Skip to content

Footprinting & Scanning

Mapping a Network

Tools

  • wireshark
  • arp-scan
    arp-scan
    sudo arp-scan -I eth0 -g 192.168.1.0/24
    
  • ping
  • fping
    fping
    # 2>/dev/null - sends erros to null file
    fping -I eth0 -g 192.168.1.0/24 -a 2>/dev/null
    
  • nmap
    nmap
    nmap -sn 192.168.1.0/24
    
  • zenmap

Wireshark
arp-scan

Port Scanning

nmap
# ips is a txt with ip from network to scan
nmap -iL ips -sV -O -sC
  • zenmap - gui nmap
  • nmap automator
  • masscan
  • rustscan
  • autorecon

NMAP Host Discovery

script
1
2
3
4
ping 10.4.28.137
arp-scan -g 10.4.28.137
nmap -Pn 10.4.28.137
nmap -Pn 10.4.28.137 -p 80,135,139,445,3389,49154,49155 -sV -O