Back to glossary

Nmap

An open-source tool for network discovery and security auditing, used to identify hosts, services, and vulnerabilities on a network.

Categorysecurity

Overview

Nmap (Network Mapper) is the industry-standard tool for network scanning. It uses raw IP packets in creative ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems they are running, and what type of packet filters/firewalls are in use.

Key Features

  • Host Discovery: Identifying active devices on a network.
  • Port Scanning: Determining which ports are open, closed, or filtered.
  • Service/Version Detection: Identifying the software and version running on a port.
  • OS Detection: Guessing the operating system based on network responses.
  • Nmap Scripting Engine (NSE): A powerful feature that allows users to write scripts to automate tasks like vulnerability detection and advanced discovery.

Importance

Nmap is an essential tool for network administrators and security professionals for inventory management, security audits, and troubleshooting.