650sx

CRS

IM using Windows XP Service Pack 2
I installing nmap-5.21 TI MY Computar but when I go to CMD PATH AND GIV
AND FOR THE COMAND scan Pory
OUT PUT is lick this
C: \ nmap> nmap-p-sa www.hackingmobilephones.com 100-300
Scantype a load not
Nmap 4.65 (http://nmap.org)
Usage: nmap [Scan Type (s)] [options] (target specification)
Specifications:
Can pass hostnames, IP addresses, networks, etc.
Ex: scanme.nmap.org, microsoft.com/24, 192.168.0.1; 10.0.0-255.1-
<inputfilename> it: entry in the list of hosts / networks
hosts> <num-IR: Choose random targets
- Exclude <host1[,host2][,host3],...>: Exclude hosts / networks
- <exclude_file> ExcludeFiles: exclusion list of files
DISCOVERY OF HOST:
-SL: List Scan - simply list targets to analyze
-SP: Ping Scan - go further than determining if host is online
-PN: Treat all hosts online - skip host discovery
-PS/PA/PU Portlist []: TCP SYN / ACK or UDP discovery port data
-PE/PP/PM: ICMP echo, timestamp, and netmask request discovery pr
PO-list protocols []: IP Ping
-n/-R: Never do DNS resolution / Always set the default [: sometimes
- Dns-servers <serv1[,serv2],...>: Specify custom DNS servers
- The DNS: DNS resolver Use OS
SCAN TECHNIQUES:
-sS/sT/sA/sW/sM: TCP SYN / Connect () / ACK / Window / Maimon scans
-SU: UDP Scan
-sN/sF/sX: TCP Null, FIN, and Xmas scans
- Scanflags <flags>: Customize TCP scan flags
<zombie-SI host[:probeport]>: Idle scan
SO: IP protocol scan
B-relay <ftp Host>: FTP bounce scan
- Traceroute: Trace hop path to each host
- Purpose: Display the reason a port is in a particular state
Port specification AND scanning order:
ranges> port>-p: Only scan specified ports
Ex: P22-, U-p1-65535;-p: 53,111,137, T :21-25, 80,139,8080
-F: Fast mode - scan ports unless the default scan
-R: Scan ports consecutively - do not randomize
- High <number> ports: port scan the most common <number>
- Port <ratio> ratio: Port Scan is more common than <ratio>
Detection Service VERSION /:
-SV: Ports open probe to determine the version of Service News /
- Version <level> intensity: Set to 0 (light) to 9 (try all pro
- Version-light: Limit to most likely probes (intensity 2)
- Version-all: Try every single probe (intensity 9)
- Version-trace: Displays the detailed version scan activity (for debugging
SCRIPT SCAN:
-SC: equivalent to - script = default
- Script = <Lua scripts>: <Lua scripts> is a comma separated list o
directories, script files or script-categories
- Script-args = <n1=v1,[n2=v2,...]>: provide arguments to scripts
- Script-trace: View all data sent and received
- Script-updatedb: Update the database script.
OS detection:
-O: Enable OS detection
- Osscan-limit: limit of detection for OS promising targets
- Osscan guess: Guess OS more aggressively
TIMING AND PERFORMANCE:
Options that take <time> are in milliseconds, unless you add
(Seconds), 'm' (minutes), or 'h' (hours) to the value (eg 30 m).
-T [0-5]: Set timing template (higher is faster)
--min-hostgroup/max-hostgroup <size>: parallel analysis of SI Group Home
<time> --min-parallelism/max-parallelism: Probe parallelization
--min-rtt-timeout/max-rtt-timeout/initia ... <time>: Spe
probe release time round.
- Max-retries <tries>: Caps number of port scan probe transmission
- <time> Host-timeout: Abandon the target after this long
<time> --scan-delay/--max-scan-delay: Adjusts the delay being.