Nmap Scanning Workflow
Systematic approach to Nmap scanning
Network Enumeration with NmapTip: Click on any node to see related information!
Interactive Mind Map
graph TD
A[Start] --> B[Host Discovery]
B --> C[Quick Port Scan]
C --> D[Full Port Scan]
D --> E[Service Version Detection]
E --> F[Script Scanning]
F --> G[Vulnerability Scanning]
G --> H[Document Results]
Related Modules
Quick Reference
Host Discovery
nmap -sn 10.10.10.0/24 # Ping scan subnet for live hosts nmap -Pn -sS 10.10.10.5 # SYN scan host, treat as online (skip ping)
Port Scanning
nmap -p- --min-rate 10000 10.10.10.5 # Fast full port scan (all 65535 ports) nmap -sS -sV -sC -p 22,80,445 10.10.10.5 # Detailed scan (SYN, Version, Scripts) on found ports
Service/Version
nmap -sV --version-intensity 5 10.10.10.5 # Aggressive version detection
Scripts
nmap --script=vuln 10.10.10.5 # Run vulnerability scanning scripts nmap --script=smb-enum-shares 10.10.10.5 # Enumerate SMB shares via script
Output
nmap -oA scan_results 10.10.10.5 # Save results in all formats (normal, grepable, xml)