Update port_scanning.md (fd73204a) · Commits · for microsoft in general / xbox / tunip3 / security

port_scanning.md

+38 −0

Original line number	Diff line number	Diff line
		@@ -121,4 +121,42 @@ Nmap has a command to make the output grepable.

		`nmap -vvv -p 80 201.210.67.0-100 -oG - \| grep 80/open`

		### Nmap scripts

		This chapter could also be placed in Vulnerability-analysis and Exploitation. Because nmap scripting is a really versatile tool that can do many things. Here we will focus on it's ability to retrieve information that can be useful in the process to find vulnerabilities


		First locate the nmap scripts. Nmap scripts end in nse. For Nmap script engine.

		```
		locate *.nse
		```

		The syntax for running a script is:

		```
		nmap --script scriptname 192.168.1.101
		```


		To find the "man"-pages, the info about a script we write:

		```
		nmap -script-help http-vuln-cve2013-0156.nse
		```

		Run multiple scripts

		Can be run by separating the script with a comma

		```
		nmap --script scriptone.nse,sciprt2.nse,script3.nse 192.168.1.101
		```

		Run the default scripts

		```
		nmap -sC example.com
		```