Nmap - Banner Grabbing

HackerSploit · Intermediate ·🔐 Cybersecurity ·5y ago

Key Takeaways

This video demonstrates how to perform banner grabbing with Nmap, a network scanning tool, to identify service versions running on a target system or network. The video covers the basics of banner grabbing, its importance in penetration testing and vulnerability analysis, and how to use Nmap to perform banner grabbing on various ports and services.

Full Transcript

[Music] hello everyone welcome to this video in this video we're going to be taking a look at banner grabbing with nmap now banner grabbing as a whole is very important for penetration testers and for anyone who is doing any uh vulnerability analysis on a system or network right and if you're not already familiar essentially a banner or the process of banner grabbing is the process of essentially identifying uh the service version that is currently running on a particular port right so for example if i set up if i'm setting up a web server and i want to set up ssh i would install a piece of software right that would would actually act as my ssh would actually facilitate ssh connections a good example of this is openssh right so openssh is a is a piece of software that runs or will facilitate ssh communication on port 22. now as a penetration test if i'm performing a banner grabbing on that server and i'm performing banner grabbing on port 22 which is the ssh port what i'm likely to get is the banner of the service of the piece of software or the service version that is running so for example i would get open ssh so uh this is useful for two main reasons and it's it's quite similar to your service version enumeration however when performing manage grabbing manually uh when performing it uh you know in in sort of a direct manner without nmap filtering through the results and and sort of organizing it for us essentially able to get uh quite important beats uh bits of information and uh again that will be demonstrated shortly so this can be achieved by using a nmap script called banner and again i can perform a simple scan and let's say i wanted to perform a i will say sudo nmap and we'll run a simple tcp connect scandal the default scan right and we want to target let's see port 80 sorry port 22 and port 80 right and we then say script and that is going to be banner and then we specify our target in the case of this video we'll be using metasploitable 2. so uh 1.217 that is the ip on my network and we'll just hit enter right and let's uh let's take a look at the results and you'll see what i mean exactly right so we're only scanning about two ports so it should just display uh the two banners for us and it should tell us what what piece of software or and the version is running on these particular ports so for example um you can see that on port 22 here we are able to identify or to establish that we have open ssh 4.7 p1 and it's running we get an additional piece of information uh which is seems to be uh this this looks like an operating system banner it tells us we're running debian ubuntu right so ubuntu is a distribution that is based off debian so again we're able to tell all right that we we might be running debian or ubuntu but in most cases it's going to be ubuntu now if i perform the complete scan here right and i perform like a fast scan which is 100 of the most common ports let's hit enter of course this will take much more time and i'll just increase the uh the the actual scan speed here we'll hit enter let's run this right now and again we'll just wait for it to complete and then we'll take a look at the additional pieces of information that we're able to get and how it differentiates from you know something like uh like performing a service version scan and then of course the second bit of really important information is the fact that we can use these banners to perform vulnerability analysis or to perform a vulnerability scan on our network on our or on on our targets um so there we are you can see if we get all the ports that are really important we have ftp so you can see for ftp we are able to get the banner it tells us we're running vsftpd 2.3.4 for ssh open ssh for telnet we don't get a banner but a piece of shell code which is again it can be quite useful uh for smtp you can see that we get metasploit we get the actual domain name here and we can see it's post fix and it's running on ubuntu so we get another operating system banner leak there for the other services we aren't able to get any more banners but again for something like pro ftp for something that is running on port 2121 we can see we have pro f tpd uh running version 1.31 and it's running debian so again we're able to tell we're running debian or a debian based distribution for mysql uh you can see for the mysql server we actually get the banner here and it's part of the shell code which is great so we can see we're running version 5.0.518 a and it gives us the operating system banner so it tells us we're running ubuntu so on and so forth so again uh you know banner grabbing with nmap is very very important and can be very useful when when you're when you're trying to establish uh the accurate results and what nmap is getting back without it being filtered so again when performing service version detection nmap will typically filter the results and display things uh as appropriate as as appropriately as possible it'll not display things like shell code you know for service version or for the particular banners so that's pretty much all i wanted to cover in this video and i'll be seeing you in the next video [Music] you

