TrustRadius Insights for Nmap are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.
Pros
Extensiveness and Advanced Networking Features: Many users have praised NMap for its extensive range of advanced networking features. These reviewers found the tool to be highly comprehensive, allowing them to perform specific scans and obtain desired results.
Lightweight and Easy to Use: NMap's lightweight nature and ease of use have been highlighted by a significant number of users. They appreciated how quickly they could start up the tool without experiencing any performance issues.
Speedy Network Mapping: Several users have expressed their appreciation for NMap's speed and thoroughness in network mapping. They found the tool's network 'sweep' feature to be quick and efficient in providing an accurate map of their networks.
Loading Reviews List....
Nmap Reviews
8 Reviews
Mid-sized Companies (51-1,000 employees)
Search is temporarily unavailable. Filters are still applied.
For our organisation, we use Nmap on a weekly basis, especially in the technical departments (IT development, technical support), primarily for network troubleshooting purposes; We use it to identify network problems, see the route our network messages take geographically, and more. It is quite extensive, and I can say that after a couple of years of use, I am still sometimes surprised about new features I didn't know existed. Lately I have used it quite alot for verifying the encryption settings of our websites (TLS versions, ciphers, SSL certificates), to make sure it is up to our cybersecurity standards.
Pros
It is open source, so you can verify how it works
It is very extensive, with lots of advanced networking features
It is very lightweight and easy to start up
Cons
The learning curve is quite steep
On Windows, not all functions are available
If you do not limit your scan range, a command can take a really long time to complete
Likelihood to Recommend
Nmap is the ideal solution if you are working alot in network environments. If you come to grips with the syntax and the most-used features (the online community helps alot), you will be able to much more quickly and thoroughly troubleshoot networks or check for security vulnerabilities, for instance. It is free to use and is available for Windows and Linux, so I would say it is very much warrented for any network administrator or sysadmin to take it out for a spin.
We use Nmap to do internal vulnerability testing and identifying holes in network security. The most common use case for me is to use Nmap to identify running services on devices to spot potential weaknesses in firewall rules or router rules. Many employees are familiar with Nmap and use it as well. It helps us identify problems quickly in new environments before we move to vulnerability scanning.
Pros
Nmap is great at finding live hosts on the network
Nmap is great for teaching new cyber specialist how network reconnaissance works
Nmap is built into every major recon tool on the market, it just works when it comes to scanning
Cons
There could be more built in tools for further vulnerability scanning
command line Nmap should store recent scans automatically
More detail in the help menu for what some of the triggers actually do
Likelihood to Recommend
One of Nmaps strongest skills is the ability to gather initial evidence about networks to begin narrowing down target windows. Nmap can scan entire subnets and find only live hosts and then more intensively scan the live hosts to help identify which ones have the most vulnerable services or open ports. It is not suited for actual exploitation, just the initial steps
We use it to maintain PCI compliance by checking ports, by testing firewall rules, and to double-check what we see connected to the network. It's a great tool to identify unintended changes or open ports, or to verify our third-party scanner reports one way or the other.
Pros
Detects open ports
IDs hosts
Checking firewall rules
Cons
Maybe take some of the features of Zenmap and bake them in?
Include fancy extra graphical results charts or graphs or something to show people who you want to convey info too but have no idea what Nmap is actually doing.
I don't really think I'd change a lot actually.
Likelihood to Recommend
If you get an email saying your organization has failed its PCI scan because of a service running on a specific port that is a known port, say port 500 for a tunnel or something, and they want you to justify why port 500 is open, but you never opened port 500, you can use Nmap to check that. It's awesome in that role.
VU
Verified User
Administrator in Information Technology (51-200 employees)
Nmap is an network mapper which is used for finding the open ports in the network and also we can find the vulnerability in the network infrastructure. We've been using Nmap in our organisation since for 1.3 years. It is a very useful tool that I use for scanning and exploiting the latest vulnerability from the network and also we can find the open ports in the network devices.
Pros
Nmap is an network mapper
Finding the open ports is very easy using the Nmap
I recommended this tool all the other employees .
