New Nmap probes IPv6 networks

Nmap version 6.0 features many significant enhancements, including full support for IPv6

Preparing for the eventual widespread conversion to IPv6, the Nmap Project has updated its namesake security scanning tool so it can scan IPv6 networks using a variety of novel techniques.

Nmap Security Scanner version 6.0 is the first major update for the free, open source security-testing tool since version 5 was released in 2009, and features some major updated and new features, as well as a variety of cosmetic changes and performance improvements. Overall, the project and associated volunteers have made more than 3,900 changes to the code base.

The project has timed the release of Nmap 6.0 to coincide with this year's World IPv6 Launch, in which a variety of Internet Service Providers and Web companies -- such as Comcast, AT&T, Facebook and Google -- pledge to offer IPv6 services. Organized by the Internet Society, World IPv6 Launch day will be held June 6 this year.

In addition to IPv6 support, the updated software comes with improvements to the scripting engine and the GUI (graphical user interface). It can also scan a network more quickly and deliver more information about Web hosts. It also comes with a new tool to generate packets and analyze results.

Nmap, short for Network Mapper, is a tool for gathering more information about all the nodes on a network. Although primarily designed for security testing, Nmap is also used by system administrators to inventory the resources on their networks. Using IP packets, it identifies what operating system a host uses, if there are firewalls in place, what ports are open, and a great deal of other related information.

Earlier versions of Nmap offered some IPv6 tools, namely port scans, basic host discovery, version detection, and use of the scripting engine. This release expands upon these capabilities offering a traceroute utility, a neighbor-discovery ping utility and the ability to detect operating systems.

Nmap also expands upon the number of ways that it can scan a IPv6 network. Because even a smaller network's IPv6 address space is too large to scan on a possible address-by-address basis, this software uses a number of novel techniques to find hosts, by clever use of multicasting, invalid header addresses, and other techniques.

Much work has been done on improving the Nmap Scripting Engine (NSE). NSE allows users to compose and run scripts that automate routine tasks, such as discovering hosts and querying devices for configuration information. The project has organized the underlying infrastructure for the engine, and added 289 scripts.

Nmap 6.0 also comes with a new tool called Nping that generates and sends out packets, as well as analyzes the results of how quickly hosts respond to these packets. It can be used to detect hosts on a network through a variety of different protocols. It can also be used to stress test networks and to better understand firewalls.

Nmap binaries are available for Linux, Windows, and Mac OS X. Although it runs from the command line, Nmap also includes a GUI (Graphical User Interface) called Zenmap, which has been redesigned for this release.

Joab Jackson covers enterprise software and general technology breaking news for The IDG News Service. Follow Joab on Twitter at @Joab_Jackson. Joab's e-mail address is

Join the CSO newsletter!

Error: Please check your email address.

More about Comcast CableFacebookGoogleIDGLinux

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Joab Jackson

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place