Skip to content

cyb3ralpha/nmap-guide

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

5 Commits
README.md
README.md
Β 
Β 

Repository files navigation

πŸ›‘οΈ Ultimate Nmap Commands Cheat Sheet

Your comprehensive guide to mastering Nmap, the essential tool for network discovery and security auditing.

πŸ“‹ Table of Contents

  1. Basic Scanning Techniques
  2. Port Specification
  3. Services and Version Detection
  4. Scan Types
  5. Scripting Engine
  6. Output Options
  7. Timing and Performance
  8. Firewall Evasion
  9. Miscellaneous Options

πŸ“– Basic Scanning Techniques

Command Description
nmap <target ip> Scan a single target
nmap <target1 target2> Scan multiple targets
nmap -iL targets.txt Scan targets from a file
nmap -sn <target> Ping scan to determine if the host is online

βš™οΈ Port Specification

Command Description
nmap -p <port> <target> Scan a specific port
nmap -p- <target> Scan all 65,535 ports
nmap -F <target> Scan the 100 most common ports
nmap -p 20-100 <target> Scan a range of ports

πŸ” Services and Version Detection

Command Description
nmap -sV <target> Service and version detection
nmap -A <target> Aggressive scan (OS detection, version, scripts)
nmap --version-intensity 0-9 <target> Adjust version detection intensity

πŸ“‘ Scan Types

Command Description
nmap -sS <target> SYN scan (stealth scan)
nmap -sT <target> Connect scan (TCP)
nmap -sU <target> UDP scan
nmap -sA <target> ACK scan
nmap -sN <target> NULL scan (no flag set)
nmap -sF <target> FIN scan (FIN flag set)
nmap -sX <target> XMAS scan (FIN, URG, and PSH flags set)
nmap -sO <target> Protocol scan (Determine supported protocols)
nmap -sP <target> Ping scan (no port scan)

πŸ“œ Scripting Engine

Command Description
nmap --script <scriptname> <target> Run a specific script
nmap --script vuln <target> Scan for vulnerabilities using scripts
nmap --script-help <scriptname> Get help for a specific script
nmap --script-updatedb Update the script database

πŸ“€ Output Options

Command Description
nmap -oN output.txt <target> Save normal output to a file
nmap -oX output.xml <target> Save output in XML format
nmap -oG output.grep <target> Save output in grepable format

⚑ Timing and Performance

Command Description
nmap -T<0-5> <target> Set timing template (0=paranoid, 5=insane)
nmap --max-retries 3 <target> Set the maximum number of retries
nmap --max-scan-delay <time> <target> Set maximum delay between probes
nmap --min-parallelism <number> <target> Set minimum parallelism

πŸ›‘οΈ Firewall Evasion

Command Description
nmap -f <target> Use fragmented IP packets
nmap --mtu <value> <target> Set MTU to bypass firewall filters
nmap --data-length <value> <target> Append random data to scan packets
nmap --ip-options <options> <target> Specify IP options to use during scanning

πŸ”§ Miscellaneous Options

Command Description
nmap -v <target> Increase verbosity (use multiple times for more)
nmap -d <target> Debugging output
nmap --stats-every <time> <target> Display stats periodically
nmap --reason <target> Show reason for the port state
nmap --traceroute <target> Perform traceroute
nmap --iflist List available interfaces

πŸ“‚ Examples

  • Scan a single target: 
    nmap 192.168.1.1
  • Aggressive scan with OS detection: 
    nmap -A example.com
  • Run a vulnerability script: 
    nmap --script vuln 192.168.1.1

πŸ“¬ Stay Connected

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published