Nmap is a great tool for network forensics. Remember to use this tool with digression since it can probe ranges of IP/Subnets and ports opened or filtered on them. Rule of thumbs is it's not nice to run on ranges not on your network or not owned by you.

Useful commands:

nmap -sS -PS80 -iR 0 -p 80 –exclude ,

nmap -sP