{"id":801,"date":"2024-06-25T08:00:00","date_gmt":"2024-06-25T06:00:00","guid":{"rendered":"https:\/\/procyb.fr\/?p=801"},"modified":"2024-06-24T17:51:14","modified_gmt":"2024-06-24T15:51:14","slug":"nmap","status":"publish","type":"post","link":"https:\/\/procyb.fr\/index.php\/2024\/06\/25\/nmap\/","title":{"rendered":"NMAP"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Nmap, abr\u00e9viation de \u00ab\u00a0Network Mapper\u00a0\u00bb, est un outil de s\u00e9curit\u00e9 open-source utilis\u00e9 pour la d\u00e9couverte et l&rsquo;audit de r\u00e9seaux. D\u00e9velopp\u00e9 par <a href=\"https:\/\/fr.wikipedia.org\/wiki\/Fyodor\" data-type=\"link\" data-id=\"https:\/\/fr.wikipedia.org\/wiki\/Fyodor\">Gordon Lyon<\/a>, aussi connu sous le pseudonyme de Fyodor, Nmap est largement utilis\u00e9 par les administrateurs syst\u00e8me, les professionnels de la s\u00e9curit\u00e9 et les passionn\u00e9s de r\u00e9seaux pour diverses raisons, allant de la simple identification des p\u00e9riph\u00e9riques connect\u00e9s \u00e0 l&rsquo;\u00e9valuation de la s\u00e9curit\u00e9 r\u00e9seau.<\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-main-color\">Fonctionnalit\u00e9s Principales de Nmap<\/mark><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"text-decoration: underline;\"><strong>D\u00e9couverte de R\u00e9seaux<\/strong> :<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Scan d&rsquo;h\u00f4tes<\/strong> : D\u00e9tecte les appareils connect\u00e9s \u00e0 un r\u00e9seau.<\/li>\n\n\n\n<li><strong>Scan de ports<\/strong> : Identifie les ports ouverts sur les h\u00f4tes, ce qui permet de savoir quels services sont en cours d&rsquo;ex\u00e9cution.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"text-decoration: underline;\"><strong>D\u00e9tection de Services<\/strong> :<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Nmap peut identifier les services (par exemple, HTTP, FTP, SSH) et leurs versions exactes en cours d&rsquo;ex\u00e9cution sur les ports ouverts.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"text-decoration: underline;\"><strong>D\u00e9tection de Syst\u00e8me d&rsquo;Exploitation (OS Fingerprinting)<\/strong> :<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Permet de d\u00e9terminer le syst\u00e8me d&rsquo;exploitation utilis\u00e9 par les h\u00f4tes scann\u00e9s, ce qui aide \u00e0 \u00e9valuer les vuln\u00e9rabilit\u00e9s potentielles.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"text-decoration: underline;\"><strong>Scripts Nmap (NSE &#8211; Nmap Scripting Engine)<\/strong> :<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Nmap inclut un moteur de script qui permet l&rsquo;ex\u00e9cution de scripts pour des t\u00e2ches plus avanc\u00e9es, comme la d\u00e9tection de vuln\u00e9rabilit\u00e9s, l&rsquo;ex\u00e9cution de tests de s\u00e9curit\u00e9, etc.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"text-decoration: underline;\"><strong>Scans Avanc\u00e9s<\/strong> :<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Scan SYN (Half-open scan)<\/strong> : M\u00e9thode rapide et furtive pour d\u00e9couvrir les ports ouverts sans \u00e9tablir une connexion compl\u00e8te.<\/li>\n\n\n\n<li><strong>Scan UDP<\/strong> : Permet de scanner les ports UDP, souvent plus difficile \u00e0 d\u00e9tecter.<\/li>\n\n\n\n<li><strong>Scan d&rsquo;OS Fingerprinting<\/strong> : Utilise des techniques avanc\u00e9es pour d\u00e9tecter le syst\u00e8me d&rsquo;exploitation.<\/li>\n\n\n\n<li><strong>Scan d&rsquo;agressivit\u00e9 variable<\/strong> : Nmap permet de r\u00e9gler la vitesse et la furtivit\u00e9 des scans pour s&rsquo;adapter aux besoins sp\u00e9cifiques.