What is Nmap? Short for “network mapper,” nmap is a veritable toolshed of functionality to perform network scans. It can be used for security scans, simply to identify what services a host is running, to “fingerprint” the operating system and applications on a host, the type of firewall a host is using, or to do a quick inventory of a local network. It is, in short, a very good tool to know.
Here are a few quick and dirty scans:
p.s. rtfm… Nmap Ref Guide
Scan The 100 most popular ports
nmap –top-ports 100 $target
Intense Scan
nmap -T4 -A -v -PE -PS22,25,80 -PA21,23,80,3389
Intense Scan Plus UDP
nmap -sS -sU -T4 -A -v -PE -PS22,25,80 -PA21,23,80,3389
Intense Scan, All TCP Ports
nmap -p 1-65535 -T4 -A -v -PE -PS22,25,80 -PA21,23,80,3389
Intense Scan, No Ping
nmap -T4 -A -v -PN
Ping Scan
nmap -sP -PE -PA21,23,80,3389
Quick Scan
nmap -T4 -F
Quick Scan Plus
nmap -sV -T4 -O -F –version-light
Quick Traceroute
nmap -sP -PE -PS22,25,80 -PA21,23,80,3389 -PU -PO –traceroute
Regular Scan
nmap
Slow Comprehensive Scan
nmap -sS -sU -T4 -A -v -PE -PP -PS21,22,23,25,80,113,31339 -PA80,113,443,10042 -PO --script all
grinchy scan
nmap -p 1-65535 -sT -PN -T2 -A -v -v ip.ip.ip.ip
