Nmap - Banner Grabbing
Skills:
Network Security90%
Key Takeaways
This video demonstrates how to perform banner grabbing with Nmap, a network scanning tool, to identify service versions running on a target system or network. The video covers the basics of banner grabbing, its importance in penetration testing and vulnerability analysis, and how to use Nmap to perform banner grabbing on various ports and services.
Full Transcript
[Music] hello everyone welcome to this video in this video we're going to be taking a look at banner grabbing with nmap now banner grabbing as a whole is very important for penetration testers and for anyone who is doing any uh vulnerability analysis on a system or network right and if you're not already familiar essentially a banner or the process of banner grabbing is the process of essentially identifying uh the service version that is currently running on a particular port right so for example if i set up if i'm setting up a web server and i want to set up ssh i would install a piece of software right that would would actually act as my ssh would actually facilitate ssh connections a good example of this is openssh right so openssh is a is a piece of software that runs or will facilitate ssh communication on port 22. now as a penetration test if i'm performing a banner grabbing on that server and i'm performing banner grabbing on port 22 which is the ssh port what i'm likely to get is the banner of the service of the piece of software or the service version that is running so for example i would get open ssh so uh this is useful for two main reasons and it's it's quite similar to your service version enumeration however when performing manage grabbing manually uh when performing it uh you know in in sort of a direct manner without nmap filtering through the results and and sort of organizing it for us essentially able to get uh quite important beats uh bits of information and uh again that will be demonstrated shortly so this can be achieved by using a nmap script called banner and again i can perform a simple scan and let's say i wanted to perform a i will say sudo nmap and we'll run a simple tcp connect scandal the default scan right and we want to target let's see port 80 sorry port 22 and port 80 right and we then say script and that is going to be banner and then we specify our target in the case of this video we'll be using metasploitable 2. so uh 1.217 that is the ip on my network and we'll just hit enter right and let's uh let's take a look at the results and you'll see what i mean exactly right so we're only scanning about two ports so it should just display uh the two banners for us and it should tell us what what piece of software or and the version is running on these particular ports so for example um you can see that on port 22 here we are able to identify or to establish that we have open ssh 4.7 p1 and it's running we get an additional piece of information uh which is seems to be uh this this looks like an operating system banner it tells us we're running debian ubuntu right so ubuntu is a distribution that is based off debian so again we're able to tell all right that we we might be running debian or ubuntu but in most cases it's going to be ubuntu now if i perform the complete scan here right and i perform like a fast scan which is 100 of the most common ports let's hit enter of course this will take much more time and i'll just increase the uh the the actual scan speed here we'll hit enter let's run this right now and again we'll just wait for it to complete and then we'll take a look at the additional pieces of information that we're able to get and how it differentiates from you know something like uh like performing a service version scan and then of course the second bit of really important information is the fact that we can use these banners to perform vulnerability analysis or to perform a vulnerability scan on our network on our or on on our targets um so there we are you can see if we get all the ports that are really important we have ftp so you can see for ftp we are able to get the banner it tells us we're running vsftpd 2.3.4 for ssh open ssh for telnet we don't get a banner but a piece of shell code which is again it can be quite useful uh for smtp you can see that we get metasploit we get the actual domain name here and we can see it's post fix and it's running on ubuntu so we get another operating system banner leak there for the other services we aren't able to get any more banners but again for something like pro ftp for something that is running on port 2121 we can see we have pro f tpd uh running version 1.31 and it's running debian so again we're able to tell we're running debian or a debian based distribution for mysql uh you can see for the mysql server we actually get the banner here and it's part of the shell code which is great so we can see we're running version 5.0.518 a and it gives us the operating system banner so it tells us we're running ubuntu so on and so forth so again uh you know banner grabbing with nmap is very very important and can be very useful when when you're when you're trying to establish uh the accurate results and what nmap is getting back without it being filtered so again when performing service version detection nmap will typically filter the results and display things uh as appropriate as as appropriately as possible it'll not display things like shell code you know for service version or for the particular banners so that's pretty much all i wanted to cover in this video and i'll be seeing you in the next video [Music] you
Original Description
In this video, I demonstrate how to perform banner grabbing with Nmap. Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the responses. Nmap provides a number of features for probing computer networks, including host discovery and service and operating system detection.
To learn more about Nmap and how it's used in penetration testing and network mapping, check out our comprehensive course on Nmap for penetration testing: https://www.udemy.com/course/nmap-for-penetration-testing/?couponCode=4E9FF9403325C6ECB3C7
Our videos are also available on the decentralized platform LBRY: https://lbry.tv/$/invite/@HackerSploit:26
� SUPPORT US:
Patreon: https://www.patreon.com/hackersploit
Merchandise: https://teespring.com/en-GB/stores/hackersploitofficial
SOCIAL NETWORKS:
Twitter: https://twitter.com/HackerSploit
Instagram: https://www.instagram.com/hackersploit/
LinkedIn: https://www.linkedin.com/company/18713892
WHERE YOU CAN FIND US ONLINE:
HackerSploit - Open Source Cybersecurity Training: https://hackersploit.org/
HackerSploit Forum: https://forum.hackersploit.org
HackerSploit Academy: https://www.hackersploit.academy
LISTEN TO THE CYBERTALK PODCAST:
Spotify: https://open.spotify.com/show/6j0RhRiofxkt39AskIpwP7
We hope you enjoyed the video and found value in the content. We value your feedback. If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms.
Thanks for watching!
Благодарю за просмотр!
Kiitos katsomisesta
Danke fürs Zuschauen!
感谢您观看
Merci d'avoir regardé
Obrigado por assistir
دیکھنے کے لیے شکریہ
देखने के लिए धन्यवाद
Grazie per la visione
Gracias por ver
شكرا للمشاهدة
#Nmap
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from HackerSploit · HackerSploit · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
How To Install Kali Linux 2.0 On Virtual Box
HackerSploit
100 Subscriber Q&A! - How I Learned Ethical Hacking
HackerSploit
BlackArch Linux Review - Better Than Kali Linux?
HackerSploit
How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
HackerSploit
Wireshark Tutorial for Beginners - Installation
HackerSploit
Wireshark Tutorial for Beginners - Overview of the environment
HackerSploit
Wireshark Tutorial for Beginners - Capture options
HackerSploit
Wireshark Tutorial for Beginners - Filters
HackerSploit
Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
HackerSploit
Complete Ethical Hacking Course #2 - Installing Kali Linux
HackerSploit
Parrot OS 3.5 Review | The Best Kali Linux Alternative
HackerSploit
Nmap Tutorial For Beginners - 1 - What is Nmap?
HackerSploit
Katoolin | How To Install Pentesting Tools On Any Linux Distro
HackerSploit
Nmap Tutorial For Beginners - 2 - Advanced Scanning
HackerSploit
Nmap Tutorial For Beginners - 3 - Aggressive Scanning
HackerSploit
Zenmap Tutorial For Beginners
HackerSploit
How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
HackerSploit
How To Setup Proxychains In Kali Linux - #2 - Change Your IP
HackerSploit
How To Change Mac Address In Kali Linux | Macchanger
HackerSploit
How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
HackerSploit
Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
HackerSploit
VPN And DNS For Beginners | Kali Linux
HackerSploit
Tails OS Installation And Review - Access The Deep Web/Dark Net
HackerSploit
Steganography Tutorial - Hide Messages In Images
HackerSploit
The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
HackerSploit
Best Linux Distributions For Penetration Testing
HackerSploit
Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
HackerSploit
Gaining Access - Web Server Hacking - Metasploitable - #1
HackerSploit
Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
HackerSploit
How To Install Kali Linux On VMware - Complete Guide 2018
HackerSploit
Q&A #1 - Best Cyber-security Certifications?
HackerSploit
Terminator - Kali Linux - Multiple Terminals
HackerSploit
Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
HackerSploit
Q&A #2 - Mr Robot?
HackerSploit
Metasploit Community Web GUI - Installation And Overview
HackerSploit
Linux Expl0rer - Forensics Toolbox - Installation & Configuration
HackerSploit
QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
HackerSploit
Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
HackerSploit
Metasploit For Beginners - #2 - Understanding Metasploit Modules
HackerSploit
Kali Linux Quick Tips - #1 - Adding a non-root user
HackerSploit
Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
HackerSploit
Spectre Meltdown Vulnerability - How To Check Your System
HackerSploit
Metasploit For Beginners - #4 - Basic Exploitation
HackerSploit
ARP Spoofing With arpspoof - MITM
HackerSploit
WordPress Vulnerability Scanning With WPScan
HackerSploit
Generating A PHP Backdoor with weevely
HackerSploit
Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
HackerSploit
How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
HackerSploit
Stacer - System Optimizer And Monitoring Tool For Linux
HackerSploit
Kali Linux 2018.1 - Kernel Updates & Patches
HackerSploit
MITM With Ettercap - ARP Poisoning
HackerSploit
Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
HackerSploit
How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
HackerSploit
Channel Updates - How To Post Questions & Video Suggestions
HackerSploit
Web App Penetration Testing - #1 - Setting Up Burp Suite
HackerSploit
Web App Penetration Testing - #2 - Spidering & DVWA
HackerSploit
Cl0neMast3r - GitHub Repository Cloning Tool
HackerSploit
Kali Linux On Windows 10 Official - WSL - Installation & Configuration
HackerSploit
DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
HackerSploit
Web App Penetration Testing - #3 - Brute Force With Burp Suite
HackerSploit
More on: Network Security
View skill →Related Reads
📰
📰
📰
📰
What the Grok Build CLI leak means for your codebase
Medium · Cybersecurity
Sigma Kuralları: Bir Aracı Seçmeden Önce Kaynak Koduna İnmek Zorunda Kalmak
Medium · Cybersecurity
How Threat Hunting Improves SOC Operations
Medium · Cybersecurity
I built the first OSS federated threat-intel feed for LLM prompt injection. Here's how it works — and why no one else did.
Dev.to · Thamilvendhan Munirathinam
🎓
Tutor Explanation
DeepCamp AI