Nmap Tutorial For Beginners - 1 - What is Nmap?

hey guys hack exploit here back again with another video and welcome to end map for beginners so this is going to be a continuation in the ethical hacking course now what is nmap well basically nmap is a footprinting tool or a reconnaissance tool now uh I had already explained this in the first class the first ethical hacking class uh this is basically the first step of uh hacking where you actually find information about the Target or the IP or the website so basically nmap is a footprint tool that gets more information about the um the Target or the IP or the website for that matter in my opinion I think in map is a must have for any pent testers or ethical hackers or hackers for that matter so uh basically uh n map uh is available on almost all the platforms all you have to do is just go to the website um just going to open nmap here uh it's nm.org that's their website it's a free free software so you can go and download it uh as you can see here it's there available for Linux uh windows and I believe Mac OS so if you're actually on map uh if you're actually on Mac I believe it's there so uh you can actually install it on uh Linux and windows because are the most popular operating systems however if you're using Cali Linux or parat Os like I am it already comes pre-installed so there are two ways you can go about launching it on Windows I think you just have to run the nmap command in the command prompt uh same as with Linux but if you're actually running a um a penetration uh testing disc like par or Linux uh or Cali Linux uh it's just in the information gathering section which is basically Recon recognisance so we have n map right here and all you have to do is open n map and it's going to ask you for your root password because it's going to need elevated uh privileges so that's one way of uh of starting end map now the second way of starting end map is just by opening a terminal uh entering your root password uh or launching it in administrator mode uh on Windows and you just want to enter your password and then I'm just going to clear the console uh like so and I'm just going to enter nmap and I'm going to enter the help um help option which will basically give me all the options available with nmap now it's going to look a bit overwhelming because it's going to give you a lot of lot of options you can just look at this as a manual basically they're giving you the different options that you can use for your different uh methods of scanning so just don't worry about anything just scroll down all the way to the bottom and look at where it says examples I'm going to use these examples to guide you um to guide you in your uh uh in this tutorial so uh firstly uh I want to just say something n map is a very very very noisy scanner now the reason what I mean by this is nmap is easily detectable by firewalls and uh by servers so they actually know that you're scanning them so the real charm of using nmap is not just scanning a a server or a site or an IP address for that matter it's how to do it anonymously or uh very quietly so that you're not detected I'm going to get to that uh very very soon so uh just make sure that you don't do anything illegal uh I mean this is only for educational purposes so uh yeah so let's get to the next part all right now uh as I was saying in the example section uh it's just going to give you an example of what a um a basic n map uh run would look like you have your nmap command which initializes in map and then you have your uh parameters that will bring results uh depending on what you want out of those results so you have your V and a now before we get to that n map basically gives you a free testing um uh scanning machine where they allow you to scan their this scan me. nm.org this web address uh for educational purposes so as you can see here hello welcome to scan me.n map.org don't worry the website will be in the description section if you're too lazy to type that out uh so as you can see we set up this machine to help folks learn about nmap and also to test and make sure that the nmap installation or internet connection is working properly you're authorized to scan this machine with n map or the port scanners try not to hammer uh on the server too hard a few scans in a day is fine but do not scan 100 times a day or use this site to test your SSH Brute Force password cracking tool so basically they they allowing you they're giving you permission to scan this which is what I was going to say you need written permission to scan any IP address any uh any website or any server for uh whatever you do uh it's on new that's what I wanted to just put out so we're going to use this as an example during uh the the end map tutorials so coming back here as you can see they've given you example scan with the scan me. nm.org uh address so what does V mean well V basically prints the version number or the name of the uh of these of the server uh uh basically the address name all right now uh the a basically prints the uh OSD detection the version detection and script scanning so it'll basically give you the operating system version the operating system itself and this it will scan for scripts all right now if we go down to the second one we have a bit of a different uh command here just ignore the SN for now I will get to that in a future tutorial uh now we as you can see here there's something a bit confusing we have a very weird looking IP uh configuration well this is not really unusual in fact in fact what this means is this is a range of IP addresses now don't be confused by this what this means uh is basically you can pass a range of I IP addresses like from this IP address to this IP address you want nmap to scan that they could be belonging to an organization so you can basically do a very powerful end map scan on like multiple IP addresses now uh before we move on I just want to show you an example of what I mean so what you want to do is open a browser and I just want you to search for this all right I want you to search for major IP block right that's the one I want you to search for major IP block with with