NoSociety.de

You've loaded an old revision of the document! If you save it, you will create a new version with this data.

{{tag>deutsch startpage linux kali it-security pentest}}
====== Helpful NMAP scanner commands ======

Here are some very useful commands for NMAP.

===== Command Set =====

==== Discover Hosts ====

<code bash>
export IPRANGE='172.16.0.0/16'
nmap -e tun0 -sn -v -oA pingscan $IPRANGE
</code>

==== Parse Results ====

<code bash>
grep Up pingscan.gnmap | awk '{print$2}' > 172_16_ping_ips.txt
</code>

==== Discover Services ====

==== Discover more Hosts ====

<code bash>
nmap -PE -PS80,443,3389 -PP -PU40125,161 -PA21 --source-port 53 $IPRANGE
</code>

----

===== Other commands =====

==== Ping Scan ====

==== quick scan ====

==== Systematic scan ====

<code bash>
nmap -e tun0 -PE -sn -n -oA pingscan 172.16.0.0/16
</code>

<code bash>
grep Up pingscan.gnmap | awk '{print$2}' > 172_16_ping_ips.txt
</code>

<code bash>
nmap -e tun0 -sSV -O --top-ports 3800 -oA portscan172_ping_ips -iL 172_16_ping_ips.txt
</code>

==== Targeted scanning ====

<code bash>
nmap -v -A -O -oX /root/op.xml -iL /home/kali/Desktop/hosts.txt
</code>

<code text>
-A: Enable OS detection, version detection, script scanning, and traceroute
-O: Enable OS detection
-oN/-oX/-oS/-oG <file>: Output scan in normal, XML, s|<rIpt kIddi3,
     and Grepable format, respectively, to the given filename.
-iL <inputfilename>: Input from list of hosts/networks
</code>

==== Scan host services ====

==== Scan vulnerabilities ====

<code>nmap -v --script vuln $IP</code>

==== Disguise NMAP scans ====

<code bash>
--scan-delay/--max-scan-delay <time>: Adjust delay between probes
</code>

==== Banner Grabbing ====

<code>nmap -sV --script=banner <target></code>

Please solve the following equation to prove you're human. 228 -10 = Please keep this field empty:

Edit summary

Note: By editing this page you agree to license your content under the following license: CC Attribution-Noncommercial-Share Alike 4.0 International