Nmap for Advanced Network Reconnaissance Nmap isn’t just a port scanner — it’s your Swiss Army knife for network discovery and reconnaissance. -> Use this powerful command for a deep scan: nmap -sS -sV -T4 -A -p- --script=vuln -oN full_scan.txt 🔍 Explanation of flags: -sS: Stealth SYN scan -sV: Detect service versions -T4: Speed up the scan -A: Enable OS detection, version detection, script scanning, and traceroute -p-: Scan all 65535 ports --script=vuln: Run vulnerability detection scripts -oN: Save output in normal format 📂 Output is saved in full_scan.txt — perfect for report building and offline analysis! 🔥 Pro tip: Combine with --script http-* to enumerate HTTP services in depth!