+1 vote
99 views
I am new to this field, so this may be a dump question. I just want to know how can I scan the open ports of connected devices (and maybe also the web services), e.g. a router, if I am in a local network. If I get all the infomation about accessible hosts, I can analyze the backend and hack in.  
Thx.
asked by (1 point) | 99 views
nmap does port scanning, and also slower... you can try netdiscover -r 192.168.0.1/24


Replace ip with your gateway (router ip)

1 Answer

0 votes
Nmap is the best tool for this purpose, its the Swiss army knife of network tools. 
 
1. Scan a subnet.
nmap 192.168.1.0/24
2. Scan common port ins subet
nmap -F 192.168.1.0/24
3.Detect OS and Service
nmap -A 192.168.1.0/24
 
4. Standard service detection
nmap -sV 192.168.1.0/24
 
5. More aggressive Service Detection
nmap -sV --version-intensity 5 192.168.1.0/24
6. Lighter banner grabbing detection
nmap -sV --version-intensity 0 192.168.1.1
 
If it seems to hard there are many other ways too.
 
1. Arp-scan
This tool can scan and list out every alive host in a local network. 
sudo apt-get install arp-scan

sudo arp-scan --interface=eth0 --localnet
Replace eth0 with whichever network interface you are on.
 
2. Angry IP scanner
This is a GUI based tool which easy to operate and supports port scanning and service detection. You can dowbload it from here
 
 
answered by (45 points)
Welcome to Askthehackers, where you can ask questions and receive answers from other members of the community.
Sign-up Now!
20 questions
17 answers
19 comments
116 users