Vulnerability Scanning With Nmap

HackerSploit · Intermediate ·🔐 Cybersecurity ·5y ago

Key Takeaways

The video demonstrates how to perform vulnerability scanning with Nmap using the Vulners script, which provides information about vulnerabilities based on service versions and banners. The script is used to enumerate vulnerabilities, including CVEs, severity ratings, and affected vendors.

Full Transcript

[Music] hello everyone welcome to this video in this video we're going to be taking a look at how to perform vulnerability scanning with nmap more specifically how to do this with the vulner's nmap script now this is a script that was previously not uh it was did not come pre-packaged with the default nmap scripts but now it is and the reason i'm currently on the github repository is to just give you an introduction to this particular script right so again the script is called the vern the vulners script and again it is used to enumerate uh you know vulnerability or information about certain vulnerabilities based on the banner or the service versions that you're you actually get during a particular scan so again this is used as a very simple vulnerability scanner in that it gives you the various cves all the vulnerabilities and the actual rating here in terms of the severity so again sorted from 0 to 10 0 being the lowest 10 being the highest so on and so forth which can be very helpful before you actually start using any commercial vulnerability scanning tools this can give you a very good idea of what you're dealing with now as i said this script already comes pre-packaged uh with in any default nmap installation and using it is a fairly simple and all you need to do is you can actually view the usage here ensure that you're performing service version detection and then you want to pass the script vulners and you can then specify the script arguments and specify the minimum cvss so again you can specify uh what minimum rating you want to be displayed so that you have a more concise uh you have more concise results uh that again might be that will display you know vulnerabilities that are higher up on the list in terms of severity as opposed to displaying all of the vulnerabilities so again uh as i said you can find it um we say al let me just display the default nmap scripts directory and again i'll just pipe and grip and i'll say we're looking it is called if we just again take a look at the name here you can see the script name is called vulners so again we just type in vulners um and that will display it there we are it's a wonders.nse so again using it as i said is very very simple uh we'll be targeting the metasploitable 2 vm so again what i'll do is i will just say nmap and we'll make sure to run sudo with this in the event it does prompt us to do that we say nmap sv and um we can be performing a scan probably on let's say port 21 all the way to port 8080 so that's that's a pretty uh you know comprehensive type of scan you know regarding the services we're looking for so script the script is going to be vulners um and we specify the target 192.168.1.217 and i hit enter right and we're going to give this a few seconds or up to a minute based on depending on the amount of ports you're going to be scanning and of course you can increase the speed of the scan which we actually can do but what i'm going to do is i'm just going to let this complete scanning and shortly after we can then take a look at the results if we go back to the github repository you can also see we have the http vulners rejects script which allows you to scan http responses and identify cpes for the mentioned software which can be very very uh important so again that's a script that you want to check out i'll probably be making a video covering this uh again separately because this deals with http primarily all right so you can see we have a ton of results here and we'll start right from the top here so you can see that for every particular port we get the vulnera script running and it gives us the cpe right so it tells us we're dealing with openness age 4.7 p1 and then gives us the various cves uh the rating uh you know the severity here and uh it gives us the a link to the onenote to through the vulners.com cve website where it has a listing of this particular cve and you know it gives you information regarding the disclosure date uh stuff like that so what i'm gonna do is i'll just copy this link and we will open this up within firefox and i'll say paste and go right and um we'll let this load up and this is the official vulneras website so we'll just say um i'm not a robot here mountains or hills uh let's see what can we click that looks like a mountain or hill here there we are submit and this will just display information about this particular cv so again it tells you that the open sh 5.6 and earlier when g jpeg is enabled does not properly validate public parameters etc etc gives us the cvss score here and you know the the uh the actual disclosure date uh the affected vendors um because uh it actually that's very important based on the platform you're using it you're actually exploiting this on um and then of course you have the references uh which you can actually check out right over here so again very very helpful uh we take a look at some of the other results uh you can see we'll avoid dns right now for apache httpd 2.2.8 you can see we have a cve with a rating of severity rating severity rating of 10 and again you can check out more about this but you can see how helpful this is in that it gives you an idea already of what services you you should be targeting uh as you move forward so it sort of gives you the low hanging fruit uh and of course you need to validate this uh with a vulnerability scanner because uh you know relying on a simple script might not be enough or might not be accurate to you know to give you an accurate or to give you a a total uh image or picture of the target and all the vulnerabilities that might be affecting it um so that being said that's pretty much all that i wanted to cover i'll be putting a link to this particular repository in the this in the resources section of this particular video and you'll be able to check it out for yourself as i said it already comes pre-set up with nmap or any default nmap installation so you should be able to use it and yeah that's pretty much all i wanted to cover in this video and i'll be seeing you in the next video [Music] you

Original Description

In this video, I demonstrate how to perform vulnerability scanning with Nmap. Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the responses. Nmap provides a number of features for probing computer networks, including host discovery and service and operating system detection. To learn more about Nmap and how it's used in penetration testing and network mapping, check out our comprehensive course on Nmap for penetration testing: https://www.udemy.com/course/nmap-for-penetration-testing/?couponCode=4E9FF9403325C6ECB3C7 Our videos are also available on the decentralized platform LBRY: https://lbry.tv/$/invite/@HackerSploit:26 SUPPORT US: Patreon: https://www.patreon.com/hackersploit Merchandise: https://teespring.com/en-GB/stores/hackersploitofficial SOCIAL NETWORKS: Twitter: https://twitter.com/HackerSploit Instagram: https://www.instagram.com/hackersploit/ LinkedIn: https://www.linkedin.com/company/18713892 WHERE YOU CAN FIND US ONLINE: HackerSploit - Open Source Cybersecurity Training: https://hackersploit.org/ HackerSploit Forum: https://forum.hackersploit.org HackerSploit Academy: https://www.hackersploit.academy LISTEN TO THE CYBERTALK PODCAST: Spotify: https://open.spotify.com/show/6j0RhRiofxkt39AskIpwP7 We hope you enjoyed the video and found value in the content. We value your feedback. If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms. Thanks for watching! Благодарю за просмотр! Kiitos katsomisesta Danke fürs Zuschauen! 感谢您观看 Merci d'avoir regardé Obrigado por assistir دیکھنے کے لیے شکریہ देखने के लिए धन्यवाद Grazie per la visione Gracias por ver شكرا للمشاهدة #Nmap
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from HackerSploit · HackerSploit · 0 of 60

← Previous Next →
1 How To Install Kali Linux 2.0 On Virtual Box
How To Install Kali Linux 2.0 On Virtual Box
HackerSploit
2 100 Subscriber Q&A! - How I Learned Ethical Hacking
100 Subscriber Q&A! - How I Learned Ethical Hacking
HackerSploit
3 BlackArch Linux Review - Better Than Kali Linux?
BlackArch Linux Review - Better Than Kali Linux?
HackerSploit
4 How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
HackerSploit
5 Wireshark Tutorial for Beginners - Installation
Wireshark Tutorial for Beginners - Installation
HackerSploit
6 Wireshark Tutorial for Beginners - Overview of the environment
Wireshark Tutorial for Beginners - Overview of the environment
HackerSploit
7 Wireshark Tutorial for Beginners - Capture options
Wireshark Tutorial for Beginners - Capture options
HackerSploit
8 Wireshark Tutorial for Beginners - Filters
Wireshark Tutorial for Beginners - Filters
HackerSploit
9 Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
HackerSploit
10 Complete Ethical Hacking Course #2 - Installing Kali Linux
Complete Ethical Hacking Course #2 - Installing Kali Linux
HackerSploit
11 Parrot OS 3.5 Review | The Best Kali Linux Alternative
Parrot OS 3.5 Review | The Best Kali Linux Alternative
HackerSploit
12 Nmap Tutorial For Beginners - 1 - What is Nmap?
Nmap Tutorial For Beginners - 1 - What is Nmap?
HackerSploit
13 Katoolin | How To Install Pentesting Tools On Any Linux Distro
Katoolin | How To Install Pentesting Tools On Any Linux Distro
HackerSploit
14 Nmap Tutorial For Beginners - 2 - Advanced Scanning
Nmap Tutorial For Beginners - 2 - Advanced Scanning
HackerSploit
15 Nmap Tutorial For Beginners - 3 - Aggressive Scanning
Nmap Tutorial For Beginners - 3 - Aggressive Scanning
HackerSploit
16 Zenmap Tutorial For Beginners
Zenmap Tutorial For Beginners
HackerSploit
17 How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
HackerSploit
18 How To Setup Proxychains In Kali Linux - #2 - Change Your IP
How To Setup Proxychains In Kali Linux - #2 - Change Your IP
HackerSploit
19 How To Change Mac Address In Kali Linux | Macchanger
How To Change Mac Address In Kali Linux | Macchanger
HackerSploit
20 How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
HackerSploit
21 Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
HackerSploit
22 VPN And DNS For Beginners | Kali Linux
VPN And DNS For Beginners | Kali Linux
HackerSploit
23 Tails OS Installation And Review - Access The Deep Web/Dark Net
Tails OS Installation And Review - Access The Deep Web/Dark Net
HackerSploit
24 Steganography Tutorial - Hide Messages In Images
Steganography Tutorial - Hide Messages In Images
HackerSploit
25 The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
HackerSploit
26 Best Linux Distributions For Penetration Testing
Best Linux Distributions For Penetration Testing
HackerSploit
27 Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
HackerSploit
28 Gaining Access - Web Server Hacking - Metasploitable - #1
Gaining Access - Web Server Hacking - Metasploitable - #1
HackerSploit
29 Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
HackerSploit
30 How To Install Kali Linux On VMware  - Complete Guide 2018
How To Install Kali Linux On VMware - Complete Guide 2018
HackerSploit
31 Q&A #1 - Best Cyber-security Certifications?
Q&A #1 - Best Cyber-security Certifications?
HackerSploit
32 Terminator - Kali Linux - Multiple Terminals
Terminator - Kali Linux - Multiple Terminals
HackerSploit
33 Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
HackerSploit
34 Q&A #2 - Mr Robot?
Q&A #2 - Mr Robot?
HackerSploit
35 Metasploit Community Web GUI  - Installation And Overview
Metasploit Community Web GUI - Installation And Overview
HackerSploit
36 Linux Expl0rer - Forensics Toolbox - Installation & Configuration
Linux Expl0rer - Forensics Toolbox - Installation & Configuration
HackerSploit
37 QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
HackerSploit
38 Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
HackerSploit
39 Metasploit For Beginners - #2 - Understanding Metasploit Modules
Metasploit For Beginners - #2 - Understanding Metasploit Modules
HackerSploit
40 Kali Linux Quick Tips - #1 - Adding a non-root user
Kali Linux Quick Tips - #1 - Adding a non-root user
HackerSploit
41 Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
HackerSploit
42 Spectre Meltdown Vulnerability  - How To Check Your System
Spectre Meltdown Vulnerability - How To Check Your System
HackerSploit
43 Metasploit For Beginners - #4 - Basic Exploitation
Metasploit For Beginners - #4 - Basic Exploitation
HackerSploit
44 ARP Spoofing With arpspoof - MITM
ARP Spoofing With arpspoof - MITM
HackerSploit
45 WordPress Vulnerability Scanning With WPScan
WordPress Vulnerability Scanning With WPScan
HackerSploit
46 Generating A PHP Backdoor with weevely
Generating A PHP Backdoor with weevely
HackerSploit
47 Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
HackerSploit
48 How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
HackerSploit
49 Stacer - System Optimizer And Monitoring Tool For Linux
Stacer - System Optimizer And Monitoring Tool For Linux
HackerSploit
50 Kali Linux 2018.1 - Kernel Updates & Patches
Kali Linux 2018.1 - Kernel Updates & Patches
HackerSploit
51 MITM With Ettercap - ARP Poisoning
MITM With Ettercap - ARP Poisoning
HackerSploit
52 Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
HackerSploit
53 How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
HackerSploit
54 Channel Updates - How To Post Questions & Video Suggestions
Channel Updates - How To Post Questions & Video Suggestions
HackerSploit
55 Web App Penetration Testing - #1 - Setting Up Burp Suite
Web App Penetration Testing - #1 - Setting Up Burp Suite
HackerSploit
56 Web App Penetration Testing - #2 - Spidering & DVWA
Web App Penetration Testing - #2 - Spidering & DVWA
HackerSploit
57 Cl0neMast3r - GitHub Repository Cloning Tool
Cl0neMast3r - GitHub Repository Cloning Tool
HackerSploit
58 Kali Linux On Windows 10 Official - WSL - Installation & Configuration
Kali Linux On Windows 10 Official - WSL - Installation & Configuration
HackerSploit
59 DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
HackerSploit
60 Web App Penetration Testing - #3 - Brute Force With Burp Suite
Web App Penetration Testing - #3 - Brute Force With Burp Suite
HackerSploit

