Header Ads

Header ADS

Netdiscover -simple ARP Scanner to scan for live hosts in a network

July 11, 2020 0
Netdiscover is a simple ARP scanner which can be used to scan for live hosts in a network. It can scan for multiple subnets also. It simply produces the output in a live display(ncurse). This can be used in the first phases of a pentest where you have access to a network. Netdiscover is a simple and initial-recon tool which can be very handy.

Features:

  1. Simple Arp Scanner
  2. Works in both Active & Passive modes
  3. Produces a live display of identified hosts
  4. Able to scan multiple subnets
  5. Timing Options

Options:


-i device: your network device

  -r range: scan a given range instead of auto scan. 192.168.6.0/24,/16,/8

  -l file: scan the list of ranges contained into the given file

  -p passive mode: do not send anything, only sniff

  -m file: scan the list of known MACs and host names

  -F filter: Customize pcap filter expression (default: "arp")

  -s time: time to sleep between each arp request (miliseconds)

  -n node: last ip octet used for scanning (from 2 to 253)

  -c count: number of times to send each arp reques (for nets with packet loss)

  -f enable fastmode scan, saves a lot of time, recommended for auto

  -d ignore home config files for autoscan and fast mode

  -S enable sleep time supression betwen each request (hardcore mode)

  -P print results in a format suitable for parsing by another program

  -N Do not print header. Only valid when -P is enabled.

  -L in parsable output mode (-P), continue listening after the active scan is completed

 

Lab: Simple Host discovery & Related Options

Netdiscover runs simply by calling executing the command in auto mode

Syntax: netdiscover <options>
We can scan a specific range with -r option
Syntax: netdiscover -r <range>

Command: netdiscover -r 192.168.1.0/24
Multiple Ranges from a File
We can also scan for multiple ranges. This is useful when you have a large network with multiple subnets & networks. For this, simply we need specify all the ranges we want to scan in a file line-by-line
Syntax: netdiscover -l <file containing ranges>

Command: netdiscover -l ranges
Passive Scanning
Sometimes it’s better to stay quiter. -p option helps on this but at the cost of patience.
Syntax: netdiscover -p -r <range,optional>
Parsable Outputs
There is a parsable output option also in case you want to pipe it to a file.
Syntax: netdiscover -P<parsable> -N<ommit headers>

Command: netdiscover-r 192.168.1.1/24 -PN

Tags:

No comments

Subscribe to: Post Comments ( Atom )
Powered by Blogger.