Member-only story
Beginner
Nmap (Free)
https://nmap.org/book/man.html
Nmap is an AMAZING tool that is used for portscanning but it can also do banner enumeration and it can run some scripts per open port, to do this we user -sV and -sC respectively. It’s important to know that nmap will only scan the most used 1000 ports, if you want to scan all ports you need to use the -p- parameter and if you want to scan UDP ports you need to use the -sU parameter.
Whatever you do, you need to know that nmap does an intrusive scan by default and if you use the default scripts it’s even worse. Assure yourself that your target does allow for a portscan and don’t just go randomly scanning ports. If you want to test this, please use http://23.239.9.22/
You can do a full portscan on my server with all the parameters you wish.
Nikto (Free)
Nikto is a web vulnerability scanner that will scan your target for a list of know vulnerabilities, it’s really easy to use. It’s open source and runs really fast in the background so there is no reason not to run it on your target. Just keep these scans running and remember to scan every webport. Include port 80, 443 and any other custom ports like…
