port-scanning

Quick Nmap Scan

nmap target.com
nmap -p- target.com
nmap -sV target.com
nmap -sU target.com
nmap -sS target.com
nmap -U target.com
nmap -iL target.com
----
masscan -p0-65535 target.com --rate=10000
rustscan -a target.com
zmap -p 80 target.com

Web & Lightweight Scan

nabbu -host target.com
unicornscan -Iv target.com
scanless -t target.com
nassuscli --list-targets

Manual Scan

nc -zv target.com 1-1000
telnet target.com 80
hping3 -S target.com -p 80 -c 1
scapy

scapy

pip install scapy

sr1(IP(dst="target.com")/TCP(dport=80), flags="S")

it sends the TCP SYN packet to port 80 and waits for a response

ans, unans = sr(IP(dst="target.com")/TCP(dport=(20,25), flags="S"))

scan range is 20 to 25 Analyze response

for s,r in ans:
    if r.haslayer(TCP) and r[TCP].flags == "SA":
        print(f"Port {s[TCP].dport} is open")

Previousos-fingerprinting NextProtocol Scan

Last updated 18 hours ago