<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-main-color\">Utilisation de Base<\/mark><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scan d&rsquo;h\u00f4te simple<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap 192.168.1.1<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scan de r\u00e9seau entier<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap 192.168.1.0\/24<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scan de ports sp\u00e9cifiques<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap -p 80,443 192.168.1.1<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scan avec d\u00e9tection de service et version<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap -sV 192.168.1.1<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scan avec d\u00e9tection du syst\u00e8me d&rsquo;exploitation<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap -O 192.168.1.1<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Utilisation de scripts Nmap pour d\u00e9tecter les vuln\u00e9rabilit\u00e9s<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap --script vuln 192.168.1.1<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Autres commandes Nmap<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap -sV IP -vvv \u2192 verbeux\nnmap -sV IP -A \u2192 agressif\nnmap -sP IP \u2192 Ping\nnmap -sP 192.168.0.1-20 \u2192 scan les adresses 1 \u00e0 20\nnmap -sP 192.168.0.* \u2192 toutes les machines du r\u00e9seau\nnmap -sS IP \u2192 TCP SYN (scan plus discret)<\/code><\/pre>\n\n\n\n<h5 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-main-color\">Interface Graphique<\/mark><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">En plus de la ligne de commande, Nmap dispose d&rsquo;une interface graphique appel\u00e9e Zenmap, qui facilite la visualisation des r\u00e9sultats de scan et l&rsquo;ex\u00e9cution de commandes Nmap.<\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><mark style=\"background-color:rgba(0, 0, 0, 0)\" class=\"has-inline-color has-main-color\">Conclusion<\/mark><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\">Nmap est un outil puissant et flexible pour la gestion et la s\u00e9curit\u00e9 des r\u00e9seaux. Son large \u00e9ventail de fonctionnalit\u00e9s et sa capacit\u00e9 \u00e0 \u00eatre script\u00e9 pour des t\u00e2ches personnalis\u00e9es en font un choix incontournable pour les professionnels de la s\u00e9curit\u00e9 informatique. Pour plus d&rsquo;informations, vous pouvez consulter la <a>documentation officielle de Nmap<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Nmap, abr\u00e9viation de \u00ab\u00a0Network Mapper\u00a0\u00bb, est un outil de s\u00e9curit\u00e9 open-source utilis\u00e9 pour la d\u00e9couverte et l&rsquo;audit de r\u00e9seaux. D\u00e9velopp\u00e9<span class=\"more-dots\">&#8230;<\/span> <span class=\"more-tag mt-15 is-style-arrow\"><a class=\"more-link wp-block-button__link\" href=\"https:\/\/procyb.fr\/index.php\/2024\/06\/25\/nmap\/\">...<span class=\"screen-reader-text\"> \"NMAP\"<\/span><\/a><\/span><!-- .more-tag --><\/p>\n","protected":false},"author":2,"featured_media":806,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[35,36],"tags":[40,38,39],"class_list":["post-801","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hack","category-reseau","tag-hacking","tag-nmap","tag-reseau"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/procyb.fr\/wp-content\/uploads\/2024\/06\/nmap.jpg?fit=225%2C225&ssl=1","jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"_links":{"self":[{"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/posts\/801","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/comments?post=801"}],"version-history":[{"count":4,"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/posts\/801\/revisions"}],"predecessor-version":[{"id":805,"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/posts\/801\/revisions\/805"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/media\/806"}],"wp:attachment":[{"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/media?parent=801"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/categories?post=801"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/procyb.fr\/index.php\/wp-json\/wp\/v2\/tags?post=801"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}