Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

Nmap: Network Exploration and Security Auditing Cookbook: Network discovery and security scanning at your fingertips , Second Edition

Paulino Calderon

$54.99

4.7 (3 Ratings)

Paperback May 2017 416 pages 2nd Edition

Paulino Calderon

$54.99

4.7 (3 Ratings)

Paperback May 2017 416 pages 2nd Edition

What do you get with Print?

Instant access to your digital eBook copy whilst your Print order is Shipped

Paperback book shipped to your preferred address

Download this book in EPUB and PDF formats

Access this title in our online reader with advanced features

DRM FREE - Read whenever, wherever and however you want

View table of contents

Preview Book

Key benefits

•Learn through practical recipes how to use Nmap for a wide range of tasks for system administrators and penetration testers.
•Learn the latest and most useful features of Nmap and the Nmap Scripting Engine.
•Learn to audit the security of networks, web applications, databases, mail servers, Microsoft Windows servers/workstations and even ICS systems.
•Learn to develop your own modules for the Nmap Scripting Engine.
•Become familiar with Lua programming.
•100% practical tasks, relevant and explained step-by-step with exact commands and optional arguments description

Description

This is the second edition of ‘Nmap 6: Network Exploration and Security Auditing Cookbook’. A book aimed for anyone who wants to master Nmap and its scripting engine through practical tasks for system administrators and penetration testers. Besides introducing the most powerful features of Nmap and related tools, common security auditing tasks for local and remote networks, web applications, databases, mail servers, Microsoft Windows machines and even ICS SCADA systems are explained step by step with exact commands and argument explanations. The book starts with the basic usage of Nmap and related tools like Ncat, Ncrack, Ndiff and Zenmap. The Nmap Scripting Engine is thoroughly covered through security checks used commonly in real-life scenarios applied for different types of systems. New chapters for Microsoft Windows and ICS SCADA systems were added and every recipe was revised. This edition reflects the latest updates and hottest additions to the Nmap project to date. The book will also introduce you to Lua programming and NSE script development allowing you to extend further the power of Nmap.

Who is this book for?

The book is for anyone who wants to master Nmap and its scripting engine to perform real life security auditing checks for system administrators and penetration testers. This book is also recommended to anyone looking to learn about network security auditing. Finally, novice Nmap users will also learn a lot from this book as it covers several advanced internal aspects of Nmap and related tools.

What you will learn

•Learn about Nmap and related tools, such as Ncat, Ncrack, Ndiff, Zenmap and the Nmap Scripting Engine
•Master basic and advanced techniques to perform port scanning and host discovery
•Detect insecure configurations and vulnerabilities in web servers, databases, and mail servers
•Learn how to detect insecure Microsoft Windows workstations and scan networks using the Active Directory technology
•Learn how to safely identify and scan critical ICS/SCADA systems
•Learn how to optimize the performance and behavior of your scans
•Learn about advanced reporting
•Learn the fundamentals of Lua programming
•Become familiar with the development libraries shipped with the NSE
•Write your own Nmap Scripting Engine scripts

Estimated delivery fee Deliver to South Korea

Standard delivery 10 - 13 business days

$12.95

Premium delivery 5 - 8 business days

$45.95

(Includes tracking information)

What do you get with Print?

Instant access to your digital eBook copy whilst your Print order is Shipped

Paperback book shipped to your preferred address

Download this book in EPUB and PDF formats

Access this title in our online reader with advanced features

DRM FREE - Read whenever, wherever and however you want

Estimated delivery fee Deliver to South Korea

Standard delivery 10 - 13 business days

$12.95

Premium delivery 5 - 8 business days

$45.95

(Includes tracking information)

Product Details

Publication date : May 26, 2017

Length: 416 pages

Edition : 2nd

Language : English

ISBN-13 : 9781786467454

Category :

Security

Languages :

Lua

Concepts :

Penetration Testing

Tools :

