Nmap Live Host Discovery

medium2htryhackme

Before you can attack a network you need to know what's alive on it. This room teaches the first phase of any engagement: live host discovery. You'll work through the network layers from ARP at Layer 2 through ICMP, TCP SYN, TCP ACK, and UDP ping scans. Each technique has different privilege requirements and different visibility to defensive tools. The static site lets you visualize packet flows and understand exactly what happens on the wire before you run a single nmap command.

Skills You Will Learn

nmaphost-discoveryarp-scanningicmp-scanningnetwork-scanning

Prerequisites

thm-passiverecon
networking-basics
tcp-ip-fundamentals

Walkthrough Phases

Host Discovery Fundamentals

Understand why host discovery comes first and how ARP works at Layer 2

ARP, ICMP, and Layer 3 Discovery

Use ARP and ICMP methods to discover live hosts; understand ARP caching

TCP and UDP Host Discovery

Use TCP SYN, TCP ACK, and UDP probes to discover hosts through firewalls

Reverse DNS and Scan Options

Use reverse DNS lookups to gather host information and review all scan types

20 questions to answer

alienrecon start thm-nmap01

Don't have AlienRecon? Get started here