WEBVTT

00:01.080 --> 00:06.530
Hello, my name is Stephan, and in this lecture we will learn how to scan random targets on the internet

00:06.540 --> 00:07.350
and Nmap.

00:07.380 --> 00:14.730
A powerful network scanning tool, offers a fascinating feature that allows researchers to conduct scans

00:14.730 --> 00:17.310
against random targets on the Internet.

00:17.340 --> 00:22.770
Although it's important to note that aggressive scanning without permission is not recommended and may

00:22.770 --> 00:30.540
be illegal in certain countries, and generating a sample of random hosts can be valuable for research

00:30.540 --> 00:33.810
purposes related to publicly accessible hosts.

00:33.810 --> 00:38.670
So let's explore how to generate random hosts as targets for Nmap scans.

00:38.670 --> 00:48.990
So to generate a list of n random target hosts, you can use this Nmap command Nmap lowercase e uppercase

00:49.020 --> 00:49.590
L here.

00:49.590 --> 00:52.950
So we will do 20 here and now.

00:53.490 --> 00:57.450
Here we are generating 20 random hosts.

00:58.510 --> 01:00.400
So here, let's actually wait.

01:00.550 --> 01:01.750
And here.

01:01.750 --> 01:07.380
And here, as you can see here, we scanned randomly and there is zero hosts up.

01:07.390 --> 01:16.840
So now let's delve into the prevalence of ICMP Internet control message protocol on remote servers.

01:16.840 --> 01:21.580
And we will launch a host discovery scan against three random targets.

01:21.580 --> 01:23.620
So Nmap is n.

01:23.620 --> 01:32.440
So this is a host discovery and lowercase E uppercase R and we will do three here and here.

01:33.190 --> 01:36.340
The scan results will display information about a scan and host.

01:36.340 --> 01:41.830
In this case there is a zero hosts up, so let's actually make it 50 so we will have more chance to

01:41.830 --> 01:48.520
get the online hosts here and here you can use the arrow keys to see the.

01:50.150 --> 01:52.030
A percentage of the process.

01:52.040 --> 01:54.230
And here it's 9400.

01:54.230 --> 01:58.850
And as you can see here, there's a three hosts up.

01:58.850 --> 02:02.150
And here I can make a technologies.com and so on.

02:02.150 --> 02:10.820
So the scan results will display information about the scanned host, such as their IP addresses, responsiveness,

02:10.820 --> 02:18.680
their domain if they have any, and latency and this is the simple sample output that Nmap will give

02:18.680 --> 02:19.370
it to you.

02:19.380 --> 02:23.300
And let's actually learn how it works here, right?

02:23.300 --> 02:32.210
So by using the Nmap, lowercase and uppercase R option followed by some number here and Nmap generates

02:32.240 --> 02:38.660
a specified number of external IP addresses and utilizes them as a targets in the scan.

02:38.660 --> 02:43.640
So this target assignment can be combined with any other scan options as needed.

02:43.640 --> 02:49.880
So while this feature can be valuable for internet research, caution should be exercised when using

02:49.980 --> 02:54.480
it, and Nmap has no control over the external IP addresses.

02:54.480 --> 03:01.590
It generates meaning that the generated list may include critical machines under heavy surveillance.

03:01.590 --> 03:09.120
So keep in mind, and to evade to avoid any unintended consequences, it's important to use this feature

03:09.120 --> 03:11.070
responsibly and ethically.

03:11.070 --> 03:12.600
And there's also more here.

03:12.600 --> 03:19.020
So if you want to generate an unlimited number of IP addresses and run the scan indefinitely, you can

03:19.020 --> 03:23.730
use Nmap, lowercase, E, uppercase R here and zero option.

03:23.910 --> 03:30.450
For example, if you're interested here in this case, sorry, it's not zero, so zero option and here

03:30.450 --> 03:36.660
we will scan it indefinitely until the IP addresses end or we have some error from program.

03:36.660 --> 03:37.140
Right.

03:37.820 --> 03:44.600
And here, for example, if you are interested in finding random online dnfs here network file system

03:44.600 --> 03:49.610
shares, you could execute this command here Nmap.

03:50.060 --> 03:51.860
First we will enter the port here.

03:51.860 --> 04:02.630
So because NFS network file system uses 2049 for 2049 port and here we will use open and I error here.

04:02.630 --> 04:11.150
So here we will scan open the online machines that uses this port.

04:11.150 --> 04:14.030
And this port is open in that machine here.

04:14.030 --> 04:17.630
So we will scan it on unlimited here and here.

04:17.630 --> 04:20.790
As you can see here, we have like.

04:21.780 --> 04:22.140
Here.

04:22.140 --> 04:25.010
As you can see here, it's running all the way.

04:25.020 --> 04:29.520
So here and this is also legal issues with port scanning here.

04:29.520 --> 04:35.340
So it's essential to be aware of the legal implications surrounding port scanning.

04:35.340 --> 04:41.790
Engaging in port scanning without proper authorization is generally unwelcome and even illegal in certain

04:41.790 --> 04:42.750
jurisdictions.

04:42.750 --> 04:48.420
And before conducting any scanning activities, it's crucial to research and understand the laws and

04:48.420 --> 04:51.810
regulations in your local jurisdiction.

04:51.810 --> 04:57.750
So Nmap provides comprehensive documentation on the legal issues associated with port scanning, which

04:57.750 --> 05:01.320
can be found on their websites here.

05:01.320 --> 05:07.830
Let's actually go there so we will go nmap.org here.

05:07.860 --> 05:13.470
Book and legal issues dot HTML.

05:13.620 --> 05:23.370
So here I highly recommend that anyone considering internet wide scanning takes the time to read and

05:23.370 --> 05:25.140
understand these resources here.

05:25.140 --> 05:28.410
There is also, as you can see here, security list, security tools here.

05:28.410 --> 05:31.770
So there might be some error legal issues here.

05:31.770 --> 05:36.060
So they might be changed this link here.

05:36.060 --> 05:41.580
So but here you can see we also can Google it here.

05:41.610 --> 05:45.720
We can also DuckDuckGo it here and here.

05:45.720 --> 05:54.480
Nmap legal uses and here we will go to Nmap official website here and that's it.

05:54.480 --> 05:57.390
So yes, we need to use this here.

05:57.480 --> 05:58.620
So that's it.

05:58.620 --> 06:04.290
And as you can see here, when used properly, Nmap helps protect your network from invaders and but

06:04.290 --> 06:10.740
when you use improperly, Nmap can in rare cases of course get you sued, fired, expelled, jailed

06:10.740 --> 06:14.070
or banned by your Internet service providers.

06:14.070 --> 06:19.650
So reduce your risk by reading this legal guide before launching Nmap here.

06:19.650 --> 06:25.870
So there's a here as you can see, there's a port scanning is not crime and the strong opinions on a

06:25.870 --> 06:28.540
port scanning legality and morality.

06:28.540 --> 06:35.080
And here, as you can see here, I love BMW they're nice car here M3, I think.

06:35.080 --> 06:35.740
Yes.

06:35.740 --> 06:42.340
And here you have you can read all of this chapter to understand the legal uses that comes with scanning

06:42.340 --> 06:43.240
ports here.

06:43.240 --> 06:45.790
So I'm waiting you in next lecture.