Nmap

Frequently bought together

Kali Linux Network Scanning Cookbook

May 2017 634 pages

5 (2)

eBook

$29.99 ~~$43.99~~

Nmap: Network Exploration and Security Auditing Cookbook

May 2017 416 pages

4.7 (3)

eBook

$29.99 ~~$43.99~~

Applied Network Security

Apr 2017 350 pages

eBook

$27.98 ~~$39.99~~

Total $ 158.97

$54.99

$48.99

Total $ 158.97 Stars icon

17 Chapters

Nmap Fundamentals

Introduction

Building Nmap's source code

Finding live hosts in your network

Listing open ports on a target host

Fingerprinting OS and services running on a target host

Using NSE scripts against a target host

Reading targets from a file

Scanning an IP address ranges

Scanning random targets on the Internet

Collecting signatures of web servers

Monitoring servers remotely with Nmap and Ndiff

Crafting ICMP echo replies with Nping

Managing multiple scanning profiles with Zenmap

Running Lua scripts against a network connection with Ncat

Discovering systems with weak passwords with Ncrack

Launching Nmap scans remotely from a web browser using Rainmap Lite

Network Exploration

Introduction

Discovering hosts with TCP SYN ping scans

Discovering hosts with TCP ACK ping scans

Discovering hosts with UDP ping scans

Discovering hosts with ICMP ping scans

Discovering hosts with SCTP INIT ping scans

Discovering hosts with IP protocol ping scans

Discovering hosts with ARP ping scans

Performing advanced ping scans

Discovering hosts with broadcast ping scans

Scanning IPv6 addresses

Gathering network information with broadcast scripts

Scanning through proxies

Spoofing the origin IP of a scan

Reconnaissance Tasks

Introduction

Performing IP address geolocation

Getting information from WHOIS records

Obtaining traceroute geolocation information

Querying Shodan to obtain target information

Checking whether a host is flagged by Google Safe Browsing for malicious activities

Collecting valid e-mail accounts and IP addresses from web servers

Discovering hostnames pointing to the same IP address

Discovering hostnames by brute forcing DNS records

Obtaining profile information from Google's People API

Matching services with public vulnerability advisories

Scanning Web Servers

Introduction

Listing supported HTTP methods

Checking whethera web server is an open proxy

Discovering interesting files and folders in web servers

Abusing mod_userdir to enumerate user accounts

Brute forcing HTTP authentication

Brute forcing web applications

Detecting web application firewalls

Detecting possible XST vulnerabilities

Detecting XSS vulnerabilities

Finding SQL injection vulnerabilities

Detecting web servers vulnerable to slowloris denial of service attacks

Finding web applications with default credentials

Detecting web applications vulnerable to Shellshock

Detecting insecure cross-domain policies

Detecting exposed source code control systems

Auditing the strength of cipher suites in SSL servers

Scrapping e-mail accounts from web servers

Scanning Databases

Introduction

Listing MySQL databases

Listing MySQL users

Listing MySQL variables

Brute forcing MySQL passwords

Finding root accounts with an empty password in MySQL servers

Detecting insecure configurations in MySQL servers

Brute forcing Oracle passwords

Brute forcing Oracle SID names

Retrieving information from MS SQL servers

Brute forcing MS SQL passwords

Dumping password hashes of MS SQL servers

Running commands through xp_cmdshell in MS SQL servers

Finding system administrator accounts with empty passwords in MS SQL servers

Obtaining information from MS SQL servers with NTLM enabled

Retrieving MongoDB server information

Detecting MongoDB instances with no authentication enabled

Listing MongoDB databases

Listing CouchDB databases

Retrieving CouchDB database statistics

Detecting Cassandra databases with no authentication enabled

Brute forcing Redis passwords

Scanning Mail Servers

Introduction

Detecting SMTP open relays

Brute forcing SMTP passwords

Detecting suspicious SMTP servers

Enumerating SMTP usernames

Brute forcing IMAP passwords

Retrieving the capabilities of an IMAP server

Brute forcing POP3 passwords

Retrieving the capabilities of a POP3 server

Retrieving information from SMTP servers with NTLM authentication

Scanning Windows Systems

Introduction

Obtaining system information from SMB

Detecting Windows clients with SMB signing disabled

Detecting IIS web servers that disclose Windows 8.3 names

Detecting Windows hosts vulnerable to MS08-067

Retrieving the NetBIOS name and MAC address of a host

Enumerating user accounts of Windows hosts

Enumerating shared folders

Enumerating SMB sessions

Finding domain controllers

Detecting Shadow Brokers' DOUBLEPULSAR SMB implants

Scanning ICS SCADA Systems

Introduction

Finding common ports used in ICS SCADA systems

Finding HMI systems

Enumerating Siemens SIMATIC S7 PLCs

Enumerating Modbus devices

Enumerating BACnet devices

Enumerating Ethernet/IP devices

Enumerating Niagara Fox devices

Enumerating ProConOS devices

Enumerating Omrom PLC devices

Enumerating PCWorx devices

Optimizing Scans

Introduction

Skipping phases to speed up scans

Selecting the correct timing template

Adjusting timing parameters

Adjusting performance parameters

Distributing a scan among several clients using Dnmap

Generating Scan Reports

Introduction

Saving scan results in a normal format

Saving scan results in an XML format

Saving scan results to a SQLite database

Saving scan results in a grepable format

Generating a network topology graph with Zenmap

Generating HTML scan reports

Reporting vulnerability checks

Generating PDF reports with fop

Saving NSE reports in ElasticSearch

Writing Your Own NSE Scripts

Introduction

Making HTTP requests to identify vulnerable supermicro IPMI/BMC controllers

Sending UDP payloads using NSE sockets

Generating vulnerability reports in NSE scripts

Exploiting a path traversal vulnerability with NSE

Writing brute force password auditing scripts

Crawling web servers to detect vulnerabilities

Working with NSE threads, condition variables, and mutexes in NSE

Writing a new NSE library in Lua

Writing a new NSE library in C/C++

Getting your scripts ready for submission

HTTP, HTTP Pipelining, and Web Crawling Configuration Options

HTTP user agent

HTTP pipelining

Configuring the NSE library httpspider

Brute Force Password Auditing Options

Brute modes

NSE Debugging

Debugging NSE scripts

Exception handling

Additional Output Options

Saving output in all formats

Appending Nmap output logs

Including debugging information in output logs

Including the reason for a port or host state

OS detection in verbose mode

Introduction to Lua

Flow control structures

Data types

String handling

Concatenation

Common data structures

I/O operations

Coroutines

Metatables

Things to remember when working with Lua

References and Additional Reading

Recommendations for you

Mastering Microsoft Defender for Office 365

Sep 2024 426 pages

5 (3)

eBook

$24.99 ~~$35.99~~

IT Audit Field Manual

Sep 2024 336 pages

5 (2)

eBook

$21.99 ~~$31.99~~

The Ultimate Kali Linux Book

Apr 2024 828 pages

4.8 (27)

eBook

$29.99 ~~$43.99~~

Resilient Cybersecurity

Sep 2024 752 pages

5 (6)

eBook

$27.98 ~~$39.99~~

Pentesting APIs

Sep 2024 290 pages

5 (6)

eBook

$24.99 ~~$35.99~~

Offensive Security Using Python

Sep 2024 248 pages

5 (4)

eBook

$21.99 ~~$31.99~~

Practical Cyber Hacking Skills for Beginners

Jul 2023 8hrs 23mins

Video

$109.99

Risk Management Excellence - NIST 800-37 Framework Training

Feb 2024 1hr 58mins

Video

$64.99

Cybersecurity Architecture Fundamentals

Jul 2023 3hrs 3mins

Video

$109.99

CompTIA Security+ SY0-701 Certification Guide

Jan 2024 634 pages

4.9 (226)

Paperback

$44.99

Customer reviews

Rating distribution

4.7

(3 Ratings)

5 star 66.7%

4 star 33.3%

3 star 0%

2 star 0%

1 star 0%

Keith Stephens Jul 06, 2019

Helps me learn the ins and outs of nmap

Amazon Verified review

Brice Feb 04, 2019

I keep this on my desk at work. I have used NMAP for years but never to its full potential. That changes now. The book is jammed full of all the features of NMAP. It will show you how to automate and scan networks to the fullest potential.

Amazon Verified review

Jane Doe Dec 08, 2017

Bought this for my customer and it arrived as described. Thanks!

Amazon Verified review

People who bought this also bought

Learn Computer Forensics – 2nd edition

Jul 2022 434 pages

4.8 (63)

eBook

$27.98 ~~$39.99~~

Digital Forensics and Incident Response

Dec 2022 532 pages

4.9 (15)

eBook

$29.99 ~~$43.99~~

Mastering Windows Security and Hardening

Aug 2022 816 pages

4.8 (20)

eBook

$29.99 ~~$43.99~~

Cybersecurity – Attack and Defense Strategies, 3rd edition

Sep 2022 570 pages

4.9 (42)

eBook

$22.99 ~~$33.99~~

Mastering Linux Security and Hardening

Feb 2023 618 pages

4.6 (34)

eBook

$27.98 ~~$39.99~~

About the author

Paulino Calderon

Paulino Calderon (@calderpwn on Twitter) is the cofounder of Websec, a company offering information security consulting services based in Mexico and Canada. When he is not traveling to a security conference or conducting on-site consulting for Fortune 500 companies, he spends peaceful days in Cozumel, a beautiful small island in the Caribbean, learning new technologies, conducting big data experiments, developing new tools, and finding bugs in software. Paulino is active in the open source community, and his contributions are used by millions of people in the information security industry. In 2011, Paulino joined the Nmap team during the Google Summer of Code to work on the project as an NSE developer. He focused on improving the web scanning capabilities of Nmap, and he has kept contributing to the project since then. In addition, he has been a mentor for students who focused on vulnerability detection during the Google Summer of Code 2015 and 2017. He has published Nmap 6: Network Exploration and Security Auditing Cookbook and Mastering the Nmap Scripting Engine, which cover practical tasks with Nmap and NSE development in depth. He loves attending information security conferences, and he has given talks and participated in workshops in dozens of events in Canada, the United States, Mexico, Colombia, Peru, Bolivia, and Curacao.

See other products by Paulino Calderon

FAQs

What is the delivery time and cost of print book?

Shipping Details

USA:

Economy: Delivery to most addresses in the US within 10-15 business days

Premium: Trackable Delivery to most addresses in the US within 3-8 business days

UK:

Economy: Delivery to most addresses in the U.K. within 7-9 business days.
Shipments are not trackable

Premium: Trackable delivery to most addresses in the U.K. within 3-4 business days!
Add one extra business day for deliveries to Northern Ireland and Scottish Highlands and islands

EU:

Premium: Trackable delivery to most EU destinations within 4-9 business days.

Australia:

Economy: Can deliver to P. O. Boxes and private residences.
Trackable service with delivery to addresses in Australia only.
Delivery time ranges from 7-9 business days for VIC and 8-10 business days for Interstate metro
Delivery time is up to 15 business days for remote areas of WA, NT & QLD.

Premium: Delivery to addresses in Australia only
Trackable delivery to most P. O. Boxes and private residences in Australia within 4-5 days based on the distance to a destination following dispatch.

India:

Premium: Delivery to most Indian addresses within 5-6 business days

Rest of the World:

Premium: Countries in the American continent: Trackable delivery to most countries within 4-7 business days

Asia:

Premium: Delivery to most Asian addresses within 5-9 business days

Disclaimer:
All orders received before 5 PM U.K time would start printing from the next business day. So the estimated delivery times start from the next day as well. Orders received after 5 PM U.K time (in our internal systems) on a business day or anytime on the weekend will begin printing the second to next business day. For example, an order placed at 11 AM today will begin printing tomorrow, whereas an order placed at 9 PM tonight will begin printing the day after tomorrow.

Unfortunately, due to several restrictions, we are unable to ship to the following countries:

Afghanistan
American Samoa
Belarus
Brunei Darussalam
Central African Republic
The Democratic Republic of Congo
Eritrea
Guinea-bissau
Iran
Lebanon
Libiya Arab Jamahriya
Somalia
Sudan
Russian Federation
Syrian Arab Republic
Ukraine
Venezuela

What is custom duty/charge?

Customs duty are charges levied on goods when they cross international borders. It is a tax that is imposed on imported goods. These duties are charged by special authorities and bodies created by local governments and are meant to protect local industries, economies, and businesses.

Do I have to pay customs charges for the print book order?

The orders shipped to the countries that are listed under EU27 will not bear custom charges. They are paid by Packt as part of the order.

List of EU27 countries: www.gov.uk/eu-eea:

A custom duty or localized taxes may be applicable on the shipment and would be charged by the recipient country outside of the EU27 which should be paid by the customer and these duties are not included in the shipping charges been charged on the order.

How do I know my custom duty charges?

The amount of duty payable varies greatly depending on the imported goods, the country of origin and several other factors like the total invoice amount or dimensions like weight, and other such criteria applicable in your country.

For example:

If you live in Mexico, and the declared value of your ordered items is over $ 50, for you to receive a package, you will have to pay additional import tax of 19% which will be $ 9.50 to the courier service.
Whereas if you live in Turkey, and the declared value of your ordered items is over € 22, for you to receive a package, you will have to pay additional import tax of 18% which will be € 3.96 to the courier service.

How can I cancel my order?

Cancellation Policy for Published Printed Books:

You can cancel any order within 1 hour of placing the order. Simply contact customercare@packt.com with your order details or payment transaction id. If your order has already started the shipment process, we will do our best to stop it. However, if it is already on the way to you then when you receive it, you can contact us at customercare@packt.com using the returns and refund process.

Please understand that Packt Publishing cannot provide refunds or cancel any order except for the cases described in our Return Policy (i.e. Packt Publishing agrees to replace your printed book because it arrives damaged or material defect in book), Packt Publishing will not accept returns.

What is your returns and refunds policy?

Return Policy:

We want you to be happy with your purchase from Packtpub.com. We will not hassle you with returning print books to us. If the print book you receive from us is incorrect, damaged, doesn't work or is unacceptably late, please contact Customer Relations Team on customercare@packt.com with the order number and issue details as explained below:

If you ordered (eBook, Video or Print Book) incorrectly or accidentally, please contact Customer Relations Team on customercare@packt.com within one hour of placing the order and we will replace/refund you the item cost.
Sadly, if your eBook or Video file is faulty or a fault occurs during the eBook or Video being made available to you, i.e. during download then you should contact Customer Relations Team within 14 days of purchase on customercare@packt.com who will be able to resolve this issue for you.
You will have a choice of replacement or refund of the problem items.(damaged, defective or incorrect)
Once Customer Care Team confirms that you will be refunded, you should receive the refund within 10 to 12 working days.
If you are only requesting a refund of one book from a multiple order, then we will refund you the appropriate single item.
Where the items were shipped under a free shipping offer, there will be no shipping costs to refund.

On the off chance your printed book arrives damaged, with book material defect, contact our Customer Relation Team on customercare@packt.com within 14 days of receipt of the book with appropriate evidence of damage and we will work with you to secure a replacement copy, if necessary. Please note that each printed book you order from us is individually made by Packt's professional book-printing partner which is on a print-on-demand basis.

What tax is charged?

Currently, no tax is charged on the purchase of any print book (subject to change based on the laws and regulations). A localized VAT fee is charged only to our European and UK customers on eBooks, Video and subscriptions that they buy. GST is charged to Indian customers for eBooks and video purchases.

What payment methods can I use?

You can pay with the following card types:

Visa Debit
Visa Credit
MasterCard
PayPal

What is the delivery time and cost of print books?

Shipping Details

USA:

Economy: Delivery to most addresses in the US within 10-15 business days

Premium: Trackable Delivery to most addresses in the US within 3-8 business days

UK:

Economy: Delivery to most addresses in the U.K. within 7-9 business days.
Shipments are not trackable

Premium: Trackable delivery to most addresses in the U.K. within 3-4 business days!
Add one extra business day for deliveries to Northern Ireland and Scottish Highlands and islands

EU:

Premium: Trackable delivery to most EU destinations within 4-9 business days.

Australia:

India:

Premium: Delivery to most Indian addresses within 5-6 business days

Rest of the World:

Premium: Countries in the American continent: Trackable delivery to most countries within 4-7 business days

Asia:

Premium: Delivery to most Asian addresses within 5-9 business days

Unfortunately, due to several restrictions, we are unable to ship to the following countries:

Afghanistan
American Samoa
Belarus
Brunei Darussalam
Central African Republic
The Democratic Republic of Congo
Eritrea
Guinea-bissau
Iran
Lebanon
Libiya Arab Jamahriya
Somalia
Sudan
Russian Federation
Syrian Arab Republic
Ukraine
Venezuela

Nmap: Network Exploration and Security Auditing Cookbook: Network discovery and security scanning at your fingertips , Second Edition

What do you get with Print?

Key benefits

Description

Who is this book for?

What you will learn

Product Details

What do you get with Print?

Product Details

Packt Subscriptions

Frequently bought together

Table of Contents

Recommendations for you

Customer reviews

People who bought this also bought

About the author

FAQs