23 June 2010 | 9,624 views

nwmap v0.1 Released – Map Network From PCAP File

Check For Vulnerabilities with Acunetix

This is a neat little tool especially for people doing penetration testing assignments, especially if you’ve done some packet dumps and have PCAP files you can use nwmap to map out live IP addresses.

I’d guess it’d be used in the information gathering stage before you fire up your port scanners etc.

nwmap is basically a Perl script which takes a PCAP file as input and identifies valid subnets in the file. It then assumes a netmask of /24 and searches all those subnets for live IPs. It then groups all the IP addresses based on the number of hops.


Make sure you have the following:

  • sort
  • host(DNS lookup)
  • nmap(Port scanner)
  • tcptraceroute(traceroute to IP addresses)
  • Tshark(Network sniffer)

You can download nwmap here:


Or read more here.


Recent in Hacking Tools:
- LiME – Linux Memory Extractor
- HookME – API Based TCP Proxy Including SSL
- EvilFOCA – Network Attack Toolkit

Related Posts:
- Xplico – Network Forensic Analysis Tool
- Tshark – Network Protocol Analyzer & Traffic Dumper
- XTest – VoIP Infrastructure Security Testing Tool

Most Read in Hacking Tools:
- Top 15 Security/Hacking Tools & Utilities - 1,930,593 views
- Brutus Password Cracker – Download brutus-aet2.zip AET2 - 1,241,211 views
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 654,199 views

Low-cost VPS Hosting

Comments are closed.