This video teaches how to use Nmap with the Vulners script to perform vulnerability scanning and identify potential security threats in a network. The script provides valuable information about vulnerabilities, including CVEs and severity ratings.

Key Takeaways
  1. Install Nmap and ensure the Vulners script is available
  2. Run Nmap with the Vulners script to perform a vulnerability scan
  3. Analyze the scan results to identify potential vulnerabilities
  4. Use the CVSS score to prioritize vulnerabilities
  5. Validate the results with a commercial vulnerability scanner
💡 The Vulners script can be used to quickly identify potential vulnerabilities in a network, but the results should be validated with a commercial vulnerability scanner for accuracy.

Related Reads

📰
Essential Cybersecurity Guide for Small Business Owners
Learn essential cybersecurity tips to protect your small business from evolving cyber threats
Medium · Cybersecurity
📰
Cloud-Based Cybersecurity Solutions: Benefits, Features, and Best Practices
Learn how cloud-based cybersecurity solutions can enhance your organization's security posture and what best practices to follow for implementation
Medium · Cybersecurity
📰
Understanding RELRO and the Global Offset Table (GOT): A Hands-On Linux Deep Dive
Learn how Linux dynamically links functions and protects against attacks using RELRO and the Global Offset Table (GOT)
Medium · Programming
📰
Understanding RELRO and the Global Offset Table (GOT): A Hands-On Linux Deep Dive
Learn how Linux dynamically links functions and protects them using RELRO and the Global Offset Table (GOT)
Medium · Cybersecurity
Up next
NordVPN Vs ExpressVPN 2026 | Which VPN Should You Choose?
Tutorial Stack
Watch →