Original Description

In this video, I demonstrate how to perform banner grabbing with Nmap. Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the responses. Nmap provides a number of features for probing computer networks, including host discovery and service and operating system detection. To learn more about Nmap and how it's used in penetration testing and network mapping, check out our comprehensive course on Nmap for penetration testing: https://www.udemy.com/course/nmap-for-penetration-testing/?couponCode=4E9FF9403325C6ECB3C7 Our videos are also available on the decentralized platform LBRY: https://lbry.tv/$/invite/@HackerSploit:26 � SUPPORT US: Patreon: https://www.patreon.com/hackersploit Merchandise: https://teespring.com/en-GB/stores/hackersploitofficial SOCIAL NETWORKS: Twitter: https://twitter.com/HackerSploit Instagram: https://www.instagram.com/hackersploit/ LinkedIn: https://www.linkedin.com/company/18713892 WHERE YOU CAN FIND US ONLINE: HackerSploit - Open Source Cybersecurity Training: https://hackersploit.org/ HackerSploit Forum: https://forum.hackersploit.org HackerSploit Academy: https://www.hackersploit.academy LISTEN TO THE CYBERTALK PODCAST: Spotify: https://open.spotify.com/show/6j0RhRiofxkt39AskIpwP7 We hope you enjoyed the video and found value in the content. We value your feedback. If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms. Thanks for watching! Благодарю за просмотр! Kiitos katsomisesta Danke fürs Zuschauen! 感谢您观看 Merci d'avoir regardé Obrigado por assistir دیکھنے کے لیے شکریہ देखने के लिए धन्यवाद Grazie per la visione Gracias por ver شكرا للمشاهدة #Nmap
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from HackerSploit · HackerSploit · 0 of 60

← Previous Next →
1 How To Install Kali Linux 2.0 On Virtual Box
How To Install Kali Linux 2.0 On Virtual Box
HackerSploit
2 100 Subscriber Q&A! - How I Learned Ethical Hacking
100 Subscriber Q&A! - How I Learned Ethical Hacking
HackerSploit
3 BlackArch Linux Review - Better Than Kali Linux?
BlackArch Linux Review - Better Than Kali Linux?
HackerSploit
4 How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
HackerSploit
5 Wireshark Tutorial for Beginners - Installation
Wireshark Tutorial for Beginners - Installation
HackerSploit
6 Wireshark Tutorial for Beginners - Overview of the environment
Wireshark Tutorial for Beginners - Overview of the environment
HackerSploit
7 Wireshark Tutorial for Beginners - Capture options
Wireshark Tutorial for Beginners - Capture options
HackerSploit
8 Wireshark Tutorial for Beginners - Filters
Wireshark Tutorial for Beginners - Filters
HackerSploit
9 Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
HackerSploit
10 Complete Ethical Hacking Course #2 - Installing Kali Linux
Complete Ethical Hacking Course #2 - Installing Kali Linux
HackerSploit
11 Parrot OS 3.5 Review | The Best Kali Linux Alternative
Parrot OS 3.5 Review | The Best Kali Linux Alternative
HackerSploit
12 Nmap Tutorial For Beginners - 1 - What is Nmap?
Nmap Tutorial For Beginners - 1 - What is Nmap?
HackerSploit
13 Katoolin | How To Install Pentesting Tools On Any Linux Distro
Katoolin | How To Install Pentesting Tools On Any Linux Distro
HackerSploit
14 Nmap Tutorial For Beginners - 2 - Advanced Scanning
Nmap Tutorial For Beginners - 2 - Advanced Scanning
HackerSploit
15 Nmap Tutorial For Beginners - 3 - Aggressive Scanning
Nmap Tutorial For Beginners - 3 - Aggressive Scanning
HackerSploit
16 Zenmap Tutorial For Beginners
Zenmap Tutorial For Beginners
HackerSploit
17 How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
HackerSploit
18 How To Setup Proxychains In Kali Linux - #2 - Change Your IP
How To Setup Proxychains In Kali Linux - #2 - Change Your IP
HackerSploit
19 How To Change Mac Address In Kali Linux | Macchanger
How To Change Mac Address In Kali Linux | Macchanger
HackerSploit
20 How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
HackerSploit
21 Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
HackerSploit
22 VPN And DNS For Beginners | Kali Linux
VPN And DNS For Beginners | Kali Linux
HackerSploit
23 Tails OS Installation And Review - Access The Deep Web/Dark Net
Tails OS Installation And Review - Access The Deep Web/Dark Net
HackerSploit
24 Steganography Tutorial - Hide Messages In Images
Steganography Tutorial - Hide Messages In Images
HackerSploit
25 The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
HackerSploit
26 Best Linux Distributions For Penetration Testing
Best Linux Distributions For Penetration Testing
HackerSploit
27 Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
HackerSploit
28 Gaining Access - Web Server Hacking - Metasploitable - #1
Gaining Access - Web Server Hacking - Metasploitable - #1
HackerSploit
29 Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
HackerSploit
30 How To Install Kali Linux On VMware  - Complete Guide 2018
How To Install Kali Linux On VMware - Complete Guide 2018
HackerSploit
31 Q&A #1 - Best Cyber-security Certifications?
Q&A #1 - Best Cyber-security Certifications?
HackerSploit
32 Terminator - Kali Linux - Multiple Terminals
Terminator - Kali Linux - Multiple Terminals
HackerSploit
33 Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
HackerSploit
34 Q&A #2 - Mr Robot?
Q&A #2 - Mr Robot?
HackerSploit
35 Metasploit Community Web GUI  - Installation And Overview
Metasploit Community Web GUI - Installation And Overview
HackerSploit
36 Linux Expl0rer - Forensics Toolbox - Installation & Configuration
Linux Expl0rer - Forensics Toolbox - Installation & Configuration
HackerSploit
37 QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
HackerSploit
38 Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
HackerSploit
39 Metasploit For Beginners - #2 - Understanding Metasploit Modules
Metasploit For Beginners - #2 - Understanding Metasploit Modules
HackerSploit
40 Kali Linux Quick Tips - #1 - Adding a non-root user
Kali Linux Quick Tips - #1 - Adding a non-root user
HackerSploit
41 Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
HackerSploit
42 Spectre Meltdown Vulnerability  - How To Check Your System
Spectre Meltdown Vulnerability - How To Check Your System
HackerSploit
43 Metasploit For Beginners - #4 - Basic Exploitation
Metasploit For Beginners - #4 - Basic Exploitation
HackerSploit
44 ARP Spoofing With arpspoof - MITM
ARP Spoofing With arpspoof - MITM
HackerSploit
45 WordPress Vulnerability Scanning With WPScan
WordPress Vulnerability Scanning With WPScan
HackerSploit
46 Generating A PHP Backdoor with weevely
Generating A PHP Backdoor with weevely
HackerSploit
47 Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
HackerSploit
48 How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
HackerSploit
49 Stacer - System Optimizer And Monitoring Tool For Linux
Stacer - System Optimizer And Monitoring Tool For Linux
HackerSploit
50 Kali Linux 2018.1 - Kernel Updates & Patches
Kali Linux 2018.1 - Kernel Updates & Patches
HackerSploit
51 MITM With Ettercap - ARP Poisoning
MITM With Ettercap - ARP Poisoning
HackerSploit
52 Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
HackerSploit
53 How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
HackerSploit
54 Channel Updates - How To Post Questions & Video Suggestions
Channel Updates - How To Post Questions & Video Suggestions
HackerSploit
55 Web App Penetration Testing - #1 - Setting Up Burp Suite
Web App Penetration Testing - #1 - Setting Up Burp Suite
HackerSploit
56 Web App Penetration Testing - #2 - Spidering & DVWA
Web App Penetration Testing - #2 - Spidering & DVWA
HackerSploit
57 Cl0neMast3r - GitHub Repository Cloning Tool
Cl0neMast3r - GitHub Repository Cloning Tool
HackerSploit
58 Kali Linux On Windows 10 Official - WSL - Installation & Configuration
Kali Linux On Windows 10 Official - WSL - Installation & Configuration
HackerSploit
59 DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
HackerSploit
60 Web App Penetration Testing - #3 - Brute Force With Burp Suite
Web App Penetration Testing - #3 - Brute Force With Burp Suite
HackerSploit

This video teaches how to use Nmap to perform banner grabbing, a technique used to identify service versions running on a target system or network. By using Nmap, viewers can learn how to gather important information about a target system or network, which can be used for penetration testing and vulnerability analysis.

Key Takeaways
  1. Install and configure Nmap on your system
  2. Use Nmap to scan for open ports and services on a target system or network
  3. Use the banner grabbing script in Nmap to identify service versions running on the target system or network
  4. Analyze the results of the banner grabbing scan to identify potential vulnerabilities
  5. Use the information gathered from the banner grabbing scan to conduct further penetration testing and vulnerability analysis
💡 Banner grabbing with Nmap can provide valuable information about a target system or network, including service versions and potential vulnerabilities, which can be used for penetration testing and vulnerability analysis.

Related Reads

📰
What the Grok Build CLI leak means for your codebase
Check if your local-first coding tool stays local with a step-by-step guide
Medium · Cybersecurity
📰
Sigma Kuralları: Bir Aracı Seçmeden Önce Kaynak Koduna İnmek Zorunda Kalmak
Learn why reviewing source code is crucial before choosing a tool, as demonstrated by the limitations of StoW and ClickDetect
Medium · Cybersecurity
📰
How Threat Hunting Improves SOC Operations
Improve SOC operations with threat hunting to detect and respond to unknown threats
Medium · Cybersecurity
📰
I built the first OSS federated threat-intel feed for LLM prompt injection. Here's how it works — and why no one else did.
Learn how to build an OSS federated threat-intel feed for LLM prompt injection and understand its significance in cybersecurity
Dev.to · Thamilvendhan Munirathinam
Up next
Is your free email putting your bank account at risk? #Podcast #Interview #Efani #BankAccounts
efani
Watch →