ping to find self IP:
OR
From Kali:
sudo arp-scan -lit’s the VMware device that isn’t 1,2, or 254
NMAP scan:
nmap -T4 -p- -AT4 is speed, slower is better for detection, max is 5 but detects easily
-p- for scanning all ports
-p 80,443,53 (if I want to pick specific ports)
-A scan everything: version info, OS, fingerprinting, etc
Other important/usable params:
-sS for stealth scan
-sU for UDP scan
everything with an IP:
nmap -T4 -p- -A 192.168.218.129If running UDP Scan:
nmap -sU -T4 -p 192.168.218.129Because UDP takes forever to scan
NIKTO (3eeb) SCAN:
nikto -h http://192.168.218.129-h means host
