Vulnerability Scanning With Nmap
Key Takeaways
The video demonstrates how to perform vulnerability scanning with Nmap using the Vulners script, which provides information about vulnerabilities based on service versions and banners. The script is used to enumerate vulnerabilities, including CVEs, severity ratings, and affected vendors.
Full Transcript
[Music] hello everyone welcome to this video in this video we're going to be taking a look at how to perform vulnerability scanning with nmap more specifically how to do this with the vulner's nmap script now this is a script that was previously not uh it was did not come pre-packaged with the default nmap scripts but now it is and the reason i'm currently on the github repository is to just give you an introduction to this particular script right so again the script is called the vern the vulners script and again it is used to enumerate uh you know vulnerability or information about certain vulnerabilities based on the banner or the service versions that you're you actually get during a particular scan so again this is used as a very simple vulnerability scanner in that it gives you the various cves all the vulnerabilities and the actual rating here in terms of the severity so again sorted from 0 to 10 0 being the lowest 10 being the highest so on and so forth which can be very helpful before you actually start using any commercial vulnerability scanning tools this can give you a very good idea of what you're dealing with now as i said this script already comes pre-packaged uh with in any default nmap installation and using it is a fairly simple and all you need to do is you can actually view the usage here ensure that you're performing service version detection and then you want to pass the script vulners and you can then specify the script arguments and specify the minimum cvss so again you can specify uh what minimum rating you want to be displayed so that you have a more concise uh you have more concise results uh that again might be that will display you know vulnerabilities that are higher up on the list in terms of severity as opposed to displaying all of the vulnerabilities so again uh as i said you can find it um we say al let me just display the default nmap scripts directory and again i'll just pipe and grip and i'll say we're looking it is called if we just again take a look at the name here you can see the script name is called vulners so again we just type in vulners um and that will display it there we are it's a wonders.nse so again using it as i said is very very simple uh we'll be targeting the metasploitable 2 vm so again what i'll do is i will just say nmap and we'll make sure to run sudo with this in the event it does prompt us to do that we say nmap sv and um we can be performing a scan probably on let's say port 21 all the way to port 8080 so that's that's a pretty uh you know comprehensive type of scan you know regarding the services we're looking for so script the script is going to be vulners um and we specify the target 192.168.1.217 and i hit enter right and we're going to give this a few seconds or up to a minute based on depending on the amount of ports you're going to be scanning and of course you can increase the speed of the scan which we actually can do but what i'm going to do is i'm just going to let this complete scanning and shortly after we can then take a look at the results if we go back to the github repository you can also see we have the http vulners rejects script which allows you to scan http responses and identify cpes for the mentioned software which can be very very uh important so again that's a script that you want to check out i'll probably be making a video covering this uh again separately because this deals with http primarily all right so you can see we have a ton of results here and we'll start right from the top here so you can see that for every particular port we get the vulnera script running and it gives us the cpe right so it tells us we're dealing with openness age 4.7 p1 and then gives us the various cves uh the rating uh you know the severity here and uh it gives us the a link to the onenote to through the vulners.com cve website where it has a listing of this particular cve and you know it gives you information regarding the disclosure date uh stuff like that so what i'm gonna do is i'll just copy this link and we will open this up within firefox and i'll say paste and go right and um we'll let this load up and this is the official vulneras website so we'll just say um i'm not a robot here mountains or hills uh let's see what can we click that looks like a mountain or hill here there we are submit and this will just display information about this particular cv so again it tells you that the open sh 5.6 and earlier when g jpeg is enabled does not properly validate public parameters etc etc gives us the cvss score here and you know the the uh the actual disclosure date uh the affected vendors um because uh it actually that's very important based on the platform you're using it you're actually exploiting this on um and then of course you have the references uh which you can actually check out right over here so again very very helpful uh we take a look at some of the other results uh you can see we'll avoid dns right now for apache httpd 2.2.8 you can see we have a cve with a rating of severity rating severity rating of 10 and again you can check out more about this but you can see how helpful this is in that it gives you an idea already of what services you you should be targeting uh as you move forward so it sort of gives you the low hanging fruit uh and of course you need to validate this uh with a vulnerability scanner because uh you know relying on a simple script might not be enough or might not be accurate to you know to give you an accurate or to give you a a total uh image or picture of the target and all the vulnerabilities that might be affecting it um so that being said that's pretty much all that i wanted to cover i'll be putting a link to this particular repository in the this in the resources section of this particular video and you'll be able to check it out for yourself as i said it already comes pre-set up with nmap or any default nmap installation so you should be able to use it and yeah that's pretty much all i wanted to cover in this video and i'll be seeing you in the next video [Music] you
Original Description
In this video, I demonstrate how to perform vulnerability scanning with Nmap. Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the responses. Nmap provides a number of features for probing computer networks, including host discovery and service and operating system detection.
