Jump to content

Nmap scans


Recommended Posts

I was wondering if there was a way to expand the built in Nmap scanning ability to go beyond the subnet that it is connected to. The feature is great for a quick test, but I would also like to see just how far a network jack can get in our network. 

Link to comment
Share on other sites

nmap can scan multiple subnets just by listing them or using other methods found here: https://nmap.org/book/man-target-specification.html

Here you can find info on scripting for nmap for custom functions: https://nmap.org/book/nse.html


Easiest way that would require no custom scripts is just list all available subnets on the scan settings, connect to the subnet you want to test from, and see what the scan returns as reachable/open.  This pretty much should do what you are asking.


You could easily just connect a kali machine to the network subnet you are wanting to test and with a few commands see if other subents are reachable as well.  The most extensive test would be full pen testing from each subnet to see if there are any holes in networking layout.

Link to comment
Share on other sites


This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...