Nmap Network Scanner

Network Reconnaissance & Asset Discovery

Nmap ("Network Mapper") is the de facto standard for network discovery and security auditing. It uses raw IP packets to determine what hosts are available, what services they're running, what operating systems they use, and hundreds of other characteristics.

🔴 RED TEAM Perspective

Use Nmap for reconnaissance and enumeration: discover live hosts, identify open ports, fingerprint services and OS versions, find vulnerabilities with NSE scripts. Map the attack surface before exploitation.

🔵 BLUE TEAM Perspective

Use Nmap for asset discovery and inventory: maintain accurate network maps, detect unauthorized devices, verify firewall rules, identify misconfigured services, and validate security hardening efforts.

🟣 PURPLE TEAM Mindset

Nmap is quintessentially Purple Team—the exact same scans reveal what attackers see AND what defenders need to know. Understanding both perspectives makes you better at offense and defense.

Scan Configuration

Target Network/Host

Scan Type

Service Detection (-sV)

Run NSE default scripts (--script=default)

Timing Template: T3 (Normal)

ParanoidNormalInsane

Command:

nmap -sS -sV -T3 192.168.1.0/24

Legal Notice: Only scan networks and systems you own or have explicit written authorization to test. Unauthorized network scanning is illegal in most jurisdictions and violates computer fraud laws (CFAA, Computer Misuse Act).

Nmap Network Scanner

What is Nmap?

🔴 RED TEAM Perspective

🔵 BLUE TEAM Perspective

🟣 PURPLE TEAM Mindset

TCP/UDP Scan Techniques

Service & OS Detection

NSE Scripting Engine

Timing & Performance

Scan Configuration