Earlier I wrote a post on an ethical view of nmap. Today I’ve had a few adult beverages and I thought it would be fun to give a little insight into an unethical use. I am not the first to say this, and will not be the last .. but nmap is just freakin cool and so,so useful. In this post we shall cover some of the more interesting IDS decoy and evasion methods available in nmap.

Are you ready to nerd it up?

This article was linked off of slashdot this morning .. great read for those wanting a nice detailed explanation of nmap and it’s uses (ethical or otherwise).

From the conclusion:

This should give you a great running start with Nmap. We covered not only what each scan does, but, more importantly, we gave you some valuable insight as to what an ethical hacker should be thinking when scanning. If the bad guys are thinking it, then you should, too. In Part 2 we will discuss all the special options we can add to our Nmap scans to really bring it to a much higher level.

One of the most useful scan types that I use on a regular basis is the RPC scan (-sR) a sample output that one might expect to see from a scan of this type: