Using Nmap On Windows
Using Nmap On Windows
By installing Nmap on your Windows based systems you have access to the world's best port
scanner for security testing and troubleshooting of network connectivity. In addition you have
ncat available a full-featured version of netcat a virtual swiss army knife for networks. I am a
big fan of ncat and encourage any system administrator or techie to explore the options.
Zenmap on Windows
Zenmap is an excellent GUI front-end to the Nmap core scanning engine. It has some pretty nifty
features that are not available with the command line version, in particular the network topology
map. This rivals commercial mapping tools that perform a similar function and is a nice feature.
It is also intuitive to browse through results from different hosts using Zenmap, there are options
to save the results in standard Nmap format (.nmap) or as XML (.xml) for further processing.
There does not appear to be the option to save in the standard Grep format (-oG).
Zenmap is available on Windows and Linux distributions, it can be a great introduction for those
less familiar with the command line.
Testing SMB Security with Nmap NSE Scripts
Bundled with Nmap are addon scripts that perform all manner of functionality. Of note to those in
a Windows environment are the 34 smb- scripts that are available. These allow enumeration of
entities on Windows systems remotely using the Microsoft SMB protocol (port 445). Examples
include smb-os-discovery, smb-enum-users and smb-brute.
There are also vulnerability detection scripts, for testing even the most recent high profile
Windows vulnerabilities. Head over to the Nmap NSE scripts page for all the documentation and a
list of the scripts.
Wrapping Up
Having access to both Nmap and ncat when on a Windows system is very convenient and lots of
fun. There is an amazing number of tricks that can be done with ncat, whether you are
troubleshooting, security testing or just need some network-fu during a penetration test.
There are now 600 Nmap NSE scripts. The capabilities these provide is another bonus for having
Nmap installed on your Windows workstation. Using the bundled scripts there are large number
of short cuts and tests that can be conducted that might otherwise be difficult without additional
software installed.
Thanks for reading, we also have a tutorial and cheat sheet for those wanting to discover more
about this excellent tool.
HO ST ED NM AP
PREVIOUS
Tcpdump Examples
RELATED POSTS
ABOUT
From attack surface discovery to vulnerability identification, we host tools to make the job of
securing your systems easier.
CONNE C T
MAI LI NG L I S T
SIGN UP
© 2021 Hacker Target Pty Ltd - ACN 600827263 | Terms of Use & Privacy Policy | Powered by Open
Source Software