Nmap Network Security

Submitted by siavash on Sun, 03/28/2010 - 13:01

Nmap is a commonly used port scanner for identifying active hosts and associated services .

Nmap allows for a variety of different types of port scans to be used in order to determine whether a port is open or closed.
Nmap uses raw IP packets to identify the available hosts on a network, the services or ports that are open,
Type of operating system and version that hosts are running, type of packet filters and firewalls in use, and other characteristics.

The most basic form of port scanning supported by nmap is the TCP connect() scan, using the -sT option flag (nmap is case sensitive).
The connect() system call provided by the host operating system is used to attempt to open a connection to any or all ports (user selects) on a remote host.

 

If the port is listening or open, then the connect() will succeed, otherwise the port is not listening or is in a closed state.

No special privileges are needed in order to employ this kind of scan.
A more common scan that is not as easily detected as the TCP connect() scan is the TCP SYN scan, also known as a SYN Stealth scan or “half-open” scan, since nmap does not open a full TCP connection .

This scan is implemented using the -sS flag. On a Unix/Linux host running nmap, root privileges are needed in order to create the custom SYN packets that are needed for this type of scan.

First a SYN packet is sent as though the machine running nmap is initiating a “genuine” TCP connection. The host running nmap then waits for a response.
A SYN|ACK response is indicative of a listening or open port. A response of RST is indicative of a non-listening or closed port.
If a SYN|ACK is received, a RST is immediately sent to “cancel” the connection.
This final action is required to remove the possibility of causing a SYN flood DoS attack.
This can occur because all pending connections are stored in a buffer. If a RST is not sent, the target host’s buffer may reach capacity.

When this occurs, legitimate requests will not be processed resulting in a DoS until either a RST is received or timeout occurs on the pending requests.
 

 

Tags: 

Anonymous

Anonymous hackers shut down Rome court's website
Post date: 05/21/2013 - 12:09
#opisrael reloaded - We know who you are!
Post date: 05/21/2013 - 11:58
Anonymous Hacktivists pinched in Vatican Operation Tango Down
Post date: 05/17/2013 - 16:24
#Anonymous #opPetrol will hit petroleum industry on the 20th of June 2013
Post date: 05/11/2013 - 12:44
On Korean War anniversary June 25th,Anonymous #opnorthkorea
Post date: 05/09/2013 - 14:29

Hacking

Chinese Hackers Army Marching On U.S. companies, government Network
Post date: 05/20/2013 - 13:17
Yahoo Japan suspects 22m IDs stolen
Post date: 05/18/2013 - 11:38
Facebook to Anonymous: We see you and we will report you
Post date: 05/16/2013 - 17:42
Facebook Monitors Your Chats for Criminal Activity
Post date: 05/16/2013 - 17:22
Armenian hackers VS Azerbaijani journalists
Post date: 05/15/2013 - 17:47

Infosec

Eurovision Vote Theft, Russians investigating
Post date: 05/21/2013 - 12:44
The Telegraph is hacked by the Syrian Electronic Army
Post date: 05/21/2013 - 12:30
Anonymous hackers shut down Rome court's website
Post date: 05/21/2013 - 12:09
#opisrael reloaded - We know who you are!
Post date: 05/21/2013 - 11:58
Ransomware Attack Now Steals Passwords, Microsoft Warns
Post date: 05/20/2013 - 22:49

Cyberwarfare

U.S. Could Use Cyberattack on Syrian Air Defenses
Post date: 05/19/2013 - 20:39
Microsoft Security Intelligence Report 14 released
Post date: 05/13/2013 - 14:11
Israel sets up 'secret' diplomatic mission in Persian Gulf
Post date: 05/13/2013 - 13:45
Watch Dogs Game targets SCADA systems & shows cyberwarfare
Post date: 05/13/2013 - 13:32
DOD confirms China’s cyberwar strategy
Post date: 05/12/2013 - 23:16