Output in the three major formats at once Nmap -S Scan Facebook from Microsoft (-e eth0 -Pn may be required) Nmap -D decoy-ip1,decoy-ip2,your-own-ip,decoy-ip3,decoy-ip4 remote-host-ip Requested scan (including ping scans) use tiny fragmented IP packets. Nmap -p80 –script http-sql-injection įirewall / IDS Evasion and Spoofing SWITCH Nmap -p80 –script http-unsafe-output-escaping ĭetect cross site scripting vulnerabilities Nmap -n -Pn -p 80 –open -sV -vvv –script banner,http-title -iR 1000īrute forces DNS hostnames guessing subdomains Nmap –script snmp-sysdescr –script-args snmpcommunity=admin 192.168.1.1 Scan default, but remove intrusive scripts Specify the maximum number of port scan probe retransmissions –min-rtt-timeout/max-rtt-timeout/initial-rtt-timeout Insane (5) speeds scan assumes you are on an extraordinarily fast network Polite (2) slows down the scan to use less bandwidth and use less target machine resourcesĪggressive (4) speeds scans assumes you are on a reasonably fast and reliable network Sneaky (1) Intrusion Detection System evasion
Paranoid (0) Intrusion Detection System evasion Set the maximum number x of OS detection tries against a target If at least one open and one closed TCP port are not found it will not try OS detection against host Remote OS detection using TCP/IP stack fingerprinting SlowerĮnables OS detection, version detection, script scanning, and traceroute Higher number increases possibility of correctnessĮnable light mode. Leaving off initial port in range makes the scan start at port 1Īttempts to determine the version of the service running on port (?#find) (?P\b.+ ), (?P\b.TCP connect port scan (Default without root privilege)
Groups can be named (assume a file of lastname, firstname altered using "preg_replace()") disallow digit AND whitespace occurrences - ? * + rest of phone number means not digit OR whitespace, both match
\s whitespace (space, tab, vtab, newline) \W, \D, or \S, (NOT word, digit, or whitespace) ) shorthand classes \w "word" character (letter, digit, or underscore) \d digit gr y match gray or grey match any letter or digit (In always escape. Use \ to search for these special characters:Ĭ: \\windows matches c:\windows alternatives - | (OR) cat|dog match cat or dog order matters if short alternative is part of longer id|identity matches id or identityĪs soon as 1st alternative matches identity|id matches id or identity order longer to shorter when alternatives overlap (To match whole words, see scope and groups.) character classes - or match any vowel match a NON vowel r ng match ring, w rangle, sp rung, etc. REGEX Cheat Sheet GREP cheat sheet characters - what to seek ring matches ring, sp ringboard, ringtone, etc.
0 kommentar(er)
