NMAP Cheat Sheet Flashcards

Question 1

Q

TCP SYN port scan (Default)

Answer

A

-sS

Example:
nmap 192.168.1.1 -sS

Question 2

Q

TCP connect port scan

Default without root privilege

Answer

A

-sT

Example:
nmap 192.168.1.1 -sT

Question 3

Q

UDP port scan

Answer

A

-sU

Example:
nmap 192.168.1.1 -sU

Question 4

Q

TCP ACK port scan

Answer

A

-sA

Example:
nmap 192.168.1.1 -sA

Question 5

Q

TCP Window port scan

Answer

A

-sW

Example:
nmap 192.168.1.1 -sW

Question 6

Q

TCP Maimon port scan

Answer

A

-sM

Example:
nmap 192.168.1.1 -sM

Question 7

Q

No Scan. List targets only

Answer

A

-sL

Example:
nmap 192.168.1.1-3 -sL

Question 8

Q

Disable port scanning. Host discovery only.

- Good for seeing which hosts on a network are up

Answer

A

-sn

Example:
nmap 192.168.1.1/24 -sn

Question 9

Q

Disable host discovery. Port scan only.

- Good for more intrusive scans and saves time

Answer

A

-Pn

Example:
nmap 192.168.1.1-5 -Pn

Question 10

Q

Port range

Answer

A

-p

Example:
nmap 192.168.1.1 -p 21-100

Question 11

Q

Port scan multiple TCP and UDP ports

Answer

A

-p

Example:
nmap 192.168.1.1 -p U:53,T:21-25,80

Question 12

Q

Port scan all ports

Answer

A

-p-

Example:
nmap 192.168.1.1 -p-

Question 13

Q

Fast port scan (100 ports)

Answer

A

-F

Example:
nmap 192.168.1.1 -F

Question 14

Q

Attempts to determine the version of the service running on port

Answer

A

-sV

Example:
nmap 192.168.1.1 -sV

Question 15

Q

Enables OS detection, version detection, script scanning, and traceroute

Answer

A

-A

Example:
nmap 192.168.1.1 -A

Question 16

Q

Remote OS detection using TCP/IP stack fingerprinting

Answer

A

-O

Example:
nmap 192.168.1.1 -O

Question 17

Q

Scan speed setting

- Paranoid Intrusion Detection System evasion

Answer

A

-T0

Example:
nmap 192.168.1.1 -T0

Question 18

Q

Scan speed setting

- Sneaky Intrusion Detection System evasion

Answer

A

-T1

Example:
nmap 192.168.1.1 -T1

Question 19

Q

Scan speed setting

- Polite slows down the scan to use less bandwidth and use less target machine resources

Answer

A

-T2

Example:
nmap 192.168.1.1 -T2

Question 20

Q

Scan speed setting

- Normal which is default speed

Answer

A

-T3

Example:
nmap 192.168.1.1 -T3

Question 21

Q

Scan speed setting

- Aggressive speeds scans; assumes you are on a reasonably fast and reliable network

Answer

A

-T4

Example:
nmap 192.168.1.1 -T4

Question 22

Q

Scan speed setting

- Insane speeds scan; assumes you are on an extraordinarily fast network

Answer

A

-T5

Example:
nmap 192.168.1.1 -T5

Question 23

Q

Requested scan (including ping scans) use tiny fragmented IP packets. Harder for packet filters

Answer

A

-f

Example:
nmap 192.168.1.1 -f

Question 24

Q

Send scans from spoofed IPs

Answer

A

-D

Example:
nmap -D 192.168.1.101,192.168.1.102,192.168.1.103,192.168.1.23 192.168.1.1

Question 25

Q

Use given source port number

Answer

A

-g

Example:
nmap -g 53 192.168.1.1

Question 26

Q

Normal output to the file normal.file

Answer

A

-oN

Example:
nmap 192.168.1.1 -oN normal.file

Question 27

Q

XML output to the file xml.file

Answer

A

-oX

Example:
nmap 192.168.1.1 -oX xml.file

Question 28

Q

Grepable output to the file grep.file

Answer

A

-oG

Example:
nmap 192.168.1.1 -oG grep.file

Question 29

Q

Output in the three major formats at once

Answer

A

-oA

Example:
nmap 192.168.1.1 -oA results

Question 30

Q

Increase the amount of info (use twice or more for greater effect)

Answer

A

-v

Example:
nmap 192.168.1.1 -v

Question 31

Q

Scan targets from a file

Answer

A

-iL

Example:
nmap -iL targets.txt

Question 32

Q

Scan 100 random hosts

Answer

A

-iR

Example:
nmap -iR 100

Brainscape's Knowledge GenomeTM

NMAP Cheat Sheet Flashcards

Brainscape's Knowledge Genome^TM