Nmap App

Nmap is a powerful utility for network discovery and security auditing. You can scan networks, send packets, analyze responses, and run scripts to assess network security and diagnose vulnerabilities. Nmap tests can run against single hosts or large-scale networks. Nmap tests can also run in combination with the Autotest and Discovery applications.

Nmap Topics

This chapter describes Nmap tests, shows how to create tests, details test settings, shows how to run tests with the Nmap Runner, and gives examples of Nmap output.

Introduction to Nmap

Nmap uses raw IP packets to determine:

What hosts are available on a network
What services (application name and version) the hosts offer
What operating systems (and versions) are running
The type of packet filters or firewalls in use

The Nmap app supports Nmap scripts to help you enhance Nmap functionality. These scripts include:

Predefined Nmap scripts
User scripts that you create
Custom discovery scripts to be used with the Discovery app

Nmap can be used for:

Auditing device or firewall security by finding what network connections can be made
Identifying open ports on hosts to prepare for auditing
Network inventory, network mapping, maintenance and asset management
Security auditing by identifying new servers on a network
Sending network traffic to network hosts and then analyzing responses and response time
Finding vulnerabilities in a network
Sending DNS queries and searching subdomains
Managing service upgrade schedules
Monitoring host or service uptime

For additional information, see:

Nmap.org for detailed information on Nmap
NetAlly's Cyber Security Blog for information on building custom scripts, using the CS Air scripting engine, vulnerability assessments, cyber security assessments, and vulnerability scanning.