Nmap Reviews

We are a manufacturing company and there are two main ways in which we use Nmap. The first way is using Nmap as a tool to determine whether certain services are running or whether certain ports are open. If a machine is not available for some reason, then we will first use Nmap to check whether the machine's ports are open or not. This is our most common use case.

The other reason we use Nmap is to gather the MAC addresses of all the machines in the network.

In total, there are about two or three people who use Nmap at my company because we are working in manufacturing and only require a few people to perform this kind of networking troubleshooting. 

Nmap's performance is great, and I've never noticed any issues in this respect. It really doesn't put a heavy load on the machine when using it.

Another nice thing about Nmap is that if you know the command prompt, the UI works well and is not too complex.

Since I started using Nmap, it has been completely based on the command prompt and I think it would help other users if they implemented a decent GUI as well. In any company you might have multiple experts and a few new people; for the new people the command prompt is usually difficult to grasp at first, but with a GUI they could very easily get started with troubleshooting and playing with different options.

I have been using Nmap for about five years.

There are no problems with stability that I've observed.

The scalability is okay. It's easy and quick to use, and doesn't put a heavy load on the machine.

I don't have any experience with technical support for Nmap, mainly because I don't use that many features and so I have no need for support. And with the features that I do use, I always get proper results.

It would likely be another story if we were an IT company but since we only work in manufacturing, we don't have a need for anything other than the simplest of support.

We are also using Wireshark for troubleshooting, but not in combination with Nmap as it is a different tool for different processes.

The setup process is very simple.

Nmap is open source software, which suits us well because we are a manufacturing company and not an IT company, for example. If we were an IT company, we would probably need to pay for extra support or instead go for another software solution. But as it is, we don't have any need for high-end troubleshooting tools.

I would definitely recommend Nmap to Indian companies and others who are looking into their networking, especially when it comes to troubleshooting server-side resources such as with SaaS, IaaS, or anything which requires checking for open ports. It works very nicely for troubleshooting, because when a service isn't running for any of your users, you can use Nmap to check it directly and easily determine whether the service is actually running or not.

I would rate Nmap a nine out of ten.

Nmap is used for network scanning to map the network, identify devices, and assess their status. It helps determine open ports and services running on a particular endpoint or server within an enterprise environment.

Nmap is a very useful tool for network discovery and security auditing. To fully utilize its capabilities, you should use features based on your specific requirements. Since it's primarily a scanner, its main function is to perform various types of network scans. The comprehensive scanning capabilities are the core feature of this tool, making it indispensable for network administrators and security professionals.

The scanning process discovers all those assets, identifies their IPs, detects the hosts, and determines the services running on those hosts. This makes Nmap very helpful at an enterprise level.

It is an open-source tool, and its scripts are updated by the community. While it might seem that the tool is old, it remains relevant because users can develop and contribute new scripts. The Nmap community may not always appear highly active, but contributions from dedicated users continue to keep it valuable. It is is not actively developed in terms of its GUI. As a result, it looks very outdated and hasn't seen much improvement. Additionally, the built-in scripts provided by the tool are also quite old and are not updated frequently.

I have been using Nmap for ten years. 

I rate the solution’s stability an eight out of ten.

There is no such automation to do the scalability. 20 users are using this solution.

There is no support. It is only used from by open-source. If somebody else you from the community, then you get the support. Apart from that, there is no sort of active support.

I use a lot of scanners, but it's costly, like Qualys and Nutanix. As an independent consultant, I don't have the budget for enterprise-level scanners or procuring licenses. So, I use Nmap, which saves me a lot of money.

One advantage of Nmap is that it's free. Additionally, it can be deployed anywhere since it is available on the cloud. You can download it from GitHub or the Nmap website. Nmap includes various scripts and scan types, and it has extensive support for multiple operating systems, servers, and devices. Its effectiveness largely depends on the user's expertise. A knowledgeable user can leverage its full potential. Nmap can perform well compared to some enterprise tools, though enterprise solutions often offer more sophisticated, interactive reports. Nmap’s reports are typically text-based and may seem outdated

It just takes less than a minute to set up. You can do it on prem, the server, whereever instance you want. It is having both capability.

It saves you a lot of money from procuring some sort of enterprise scanners, but, enterprise scanners have their own deduction capabilities. Nmap is always a good start to do the seven figure business months without spending any money.

It is a powerful security detection tool when used effectively. However, its effectiveness can be limited if the target organization has strong security mechanisms and good scanner fingerprinting techniques. In environments with robust security and zero-trust policies, Nmap scanning becomes challenging.

