Image

Communities

Writing
Writing
Codidact Meta
Codidact Meta
The Great Outdoors
The Great Outdoors
Photography & Video
Photography & Video
Scientific Speculation
Scientific Speculation
Cooking
Cooking
Electrical Engineering
Electrical Engineering
Judaism
Judaism
Languages & Linguistics
Languages & Linguistics
Software Development
Software Development
Mathematics
Mathematics
Christianity
Christianity
Code Golf
Code Golf
Music
Music
Physics
Physics
Linux Systems
Linux Systems
Power Users
Power Users
Tabletop RPGs
Tabletop RPGs
Community Proposals
Community Proposals
tag:snake search within a tag
answers:0 unanswered questions
user:xxxx search by author id
score:0.5 posts with 0.5+ score
"snake oil" exact phrase
votes:4 posts with 4+ votes
created:<1w created < 1 week ago
post_type:xxxx type of post
Search help
Notifications
Mark all as read See all your notifications »
Users Search
Help Dashboard Sign In Sign Up
Q&A Meta
Q&A
Posts Tags Edits
Ask Question

Default ports scanned by nmap

+3
−0

The man page of nmap says:

The simple command nmap target scans 1,000 TCP ports on the host target.

Which 1000 ports are those specifically?

networking nmap
posted 24 days ago
24d ago
user card
Matthias Braun‭
306 reputation 7 6 43 23
History

0 comment threads

1 answer

+2
−0

According to nmap's documentation, it scans the 1000 most commonly open ports.

How does it know, which ports are common? It consults the file nmap-services, located at /usr/share/nmap/nmap-services on Arch Linux that contains the column "port frequency" that determines whether a port has been commonly found open or not.

You can see the scanned ports by adding the debugging option twice to nmap, as in:

nmap -dd localhost
posted 24 days ago
user card
Matthias Braun‭
306 reputation 7 6 43 23
History

0 comment threads

Sign up to answer this question »