Vulnerability Scanning with NMAP

Author: Martin Voelk
January 12, 2016

Almost everyone in IT Security has either heard of or used the powerful port scanning tool NMAP. However a lot of the folks don’t seem to know that NMAP can be turned into a free powerful Vulnerability Scanner like Nessus or OpenVAS.

Here is how to do that (from Kali or any other Linux distro):

wget http://www.computec.ch/projekte/vulscan/download/nmap_nse_vulscan-2.0.tar.gz
nmap -sS -sV –script=vulscan/vulscan.nse target

To eliminate false positives:
nmap -PN -sS -sV –script=vulscan –script-args vulscancorrelation=1 target

Enjoy!

Share
 

Comments are closed.