![A stick figure smiling](/images/welcome.jpg)
Here's a preview from my zine, Bite Size Networking!! If you want to see more comics like this, sign up for my saturday comics newsletter or browse more comics!
![Image of a comic. To read the full HTML alt text, click "read the transcript".](/images/uploads/nmap.png)
read the transcript!
nmap lets you explore a network
which ports are open?
what hosts are up?
security people use it a lot!
find which hosts are up
$ nmap-sn 192.168.1.0/24
168
is my home network
-sn
means “ping scan”. (not -s-n
it’s -sn
)
just finds hosts by pinging every one, doesn’t port scan
aggressive scan
nmap -v -A scanme.nmap.org
-A
= aggressive
port, server version, even OS
-Pn
skip doing a ping scan and assume every host is up. good if hosts block ping (lots do)
fast port scan
$ nmap -SS-F 192.168.1.0/24
just sends a SYN packet to check if each port is open.
I found out which ports my printer has open!
80 http
443 https
515 printer
631 ipp
9100 jetdirect
-F
scan less ports: just the most common ones
-T4 or -T5
scan faster by timing out more quickly
♡ check TLS version and ciphers ♡
check if your server still supports old TLS versions
$ nmap
--script ssl-enum-ciphers
-p 443 wizardzines.com
list all scripts with:
$ nmap --script-help '*'
Saturday Morning Comics!
Want another comic like this in your email every Saturday? Sign up here!