ForensicsWiki will continue to operate as it has before and will not be shutting down. Thank you for your continued support of ForensicsWiki.


From ForensicsWiki
Revision as of 20:41, 13 September 2008 by .FUF (Talk | contribs) (New page: {{Infobox_Software | name = nmap | maintainer = Gordon Lyon | os = {{Linux}}, {{Windows}}, OS X | genre = Network forensics | license = {{GPL}} | website = [ nm...)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
Maintainer: Gordon Lyon
OS: Linux,Windows, OS X
Genre: Network forensics
License: GPL

Nmap (Network Mapper) is a network security scanner.


General features:

  • Host discovery
  • Port scanning (enumerating open/closed/filtered ports on one or more target hosts)
  • Service detection (determining service types and version numbers)
  • OS detection

Other features:

  • IP protocol scan
  • Uptime detection (using TCP timestamps)
  • Traceroute
  • DNS resolution
  • Idle scan (using "zombies")
  • FTP bounce scan (using proxy FTP connections)
  • etc

Typical uses

  • Identifying open ports on a compromised host
  • Auditing the security of a network, by identifying unexpected computers

External Links