fbpx
4.9 out of 5
4.9
28 reviews on Udemy

Mastering Nmap

A step-by-step tutorial to gain expertise in Nmap
Instructor:
Packt Publishing
283 students enrolled
English [Auto-generated]
Learn network security concepts that are required to properly comprehend and grasp how all Nmap utilities work the way they do.
Handle large numbers of results from scanning large networks.
IT administrators can effectively monitor their network for critical changes that might lead to potential vulnerabilities, by comparing the results from everyday scans.
Master the Nmap Scripting Engine (NSE) by writing new (and customizing existing) Lua scripts that further extend Nmap's capabilities.
Utilize the Nmap suite's accompanying tools to refine and effectively automate your everyday network tasks, including debugging, visualizing, monitoring, and network auditing.
Conduct host discovery, port scanning, and version and OS detection for every system in your network.

You will learn how to use Nmap to implement a wide variety of practical tasks related to pentesting and network monitoring. The tutorial will start with basic scanning techniques and explain Nmap fundamentals. Moving on, we will cover the advanced functionalities of the Nmap Scripting Engine (NSE) such as libraries, scripts, APIs, and so on. You will be able to perform custom tasks, learn the fundamentals of Lua programming, scan and assess mail servers and databases, Windows machines and their associated services as well as large networks.

About the Instructor

Fotis Chantzis has been a member of the main Nmap development team since 2009, when he wrote Ncrack under the mentorship of Fyodor, the original author of Nmap, during Google Summer of Code 2009 and 2010. He also represented Nmap at the Google Mentor Summit in October 2016. He is passionate about network security and is actively and professionally involved in the information security field, with his research having been published on Phrack and other venues.

Scanning Your First Target

1
The Course Overview
This video provides an overview of the entire course.
2
Nmap Primer

The aim of the video is to let the viewer get acquainted with Nmap and show them its basic functionality and capabilities.

3
Network Security Fundamentals

The aim of this video is to introduce some fundamental network security concepts that are needed to get a basic understanding of how Nmap works.

4
Service Version Detection

The aim of this video is to learn how to use Nmap’s Service Version Detection, why it is important and how it works behind the scenes.

5
Operating System Detection
The aim of the video is to get acquainted with Nmap’s remote Operating System detection capability.

Scanning Larger Networks

1
Host Discovery

The aim of this video is to learn how to conduct host discovery with Nmap. We are also going to learn how it works and the differences between local and remote network host discovery.

2
Adjusting Timing Parameters

The aim of this video is to learn how to fine-tune Nmap’s timing and performance parameters.

3
Optimizing Nmap Performance
The aim of this video is to learn how to optimize Nmap’s performance to reduce scan time by fine-tuning its options.
4
Large Scale Scans

The aim of this video is to learn how to refine Nmap scans for larger networks.

Scanning and Auditing Web Servers

1
Checking for Misconfigurations

The aim of this video is to learn how to check for web server misconfigurations using Nmap.

2
Interesting Points of Entry
The aim of this video is to learn how to find interesting points of entry for web servers.
3
Exploiting Web Applications
The aim of this video is to learn how to find and exploit vulnerabilities on web applications with the help of Nmap.

Assessing Common Services

1
Assessing Databases

The aim of this video is to learn how to assess databases with Nmap by focusing on MySQL, one of the most popular database services.

2
Assessing Mail Servers

The aim of this video is to learn how to use Nmap to assess Mail Servers.

3
Assessing Other Services
The aim of this video is to learn how to assess other services, with a focus on SSL-related vulnerabilities using NSE scripts.

Advanced NSE Usage

1
Discovering SMB Shares
The aim of this video is to learn how to use Nmap to discover and analyze SMB shares.
2
Exploiting SMB Services

The aim of this video is to learn how to exploit SMB services by more advanced NSE scripts.

3
Analyzing NSE Execution

We will learn about Nmap's scanning phases and the how and when different scripts get executed.

Analyzing and Refining NSE Scripts

1
Analyzing Your First NSE Script

The aim of this video is to analyze the NSE script format and also analyze the source code of a simple NSE script, while explaining any Lua concepts along the way.

2
Adjusting NSE Scripts

The aim of this video is to learn how to make small adjustments to NSE scripts and also add debugging output.

3
Customizing NSE Scripts

The aim of this video is to learn how to customize NSE scripts by adding new functionality to them. The example script will be the smb-system-info.

Mapping and Owning the Network

1
Remote Enumeration and Exploitation

We learn how use Nmap and its accompanying tools (Nping, Ncat, Ncrack) in real-world scenarios.

2
Privilege Escalation and RDP Cracking

The aim of this video is to demonstrate exploiting misconfigurations to escalate privileges and to show how to perform RDP cracking with Ncrack.

3
Final Exploitation and Outro

This video demonstrates the final exploitation for the remaining host of the network and recaps what we learnt throughout the course.

You can view and review the lecture materials indefinitely, like an on-demand channel.
Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don`t have an internet connection, some instructors also let their students download course lectures. That`s up to the instructor though, so make sure you get on their good side!
4.9
4.9 out of 5
28 Ratings

Detailed Rating

Stars 5
20
Stars 4
7
Stars 3
1
Stars 2
0
Stars 1
0