Results 1 to 6 of 6

Thread: nmap list scan

  1. #1
    Join Date
    2013-Dec
    Posts
    5

    nmap list scan

    Hello everyone, sorry to post this here but I couldn't find any nmap-only forums.

    I need to scan an entire internal network for hostnames, no need to know if they're up, after some research I found that nmap list scan (sL) that only does a reverse DNS lookup would be the "softest" aproach, rather than just ping shooting everything. My question is how stealthy is in fact this type of scan? It does send packets, so would this kind of traffic raise some IDS flags up coming from a single machine, or because it's not even a "scan" per se no one bats an eye?

    Cheers
    Last edited by gnorr4; 2015-01-08 at 19:36.

  2. #2
    Join Date
    2013-Mar
    Location
    http://rastamouse.me
    Posts
    86
    I think that would very much depend on how your IDS is configured. I'd suggest running the scan in a lab with wireshark and analyse the packets which are sent/received. Then you can make a judgement on how that may effect your IDS.
    OSCP
    --
    If it smells like a duck, walks like a duck and quacks like a duck; then it probably is a duck.

  3. #3
    Join Date
    2013-Dec
    Posts
    5
    Great idea, thank you, nothing better than to see it with my own eyes.

  4. #4
    Join Date
    2015-Feb
    Posts
    1
    nmap -sP 10.10.10.1/24 will scan from 10.10.10.1 to 10.10.10.255 but i want to scan the network from 10.10.1.1 to 10.10.255.255
    what is the command for that

  5. #5
    Join Date
    2013-Mar
    Posts
    10
    in cidr it's nmap -sn 10.10.0.0/16 but you can also use ranges like 10.10.0-255.0-255

    about the first post, -sL option sends reverse DNS requests for the ip's in list and then simply lists your targets, no other packets are sent, if you also specify -n flag then it won't send any packet. just keep in mind there's no scan at all when using this option it just lists your targets.
    Last edited by jnpa; 2015-02-12 at 20:12.

  6. #6
    regarding NMAP i have a query
    how to scan a windows machine who's printing and sharing is not enable
    plz reply with syntax.... thanks in advance

Similar Threads

  1. Create dictionary list from existing list with Crunch
    By jessekraal44 in forum General Archive
    Replies: 11
    Last Post: 2018-05-12, 08:29
  2. Nmap
    By san1spm in forum General Archive
    Replies: 4
    Last Post: 2013-06-20, 02:59

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •