Top 20 NMap Commands for Ethical Hacking - 2023

 

Nmap is a powerful network scanning tool used in ethical hacking to discover hosts, services, and vulnerabilities on a computer network. Here are the top 20 Nmap commands for ethical hacking beginners:

1. nmap -sP <target>: This command is used for host discovery and will ping the target system to determine if it is alive or not.

2. nmap -sS <target>: This command is used to perform a TCP SYN scan to determine which ports are open on the target system.

3. nmap -A <target>: This command is used for OS detection and version scanning of services running on the target system.

4. nmap -sV <target>: This command is used for version detection of services running on the target system.

5. nmap -sU <target>: This command is used to perform a UDP scan to determine which UDP ports are open on the target system.

6. nmap -O <target>: This command is used to perform an OS detection scan to determine the operating system of the target system.

7. nmap -p <port> <target>: This command is used to scan a specific port on the target system.

8. nmap -sT <target>: This command is used to perform a TCP connect scan to determine which ports are open on the target system.

9. nmap -sN <target>: This command is used to perform a TCP Null scan to determine which ports are open on the target system.

10. nmap -sF <target>: This command is used to perform a TCP FIN scan to determine which ports are open on the target system.

11. nmap -sX <target>: This command is used to perform a TCP Xmas scan to determine which ports are open on the target system.

12. nmap -sP -PS <target>: This command is used to perform a TCP SYN ping scan to determine which hosts are alive on the network.

13. nmap -sS -sU <target>: This command is used to perform a TCP SYN and UDP scan to determine which ports are open on the target system.

14. nmap -sV -sC <target>: This command is used to perform a version detection scan and run default scripts on open ports on the target system.

15. nmap -sU -p 123,161,162 <target>: This command is used to scan specific UDP ports (123, 161, and 162) on the target system.

16. nmap -Pn <target>: This command is used to skip host discovery and perform a port scan on the target system.

17. nmap -O -v <target>: This command is used to perform an OS detection scan with verbose output on the target system.

18. nmap -sA <target>: This command is used to perform a TCP ACK scan to determine which ports are filtered or unfiltered on the target system.

19. nmap -sY <target>: This command is used to perform a TCP SCTP scan to determine which ports are open on the target system.

20. nmap -sL <target>: This command is used to list all hosts on a network without scanning them.

It's important to note that some of these commands may require elevated privileges or may be considered intrusive, so it's important to obtain proper authorization before conducting any ethical hacking activities.