3. Quick start of Nmap

3.1 Ping Sweeping

Icmp ping # nmap -sP "host IP address"

tcp ping # nmap -sP -PT80"host IP address"

3.2 Port Scanning

TCP connect # nmap -sT "host IP address"

Stealth Scanning # nmap -sS "host IP address"

UDP Scanning # nmap -sU "host IP address"

Stealth FIN # nmap -sF "host IP address"

Xmas Tree # nmap -sX "host IP address"

Null scan. # nmap -sN "host IP address"

3.3 OS Fingerprinting # nmap -sS -O "host IP address"

4. Lab

Use NMAP tool to scan several web sites. Some big companies' sites may not get many information, some small organizations' sites may have more information.

(Do not scan any government or military site, dangerous!!!)

Answer the following two questions with explanation and attach screenshot

You choose at least 4 sites (2 big and 2 small organizations) to scan.

For example, the small organizations may be clubs/bars or bakery stores or school sport clubs or flower stores or church, etc)

Attachscreen shots for your results.

You should also install Zenmap for the GUI interface.

1. Try many scan options (listed in section 3 above), provide at least one screenshot of the scanning of each site.
2. Is Nmap able to identify the operating system running on each system? What is the version of OS? Do some research, is this version out of date? If yes, what are the well-known vulnerabilities?