[AntiBrok3rs]

Came across various SB and posts mentioning Nmap a lot.

Seems most people think Nmap is default go to for all port scanning.

I do a lot of port scanning for exposed services like mongodb with no pass, ftp etc

ZMap is the winner hands down for this kind of port scanning.

Even over VPN with a 1GB port you can scan entire internet in ipv4 in less than 1 hour, for a specific port that is

For those really interested you can read up on the differences here:
https://www.secopsolution.com/blog/nmap-...ning-tools

No sense me trying to rewrite something already done

Here is another article about it:

Scan the entire web in 45 minutes with Zmap!
https://medium.com/@redfanatic7/scan-the...7e3654f9a9

[Jurak]

I've never tested Zmap, but I guess tomorrow ill do it.

[k1083]

I think that the problem with Zmap is when you are a web analyst (pentester) zmap tends to give many false positives, nmap being manipulated by terminal faster gives more accurate results, it is my opinion that I use nmap for a long time.

[AntiBrok3rs]

I think that the problem with Zmap is when you are a web analyst (pentester) zmap tends to give many false positives, nmap being manipulated by terminal faster gives more accurate results, it is my opinion that I use nmap for a long time.

Exactly my point, ZMap and Nmap really have 2 different purposes.

But Like DeepWeb and DarkWeb get confused and misused so does ZMap and NMap


ZMap is the best for discovering on the Web

NMap is goto for pentesting a network

But a lot of people do not realize the difference is why I posted this and the article for them to read.

For me since I am not into pentesting, only finding exposed sources, Zmap is my tool