Nmap Security Scanner
Nmap ("Network Mapper") is a utility for network exploration, administration, and security auditing. It uses IP packets in novel ways to determine which hosts are available online (host discovery), which TCP/UDP ports are open (port scanning), and what applications and services are listening on each port (version detection). It can also identify remote host OS and device types via TCP/IP fingerprinting. Nmap offers flexible target and port specifications, decoy/stealth scanning for firewall and IDS evasion, and highly optimized timing algorithms for fast scanning.
| Tags | Security Networking Firewalls |
|---|---|
| Licenses | GPL |
| Operating Systems | Mac OS X Windows POSIX |
| Implementation | C |
Recent releases
- 13 Dec 2007 04:46
Changes: 320 important changes were made, including the Zenmap cross-platform GUI, a 2nd generation OS detection system, the Nmap Scripting Engine, a rewritten host discovery system, performance optimizations, advanced traceroute functionality, TCP and IP options support, and nearly 1500 new version detection signatures. It is recommended that all current users upgrade.
- 08 Dec 2006 04:08
Changes: This stable release incorporates many improvements from 13 development releases over the last 6 months. These include a second generation OS detection system that is faster and more accurate, support for IP options (source routing, record route, etc.), an --open option for showing only open ports, version detection database updates, more detailed XML output, and dozens of bugfixes.
- 28 Jun 2006 14:01
Changes: This release includes dozens of more detailed SSH version detection signatures. It also detects the Nessus daemon. Several bugs were fixed, including Solaris and HP-UX compilation problems.
- 13 Jun 2006 04:02
Changes: This release is a grab bag of new features and bugfixes. 300 signatures were added to the version detection database, bringing the total up to 3,441 (representing 401 protocols). Output was streamlined to allow multiple ignored port states so your console isn't flooded when a host has thousands of ports in both the filtered and closed states. ICMP rate limiting detection was optimized for faster scanning. There were also dozens of other bugfixes and minor feature additions.
- 23 Apr 2006 18:05
No changes have been submitted for this release.
- All comments
Recent commentsRe: multi-threaded scanning suggestion
Did I mention I found hummingbird? It does what I'm after. Take a look at it.
Thanks again :)
good software
very useful tool. Thanks for making this free.
multi-threaded scanning suggestion
At one time there was a nice little utility that scanned with two
threads. (and was very fast!) one thread would transmit, and
the other would log open ports as soon as they were
received. It used a touch of crypto to ensure it wasn't
receiving spoofs. scanning from two machines (or more)
would be a neat trick as well, as all the traffic initiators could
scan in behalf of the listener, and the listiner would log any
ports that were open matching the crypto signature.
Due to port speed scanning limitations and throttoling
requirments, you can scan one port on multiple hosts until
you've exausted all hosts, then scan for another port. This
lessens the need for throttoling.
I'd say mention my name somewhere, but I'm sure nmap has
a zillion contruibitors by now.
Re: The coolest tool for Linux!
Thanks, I am glad you find Nmap useful! I agree that an explicit field for command-line arguments would be valuable. But for now, sticking them in the "Target(s)" field works fine. Newer versions of NmapFE also support a larger selection of Nmap arguments, making this less-often necessary. And of course you can always use the standard command-line version of Nmap for custom commands.
-Fyodor
The coolest tool for Linux!
I like it very much, haven't found nothing better since now!!
A suggestion: please add a command line textbox in the GUI version,
because many options are not accessible through nmapfe.
Thanks a lot, you're the best!! :-)