Scanning options
| Option | Description |
|---|
| -sn | Disables port scanning |
| -Pn | disables ICMP Echo Requests |
| -PE | performs ping scan by using ICMP Echo Requests against the target |
| —packet-trace | shows all packets sent/received |
| —disable-arp-ping | |
| —top-ports=X | scans the specified top ports |
| -p- | scans all ports |
| -pX-Y | scans ports between X and Y |
| -pX,Y | scans ports X AND Y |
| -F | scans top 100 ports |
| -sS | performs TCP SYN-Scan |
| -sA | performs an TCP ACK-Scan |
| -sU | performs an UDP scan |
| -sV | scans discovered services for their versions (scan Version) |
| -sC | performs a script scan with scripts that are categorized as default |
| —script SCRIPTNAME | script scan using the specified script |
| -O | performs an OS detection scan |
| -A | performs OS detection, Service detection and traceroute scans |
| -e | specigies the network interface thats used for the scans |
| -S IP-Address | specifies the source IP address for the scan |
| -g | specifies the source port for the scan |
| —dns-server ns | DNS resolution is performed by using a specified name server |
Output options
| Option | Description |
|---|
| -oA filename | stores the results inn all available formats starting with the name of “filename” |
| -oN | stores results in normal format with the name “filename” |
| -oG | stores the results in grepable format with the name of filename |
| -oX | stores the results in XML format |
| Nmap Option | Description |
|---|
--max-retries <num> | Sets the number of retries for scans of specific ports. |
--stats-every=5s | Displays scan’s status every 5 seconds. |
-v/-vv | Displays verbose output during the scan. |
--initial-rtt-timeout 50ms | Sets the specified time value as initial RTT timeout. |
--max-rtt-timeout 100ms | Sets the specified time value as maximum RTT timeout. |
--min-rate 300 | Sets the number of packets that will be sent simultaneously. |
-T <0-5> | Specifies the specific timing template. |
NOT finished, to be done