Nmap Tutorial: Network Scanning & Security Analysis

Nmap is a free and open-source network scanning tool used to discover hosts and services on a computer network. It is widely used for network auditing, penetration testing, and security assessments.

With Nmap, you can identify live systems, detect open ports, determine running services, and even guess operating systems used by devices.

Nmap plays a critical role in cybersecurity by helping professionals understand network exposure and detect potential entry points for attackers.

• Identify open ports and services
• Detect unauthorized devices on a network
• Perform vulnerability assessments
• Strengthen network security posture

1. Scan a Single IP

nmap 192.168.1.1

This command scans a single device and shows open ports.

2. Scan a Range of IPs

nmap 192.168.1.1-100

Scans multiple devices in a network.

3. Scan a Website

nmap example.com

Finds open ports and services running on a domain.

4. Service Version Detection

nmap -sV 192.168.1.1

Shows versions of services running on open ports.

After running an Nmap scan, the results show important details such as:

• Open Ports: Ports accepting connections
• Service: Application running on that port
• State: Open, closed, or filtered
• Protocol: TCP or UDP

OS Detection

nmap -O 192.168.1.1

Aggressive Scan

nmap -A 192.168.1.1

Stealth Scan

nmap -sS 192.168.1.1

These advanced scans provide deeper insights into network security but should be used responsibly.

Nmap is one of the first tools used during penetration testing. It helps ethical hackers map the network, identify targets, and plan further testing.

By understanding open ports and services, security professionals can detect weaknesses before attackers exploit them.

Nmap is an essential tool for anyone interested in networking or cybersecurity. Whether you are a beginner or a professional, learning Nmap can significantly improve your ability to analyze and secure networks.