IT Security

Nmap

See below for some of the default scans from Zenmap that you can use from the command line.

Intense Scan

  • nmap -T4 -A -v <target>

Intense Scan plus UDP

  • nmap -sS -sU -T4 -A -v <target>

Intense Scan, All TCP ports

  • nmap -p 1-65535 -T4 -A -v <target>

Intense Scan, no ping

  • nmap -T4 -A -v -Pn <target>

Ping Scan

  • nmap -sn <target>

Quick Scan

  • nmap -T4 -F <target>

Quick Scan plus

  • nmap -sV -T4 -O -F --version-light <target>

Quick traceroute

  • nmap -sn --traceroute <target>

Regular Scan

  • nmap <target>

Slow Comprehensive Scan

  • nmap -sS -sU -T4 -A -v -PE -PP -PS80,443 -PA3389 -PU40125 -PY -g 53 --script "default or (discovery and safe)" <target>


Vuln Scan - NSE

  • nmap -sV --script vulscan/vulscan.nse <target>

https://securitytrails.com/blog/nmap-vulnerability-scan