Testing network security controls and discovering vulnerabilities are important parts of any organizations security plan. Nmap (“Network Mapper”) is a free and open source utility for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. It was designed to rapidly scan large networks, but works fine against single hosts. Nmap runs on all major computer operating systems, and official binary packages are available for Linux, Windows, and Mac OS X.
Syllabus
Getting Started with Nmap 7
Testing Security Controls and Detecting Vulnerabilities with Nmap 7
Maximizing Nmap 7 for Security Auditing
Scanning for Vulnerabilities with Nmap 7 Scripting Engine (NSE)
Pluralsight: Information Security Testing and Auditing with Nmap