To learn more about Nmap and how it's used in penetration testing and network mapping, check out our comprehensive course on Nmap for penetration testing: https://www.udemy.com/course/nmap-for-penetration-testing/?couponCode=4E9FF9403325C6ECB3C7
Our videos are also available on the decentralized platform LBRY: https://lbry.tv/$/invite/@HackerSploit:26
SUPPORT US:
Patreon: https://www.patreon.com/hackersploit
Merchandise: https://teespring.com/en-GB/stores/hackersploitofficial
SOCIAL NETWORKS:
Twitter: https://twitter.com/HackerSploit
Instagram: https://www.instagram.com/hackersploit/
LinkedIn: https://www.linkedin.com/company/18713892
WHERE YOU CAN FIND US ONLINE:
HackerSploit - Open Source Cybersecurity Training: https://hackersploit.org/
HackerSploit Forum: https://forum.hackersploit.org
HackerSploit Academy: https://www.hackersploit.academy
LISTEN TO THE CYBERTALK PODCAST:
Spotify: https://open.spotify.com/show/6j0RhRiofxkt39AskIpwP7
We hope you enjoyed the video and found value in the content. We value your feedback. If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms.
Thanks for watching!
Благодарю за просмотр!
Kiitos katsomisesta
Danke fürs Zuschauen!
感谢您观看
Merci d'avoir regardé
Obrigado por assistir
دیکھنے کے لیے شکریہ
देखने के लिए धन्यवाद
Grazie per la visione
Gracias por ver
شكرا للمشاهدة
#Nmap
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from HackerSploit · HackerSploit · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
How To Install Kali Linux 2.0 On Virtual Box
HackerSploit
100 Subscriber Q&A! - How I Learned Ethical Hacking
HackerSploit
BlackArch Linux Review - Better Than Kali Linux?
HackerSploit
How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
HackerSploit
Wireshark Tutorial for Beginners - Installation
HackerSploit
Wireshark Tutorial for Beginners - Overview of the environment
HackerSploit
Wireshark Tutorial for Beginners - Capture options
HackerSploit
Wireshark Tutorial for Beginners - Filters
HackerSploit
Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
HackerSploit
Complete Ethical Hacking Course #2 - Installing Kali Linux
HackerSploit
Parrot OS 3.5 Review | The Best Kali Linux Alternative
HackerSploit
Nmap Tutorial For Beginners - 1 - What is Nmap?
HackerSploit
Katoolin | How To Install Pentesting Tools On Any Linux Distro
HackerSploit
Nmap Tutorial For Beginners - 2 - Advanced Scanning
HackerSploit
Nmap Tutorial For Beginners - 3 - Aggressive Scanning
HackerSploit
Zenmap Tutorial For Beginners
HackerSploit
How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
HackerSploit
How To Setup Proxychains In Kali Linux - #2 - Change Your IP
HackerSploit
How To Change Mac Address In Kali Linux | Macchanger
HackerSploit
How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
HackerSploit
Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
HackerSploit
VPN And DNS For Beginners | Kali Linux
HackerSploit
Tails OS Installation And Review - Access The Deep Web/Dark Net
HackerSploit
Steganography Tutorial - Hide Messages In Images
HackerSploit
The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
HackerSploit
Best Linux Distributions For Penetration Testing
HackerSploit
Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
HackerSploit
Gaining Access - Web Server Hacking - Metasploitable - #1
HackerSploit
Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
HackerSploit
How To Install Kali Linux On VMware - Complete Guide 2018
HackerSploit
Q&A #1 - Best Cyber-security Certifications?
HackerSploit
Terminator - Kali Linux - Multiple Terminals
HackerSploit
Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
HackerSploit
Q&A #2 - Mr Robot?
HackerSploit
Metasploit Community Web GUI - Installation And Overview
HackerSploit
Linux Expl0rer - Forensics Toolbox - Installation & Configuration
HackerSploit
QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
HackerSploit
Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
HackerSploit
Metasploit For Beginners - #2 - Understanding Metasploit Modules
HackerSploit
Kali Linux Quick Tips - #1 - Adding a non-root user
HackerSploit
Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
HackerSploit
Spectre Meltdown Vulnerability - How To Check Your System
HackerSploit
Metasploit For Beginners - #4 - Basic Exploitation
HackerSploit
ARP Spoofing With arpspoof - MITM
HackerSploit
WordPress Vulnerability Scanning With WPScan
HackerSploit
Generating A PHP Backdoor with weevely
HackerSploit
Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
HackerSploit
How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
HackerSploit
Stacer - System Optimizer And Monitoring Tool For Linux
HackerSploit
Kali Linux 2018.1 - Kernel Updates & Patches
HackerSploit
MITM With Ettercap - ARP Poisoning
HackerSploit
Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
HackerSploit
How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
HackerSploit
Channel Updates - How To Post Questions & Video Suggestions
HackerSploit
Web App Penetration Testing - #1 - Setting Up Burp Suite
HackerSploit
Web App Penetration Testing - #2 - Spidering & DVWA
HackerSploit
Cl0neMast3r - GitHub Repository Cloning Tool
HackerSploit
Kali Linux On Windows 10 Official - WSL - Installation & Configuration
HackerSploit
DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
HackerSploit
Web App Penetration Testing - #3 - Brute Force With Burp Suite
HackerSploit
More on: Security Basics
View skill →Related Reads
📰
📰
📰
📰
Essential Cybersecurity Guide for Small Business Owners
Medium · Cybersecurity
Cloud-Based Cybersecurity Solutions: Benefits, Features, and Best Practices
Medium · Cybersecurity
Understanding RELRO and the Global Offset Table (GOT): A Hands-On Linux Deep Dive
Medium · Programming
Understanding RELRO and the Global Offset Table (GOT): A Hands-On Linux Deep Dive
Medium · Cybersecurity
🎓
Tutor Explanation
DeepCamp AI