recon-nmap

# Nmap Network Reconnaissance ## Overview Nmap (Network Mapper) is the industry-standard tool for network discovery, security auditing, and vulnerability assessment. This skill provides structured workflows for authorized reconnaissance operations including port scanning, service enumeration, OS fingerprinting, and vulnerability detection using Nmap Scripting Engine (NSE). **IMPORTANT**: Network scanning may be disruptive and must only be conducted with proper authorization. Always ensure written permission before scanning networks or systems you do not own. ## Quick Start Basic host discovery and port scanning: ```bash # Quick scan of common ports nmap -F <target-ip> # Scan top 1000 ports with service detection nmap -sV <target-ip> # Comprehensive scan with OS detection and default scripts nmap -A <target-ip> ``` ## Core Workflow ### Network Reconnaissance Workflow Progress: [ ] 1. Verify authorization and scope [ ] 2. Perform host discovery and asset enumeration [ ] 3. Conduct port scanning on live hosts [ ] 4. Enumerate services and versions [ ] 5. Perform OS fingerprinting and detection [ ] 6. Run NSE scripts for vulnerability detection [ ] 7. Document findings and generate reports [ ] 8. Validate results and identify false positives Work through each step systematically. Check off completed items. ### 1. Authorization Verification **CRITICAL**: Before any scanning activities: - Confirm written authorization from network owner - Review scope document for in-...