Zenmap Tutorial For Beginners

Key Takeaways

Hey guys, Hackloit here back again with another video and today I'm going to be talking about Zen Map. So you might be asking yourself, what is Zen Map and why am I doing this video? Well, a lot of people have asked me uh I've seen N MAPAP and I've also seen something else called Zen Map. Well, basically Zen Map was created by the N MAPAP team. So it's actually a um it's a version it's actually created by the end mapap team and basically what it is is it provides a graphical user interface representation of end mapap so let me actually show you that right now um it's going to be under information gathering just um where way where way where way where way where way where way where waywhere way where way where way where way where where you'll find nap right so as you can see I'll find n map and all the way at the bottom because it's arranged alphabetically you're going to find zen map so uh just grant it administrator privileges and um it's going to start it. Now, as I me as I said, this is basically just giving uh users an additional way of using end map. So, if you don't like the command the command line interface and and you really don't like how the information is displayed, you can actually use this. And as you can see, they've really made uh they've really made it user friendly and it's very easy to understand. So, let's go over the interface. Uh so over here you have your target. Now this is basically your your IP range or IP address uh your domain or website whatever you want to target you and you you can just enter it right here. You then have your profile which is basically uh a group of commands that are categorized into options as you can see here. And intense scan is also an aggressive scan. So, and down here you have your commands which you can actually enter your own personal commands and you can personalize what uh scan results you want to get and see. So, let's actually try um with an example. So, I'm going to use the our popular scanme.nmap.org. It actually fills it out for me. And I'm going to stick with the intent scan. As you can see, there are others here that you can use. You have your quick scan, your ping scan, your trace route, and a comprehensive scan, which is a bit longer. So, I'm going to give a use the intense scan. And in the commands, it's going to give me um what it's going to look like if I run it in the terminal or or the command line interface. Uh so, we have n map which is initializing and then we have t4, we have a, we have v and we have the domain that we're actually using. So I I haven't talked to you about what T4 is. All right. So basically what T4 is, it's not really a very important thing to to learn with N map. What T4 is, if I open a terminal and I um open N map and I run the her command and I go into timing and performance, you will find a T option here or command that goes 0 to 5. That's the range it goes to. And this basically set timing template. Higher is faster. This will basically increase the speed of the scan. But it really doesn't make a difference uh if you're going to use your custom um you're going to use custom commands that are filtering out the results to match whatever you want to find. So you this is really not a must to have. Uh but it just increases the speed a bit more and it gives uh it actually turns your it uh uses more uh resources from your computer. not really internet but a bit more processing power. So uh we have n mapap a. We know what a is. This is an aggressive uh option which is basically getting the OS version uh OS uh the OS name the OS version subscripts and performs a trace route. And then we have V which is verbose and just gives information about the scan and the target. And we have the domain. So all you have to do is hit scan. All right. And it's going to start scanning and it's going to give you an output. Uh, all right. So, it looks like it's actually finished scanning. I don't see any any I don't think it's actually stopped. Uh, what we're going to do is I'm just going to I'm just going to perform a quick scan. Hopefully, that's going to use the f command. Let's actually run that. And um um one moment, let me open the terminal and let me actually just check something here. Oops. Oh, actually I'm running it on num lock. Excuse me. Um. All right. So, for some reason it's going to give no IP addresses open. So, what I'm going to do is I'm going to use my subnet mask to 168 um 1.0255. I'm just going to perform a quick one and um and let's see what we get. Right. All right. It's going to start the end map. So, we actually know it's working right now. I'm pretty sure the end map team have blocked me from using their services because uh the the IP is basically shown as offline cuz I over the the last couple of days I've scanned that uh scanme.nenmap.org a lot of times and uh most probably they've actually just blocked me. So, uh, we won't really worry about that. In fact, I just I think I went a bit overboard. So, it's finished the scan and it's going to give you 256 IP addresses, three hosts up, scanned in 6.17 seconds. So, these are the IPs that are currently active on my network. These are local IPs. So, for anyone in the comment section who likes saying that this is my IP address, um, please go through networking again because this is a local IP address. This these are the addresses that are given to devices on my home network. These are not IP addresses belonging to the device. Just wanted to clarify that because a lot of people hit me up in the comments saying that I released my IP uh when I've not uh you know so that this is actually just a local IP and it's given me the uh the services that are running. We have FTP HTT being the most popular, but we have SSH also running on I think my Windows machine on my network right now. So, yeah, that's pretty cool. Um, I'm going to show you some ports here. Uh, this is just going to give you the ports, whatever ports are open. You have the Cisco. That's probably my router because my router is Cisco. I'm not going to go into topology because that will actually have my IP details. So, I'm going to just skip that uh just for my um protection. And I'm going to skip the other two because that also has some of my real IP address information. But you get the idea. This is basically just end mapap in a much more beautiful and convenient way. So, you can actually just you know you you can you can really just check out the command whatever the commands you've given the host scanned it just arranges it in a much more convenient manner you know. So if you really like to have things in a graphical user interface representation, go ahead and try it. It's uh the the commands are the same as end map and it's just the same thing just in a command line interface. I mean in a user graphical user interface. Otherwise uh guys thank you for watching this video. If it helped you, leave a like. If you didn't like the video, leave a dislike and let me know in the comment section. In addition, if you have any questions, anything really you want to ask me, hit me up on my social networks. Um, you can hit me up on my kick and you can hit me up in the comment section as well. Otherwise, guys, thank you for watching and have a fantastic day. Peace.