help withnmap

Unlockitall · Post by **Unlockitall** » 15 Apr 2007, 12:05

i just got a copy of nmap yesterday, but Im not entirely sure how to use it. i read the beginning part of the tutorial thing on http://insecure.org/nmap/man/man-port-s ... ation.html but i still cant manage to figure out how to scan anything

ebrizzlez · Post by **ebrizzlez** » 15 Apr 2007, 13:07

scanning is simple. first change the diectionary to where nmap is located with the

Code: Select all

cd \\

commands. If you downloaded the winzip file and unzipped it and extracted the files onto your desktop then it should look somthing like this.

Code: Select all

cd C:\Documents and Settings\Owner\Desktop\Nmap-4.20

then you just type into the command promt after you use the cd commands.

Code: Select all

nmap -sS 127.0.0.1 -P0

theres nothing really to it, there are more commands for nmap, and very useful one, but those are the basics.

to make it easy, you just run the command prompt which means you go to Run and type in cmd, then use the cd commands and switch the diectionary to the nmap folder, then start scanning with the nmap scan commands. you might have to use google for more detailed info about the nmap scans.

Post by **CommonStray** » 15 Apr 2007, 13:16

you can goto the cmd switch to the nmap directory and type nmap help and you will get a help listing

ebrizzlez · Post by **ebrizzlez** » 15 Apr 2007, 13:18

oh, yea, and you can do that too.

lol. or vist the nmap site for more details, http://insecure.org/.

Good luck.

Unlockitall · Post by **Unlockitall** » 15 Apr 2007, 13:53

do u need to know the IP address to scan something, i thought u could use a websites name to do the scan

ebrizzlez · Post by **ebrizzlez** » 15 Apr 2007, 13:57

well.... of course you need an IP to scan!

lol. you can get an IP simply, by social engineering, and you can go to your command prompt and type in

Code: Select all

netstat -n

to get a list of IPs. and there is some sites such as http://nmap-online.com/ that can scan yourself or even other targets, but you would need an IP to scan. thats for sure, I believe i have an article posted on the forum that is like a tutorail on how to get an IP. maybe i would make a tutorial on it, and send you the link if i do so.

Unlockitall · Post by **Unlockitall** » 15 Apr 2007, 14:11

whats ur IP address, im just kidding, but how can i find the IP using netstat?

ebrizzlez · Post by **ebrizzlez** » 15 Apr 2007, 14:14

netstat gives u a list of all IPs your network is connected too, so if your IMing a user, then you can obtain there IP. it is recommend you use aim and hold a transfer session and use the netstat command to get there real IP towards there network, or you can set a PHP script to obtain IPs as well, then mail them to yourself, but that is a bit tricky.

Unlockitall · Post by **Unlockitall** » 15 Apr 2007, 14:21

do u know if x fire can be used to get IP s also? i did it without a messenger, just now and got
(data removed)
im kinda tempeted to see if i could mess with my cousin, but i wouldnt know what to do once i found an open port

ebrizzlez · Post by **ebrizzlez** » 15 Apr 2007, 14:27

are you talking bout the X-Fire IM client? if so, then i would think so, anything that connects to a remote computer would work. and u should edit that post you made, it has some information... quite intersting...

and if you find a open port, it would be simple.... EXPLOIT IT! use a framework such as Metasploit or SecurityForest to do so. and make sure you type in netstat -n to get good IPs.

and disable any firewalls that might mess up your scanning.

and you sound like you want to malicously do somthing to your cousin.. intersting......

check out http://www.library.2ya.com/ for more kool tools.

Unlockitall · Post by **Unlockitall** » 15 Apr 2007, 14:32

its not really giving me an IP though, i get alotta confusing stuff...

ebrizzlez · Post by **ebrizzlez** » 15 Apr 2007, 14:35

lol. i know what you mean, the first time i did it , it was quite confusing , just make sure your typing:

Code: Select all

netstat -n

then look at the foreigh addresses. THOSE ARE YOUR TARGETS!

the local would be yourself, and the proto is which protocol the IP is on. and the state would be what kind of condtions the network is under.

Unlockitall · Post by **Unlockitall** » 15 Apr 2007, 14:39

oops, i was using the a switch, i still dont know whats his and whats me

ebrizzlez · Post by **ebrizzlez** » 15 Apr 2007, 14:43

well.. now you have to read on networking. Because you have to determine which IP is his. You can do this by closing all internet applications and using netstat -n, then look for the one that looks like his, or you can tell him to go on a site such as http://www.whatsmyip.com or http://www.nmap-online.com and give him a lame acuse on how you got a websever and its getting a bunch of IPs so you need to match check his and you need him to go onto a website and give him the info and his IP listed on the stie. that seems to always work.

Unlockitall · Post by **Unlockitall** » 15 Apr 2007, 16:56

when ever i find an ip for something, it is like 123.45.67 :89, but when i try to nmap this, im told told i need to use a 6 switch, but when i do, it doesnt let me because i have the windows version(dont laugh, my pc with linux, i cant get online)

WTF!!!!!!!!!!