PenTesting con nmap:
Porte tcp Aperte?:
nmap <ip> -p- -open --reason

Porte udp Aperte?:
nmap <ip> -sU -p-

se nmap da l'err:
Note: Host seems down. If it is really up, but blocking our ping probes, try -Pn
 usare -Pn- al posto -p-


Servizi?:
nmap <ip> -p- - -open sV

cerca vulnerabilita con script NSE:
sudo nmap <iop> -p- - -open -sV -sC -vvv

anche:
sudo nmap <ip> -p- - -open -sV -vvv --script=vuln