Cons
If there is no network we cannot use this tool
I recommended to use this tool
Likelihood to Recommend
Nmap is well suited for every network device. We use this tool to find the open ports.
It is being used in the IT department for network monitoring. It addresses a wide range of problems, testing device security, identifying unknown devices, and mapping the existing network.
Pros
Network monitoring
Port Scanning
Service enumeration.
Cons
It works perfectly as it is where features are concerned. If it is combined with Zenmap for those preferring a GUI, it's invaluable.
Likelihood to Recommend
As a new Network Admin coming into a network with virtually no documentation at the workstation OR server level, Nmap was the perfect starting point to get some idea of the types of devices on the network, the services they were running, and how they were configured at the port level.
VU
Verified User
Technician in Information Technology (201-500 employees)
The software is used by me personally. Currently, I use Nmap to sweep LANs to determine if any rogue devices are connected. Additionally, any unknown items can be port scanned, and present services determined. Similarly, for security testing, vulnerabilities of specific VMs can be discovered using NSE scripts.
Pros
Scans for open ports, giving you the option of how aggressively or lightly to scan.
Can help determine which OS and services are running on a device, again, giving the option of how aggressively to scan a device.
Cons
There is something of a learning curve in using the tool. A number of shortcuts and GUI options are available in Zenmap to simplify the process, but perhaps a more visual interface can help simplify the selection process prior to executing the Nmap command.
Likelihood to Recommend
I would say it excels in network sweeps for either inventory or footprinting. Very easy, intuitive, and the GUI does simplify the process considerably. I would say some of the more complex NSE scripts for finding holes in network security could be done a bit better, but for what it is, it is an excellent tool.
Nmap is utilized by me team of support engineers on a regular basis to identify devices that are on our companies network to see available IP addresses and what we can use to put static IP addresses on our equipment. Using Nmap at first is very confusing but after using it once or twice, it is easy and very helpful.
Pros
Nmap allows you to search IP ranges that you as the user determine
Nmap gives you a detailed list of utilized IP addresses in the range that you have identified
Nmap provides what type of device is utilizing an IP address
Cons
When scanning, you have to put in the exact numbers for it to scan, which can be annoying
Nmap is very simple and just pings IP ranges, I wish it could do more
Likelihood to Recommend
Nmap is well suited for already situated networks when looking for open IP addresses on the network. When a new piece of equipment, such as audio visual equipment, needs to have a static IP for support purposes, Nmap allows you to scan a full IP range and find an open one for you to use.
All of IT and Security uses NMap to scan systems for rogue or non-approved open ports. We also scan to be sure there are no non-approved operating systems, such as Windows XP or Vista on the network. I also use it to check open port service versions. In other words, I need to be sure that systems running an SSH server, for example, have the latest or the most secure version of the software. NMap helps us keep our systems secure. A periodic network sweep with it also keeps us updated on any new systems attached to the network and exactly what they're running. It provides a snapshot inventory, as well as, the security information. Any suspect systems can be intensely scanned and physically located for further investigation.
Pros
NMap provides a very fast and a very thorough network "sweep" that allows you to quickly map out exactly what's on your network.
NMap is highly configurable. The "canned" choices are very good in most instances, but using various switches and options, you can create a very specific scan and get exactly the results you're looking for.
NMap is easy to use. Even a new administrator will be able to use the graphical version (Zenmap) with efficiency right away.
Cons
Running stealthier scans would be a bonus. Current scans are pretty noisy.
Scans run fast, which sometimes can make it look like a system is being attacked. There is a slow, comprehensive scan option, though.
NMap scripts are written in Lua, which is not a mainstream language.
Likelihood to Recommend
NMap is well suited to just about any situation, network size, or complexity. Some have brought up the point that NMap's proxy settings need work. I haven't used NMap with a proxy. NMap is my "go to" tool for a cursory security sweep. Once a problem is found, I can perform a deeper dive scan on a system or a network. I wouldn't, and don't, use NMap as my only security tool. No single tool has all the answers. For example, it is not a Wireshark in that it does not capture packets or analyze them. It is basically a port scanner, host discovery, OS detection tool.