Nmap can be automated using scripts with Ansible, Bash, or PowerShell. It's available on Windows and can be used with PowerShell. While automation with AI is possible, it might be challenging due to the complexity and specifics of Nmap's operations.

it is free to use. You can install and explore the tools. Nothing is gonna harm you. You can just explore it. If it fits your requirement, you can obviously go ahead with it.

Overall, I rate the solution a seven out of ten.

I use the solution for scripting and scanning ports before purchasing them. It makes it much easier because when you know a port is open, you can directly focus on it as vulnerable. The solution detects the operating systems, which makes testing the software much easier before making the payload.

When you know a port is open, you know what to do next. The solution helps us know the ports, detect the operating systems, and collect information about the machine.

The solution is not that easy for a beginner to learn.

I have been using Nmap for two years.

Nmap is a pretty stable solution.

The solution's initial setup is easy. It comes pre-installed on Linux, but I have seen people using it on Ubuntu.

I am using the free version of Nmap.

Since the solution is not easy for beginners, I recommend it to someone experienced. Utilizing the solution's operating system detection capabilities to know the OS is crucial while performing penetration testing. Attacking Windows is much easier than attacking a MacBook.

Overall, I rate the solution ten out of ten.

The tool helps with tasks such as network integration and mapping. Nmap comes equipped with numerous scripts that aid in identifying the operating system and  available ports. 

My web team uses the product during routine penetration testing. 

The tool's most valuable feature is its scripts. These scripts prove beneficial when security features may obscure or block connections. Nmap helps identify vulnerabilities across different systems, including web servers and various server types.

Nmap needs to improve its scanning speed. 

The solution's stability is pretty good. 

The tool is not deployed on a shared environment. It is deployed as an individual setup. 

Since it's an open-source tool, I haven't specifically sought support assistance. However, the community is very active. There are active forums where people communicate, and it's an open environment where anyone can ask questions. 

Nmap's deployment is straightforward. 

Nmap is a free tool, so it helps save a lot of time when identifying vulnerabilities on the network.

Nmap is an open-source and free product. 

You can install the product on any endpoint. Analysts should have it, especially those in red teams or penetration testing. Anyone interested in cybersecurity or any related field should know how to use Nmap. I rate it a ten out of ten. 

We use the solution to add up the router on a network.

Nmap can display all the services that are exposed within a permission system. It offers an option to optimize the scanning process, ensuring that our scans remain undetected by other security tools integrated into the automation system. Additionally, Nmap provides features to adjust the nature of the scan, allowing it to bypass security tools such as EDP and base. Furthermore, it includes options to optimize scan response time and duration.

Sometimes, the solution doesn't provide the names of services. We find a solution, but we do not entirely know about it. It utilizes a database of services. When the solution scans, it matches the data obtained from the scan with the entries in the database to display the names of services at the target site. For example, we might have an exposed port but remain uncertain about the associated service. Nmap can identify what services are running and their associated products. It doesn't allow exploiting vulnerabilities automatically. However, having such capabilities could greatly enhance security, particularly for servers exposed to the internet. 

I have been using Nmap for one and a half years.

The product is stable.

The initial setup is simple.

Overall, I rate the solution an eight out of ten.

We use the solution to scan and monitor ports. We can get insights into operating systems, status, protocols, and services.

The solution's most valuable feature is scanning.

The solution's initial setup could be better. Also, they should provide more insights into the network infrastructure.

I have been using the solution for two years.

The solution's initial setup process is complicated. It requires specific skills to execute the implementation.

It is a free source application.

It is a beneficial tool for scanning. I rate it as an eight.

The price is high and could be cheaper. The third-party library vulnerability assessment could be included in the next release.

We have been using the solution for seven months.

The solution is stable. I rate the stability an eight out of ten.

The solution is scalable. Approximately 100 people in our organization utilize it.

We have not had experience with customer service and support.

The initial setup was simple and took us approximately five days.

We chose this solution because it supports several frameworks, including coding frameworks.

I rate the solution a nine out of ten.

Three technicians in our company use the solution extensively to scan our environment and find security holes. 

The solution is powerful for troubleshooting and finding security holes in services. 

The scanning procedure includes UDP ports which sets it apart from competitors. 

It takes a bit of time to get familiar with the solution and its options.

A scan to determine whether a service or application is lost would be a useful addition. For example, a scan that checks whether a service in layer seven is blocked by a server or host. 

A graphic interface for Windows would be helpful. 

I have been using the solution for one year. 

The solution is really stable. 

The solution is scalable. 

I have not needed technical support. 

The setup is quite simple. 

The solution is open source so it is free. 

The solution really is not comparable to other products because of its many features. We looked at Wireshark but there's really no comparison. 

I rate the solution a nine out of ten.