By the end of this experiment, students will be able to: Display network interface details Enable/disable network interfaces Assign IP addresses manually Understand key networking parameters ๐Ÿงฐ Prerequisites Linux system (e.g., Ubuntu/Debian/Kali) Basic terminal knowledge Root or sudo privileges ๐Ÿ“– Theory The ifconfig ( interface configuration ) command is used to: View network interface configuration Assign IP addresses Enable or disable interfaces ⚠️ Note: On modern systems, ifconfig is deprecated and replaced by the ip command (from iproute2 ), but it is still widely used for learning and legacy systems. ๐Ÿงพ Syntax ifconfig [interface] [options] interface → Network interface name (e.g., eth0 , wlan0 ) options → Actions like up, down, assigning...
Read more