whichever uh search engine and it's going to open the major IP address blocks just click on that by near soft now what this means is basically these are the IP ranges in every country all around the world so these are all the IP addresses registered to people or to companies so you can choose from whatever country that you want to scan from uh really anything it's up to you right so we can just try France uh let's just try France for example and it'll give you all the IPS and their ranges so as you can see from this IP to this IP belongs to Orange uh sa and it has the assigned date and the total amount of IP addresses now this comes to the very important part I wanted to explain about reconnaissance here uh if you have an IP address you can really do a lot with it and you can actually find a lot of information related to that IP address which is what I'm going to show you right now so I'm just going to pick a random IP address uh let's try um let's try this one here all right I'm just going to copy it know it's not allowing me to copy it there we are copying and I'm just going to search uh for this is a very important command this will basically give us the info about what who this IP belongs to who is all right so we're going to say who is and we're going to paste that there and we're going to enter and it's going to open in a search engine who the IP address belongs to so we're we're just going to open the first uh site that we get here so just open it and it shouldn't take too long and it's going to give you the um it's going to give you all the information about it so it's going to tell you uh the country I saw the time zone Europe Paris so you know it's in Paris it also has the longitude and latitude um coordinates so you can actually get the uh location uh however with the with the IP range addresses what they do the uh the basically the providers the internet providers is they basically assign it to a location and no more they don't have like a specific address so uh usually the location is about 90% accurate I will get to GE location in the future that's that's a bit of an advanced tutorial uh but basically you can get information about an IP using the who is uh um the command which brings me to the second part of what I wanted to say about the who is and IP addresses the search engines are your best best best friend when it comes to uh looking when it comes to reconnaissance or footprinting you can really really use them to Advantage and as you can see it's given me the range here on this website and it will give you the location and the longitude and latitude and geolocation and so on and so forth so you get the idea don't worry the websites that have used here will be linked in the description all right so let's just head over back to end map all right um one more command I wanted to show you that's really not linked to nmap but is also important for uh scanning or reconnaissance is the NS Lookup All right so NS lookup is available on Windows you don't need to install it it's just part of the operating system as it is on Linux uh you hit NS lookup and then you enter the um the target it can be an IP address or a web uh or website so I'm going to copy this site the scan me site because again I want to keep this as legal as possible and I'm just going to hit enter all right and it's going to give me the address so as you can see this allows you to actually get the address of the website and you can do it in vice versa so if I if I uh copy this all right and I said here NS look up and I pasted the uh the address there hopefully it will give me the name of the site all right and as you can see here the name is can me.n map.org all right pretty awesome right now um if I just want to give you a quick tip with NS lookup uh let's say you're running a lot of uh scans and you want to save them to a document or a to a file so what I'm going to do is I'm going to I want to save them on the desktop right so I'm going to hit NS lookup and uh we're going to let's say we want to find the name of the of this uh IP address we want to find what who it's registered to and then what you want to do is um you just want to use the two greater than signs and you want to give a name to a document that you want to save it to in this case I'm going to use a txt document and I'm going to save it on my desktop because that's where I opened the terminal from although you could change it to whatever uh directory you're in so I'm going to say results.txt and I'm going to hit enter and it's going to open uh results.txt as you can see over here and if I open it it'll give me the scan results pretty awesome and you can keep on saving them in here and it's just going to do it for you automatically so uh this is uh basically what I wanted to explain to you for the first tutorial uh there's a lot I've said in this tutorial and I just just wanted all of that to sync in in the next tutorial I'm going to go through the advanced end map commands but uh that's basically what I wanted to tell you uh today um basically what we've gone through in to summarize is we've gone through what n map is um the N map help commands what the N map um the N map uh what what are they call the parameters mean uh when I was talking about these parameters right here the V and the A and there's a lot of them here which I'll go get uh to in a in another video uh right after this one I just want you guys to practice what I've shown you in this video and just practice a bit of reconnaissance and uh yeah you'll get it you'll find it really really interesting to see how much information you can dig up from a lot of thing a lot of these servers and IP addresses so that's been it guys I hope this video helped you and you enjoyed it uh if you if it did help you please leave a like if it didn't help you you can dislike the video and let me know why in the comment section alternatively if you have any question hit me up in the comment section social media and or kick uh I'm always there and I'm ready to help you guys otherwise uh we're going to continue uh the advanced stuff in the next video thanks for watching so much and have a fantastic day peace