What does the network scanning mean? Network scanning refers to do with a computer networkto collect all information about computing systems. It is basically used forsecurity assessment and system maintenance. Hacker also uses it for attacks. Vulnerabilityscanning is one of the network scanning. It works for identifiesvulnerabilities of a computer system. It also can detect weak port and launchexploit.
Now I want to introduce a port scanning tool about Network Mapped(Nmap). It’ free of charge to use and open source utility. Nmap can run on manyplatforms, it runs on all operating system (OS), such as Window, Solaris, IRX,etc.Now I would list some features andfunction about Nmap. One of the features is host discovery, it can attempt to identifythe live host on the network.
Even the ruleset of the firewall is setdefinitely, it also can identify the number of hosts. It can be used to scan the large network in a single run withefficiency. It also can detect the version and operating system of thetarget.Mostof the security tools have advantage and disadvantage. Nmap has a lot ofadvantage, one of the advantages is that send a well-crafted packet to thedestination. Nmap also can scan the network for various vulnerabilities. It ableto create a visual network of machine with Zenmap GUI.
Thedisadvantage of Nmap is port-scanning has some flaws. It could make a DOS ornetwork slowdown while is scanning weaker devices even though can be remediedby slowing down the scan speed. Now I’d show some usage of Nmap. I’d use Nmap to pingscan the network, listing machines that respond to ping with this command “nmap–sP Ip range”. I can open a Nmap front end calledZenmap with this command “nmapfe”.
It is a GUI made on top of Nmap. The reasonI use Zenmap is that it provides a user-friendly output of Nmap commands andsupports all of the features Nmap does.I also can view all the live host onthe network with this command “nmap –v3 Ip range”. I can scan 2 or more type of scan ina command. Below are OS detection and UDP scanning with this command “nmap –sS–O IP range”.There’s have other toolsfor the network. One of the tools called Nessus, let’s compare it with theNmap.
NMAP and Nessus can both be considered network security scanners, but thereare some differences between them. Firstly which are the ways output ispresented to the user. The data output of Nmap is text-based whether you usethe GUI or command line. Nessus has shown the information with more graphical.
Nessusis more focus on scanning vulnerability whereas NMAP is used for mapping anetwork’s hosts. The major function of Nessus is to provide security scanningcapabilities to its user. It can do network discovery like Nmap, but it is createdto scan systems to identify their vulnerabilities, unlike Nmap. Because of whatNessus can do, it can be applied in security audits, asset profiling, andvulnerability analysis.
Nmap can do all of these, but it would take a lot ofwork. However, if your focus more is making sure any vulnerabilities arediscovered, then Nessus is more suitable. If you are a penetration securityengineer, Nmap may complete the job because of its features and utility.