\documentclass[10pt,a4paper]{article}

% Packages
\usepackage{fancyhdr}           % For header and footer
\usepackage{multicol}           % Allows multicols in tables
\usepackage{tabularx}           % Intelligent column widths
\usepackage{tabulary}           % Used in header and footer
\usepackage{hhline}             % Border under tables
\usepackage{graphicx}           % For images
\usepackage{xcolor}             % For hex colours
%\usepackage[utf8x]{inputenc}    % For unicode character support
\usepackage[T1]{fontenc}        % Without this we get weird character replacements
\usepackage{colortbl}           % For coloured tables
\usepackage{setspace}           % For line height
\usepackage{lastpage}           % Needed for total page number
\usepackage{seqsplit}           % Splits long words.
%\usepackage{opensans}          % Can't make this work so far. Shame. Would be lovely.
\usepackage[normalem]{ulem}     % For underlining links
% Most of the following are not required for the majority
% of cheat sheets but are needed for some symbol support.
\usepackage{amsmath}            % Symbols
\usepackage{MnSymbol}           % Symbols
\usepackage{wasysym}            % Symbols
%\usepackage[english,german,french,spanish,italian]{babel}              % Languages

% Document Info
\author{coffeefueled}
\pdfinfo{
  /Title (network-recon.pdf)
  /Creator (Cheatography)
  /Author (coffeefueled)
  /Subject (Network Recon Cheat Sheet)
}

% Lengths and widths
\addtolength{\textwidth}{6cm}
\addtolength{\textheight}{-1cm}
\addtolength{\hoffset}{-3cm}
\addtolength{\voffset}{-2cm}
\setlength{\tabcolsep}{0.2cm} % Space between columns
\setlength{\headsep}{-12pt} % Reduce space between header and content
\setlength{\headheight}{85pt} % If less, LaTeX automatically increases it
\renewcommand{\footrulewidth}{0pt} % Remove footer line
\renewcommand{\headrulewidth}{0pt} % Remove header line
\renewcommand{\seqinsert}{\ifmmode\allowbreak\else\-\fi} % Hyphens in seqsplit
% This two commands together give roughly
% the right line height in the tables
\renewcommand{\arraystretch}{1.3}
\onehalfspacing

% Commands
\newcommand{\SetRowColor}[1]{\noalign{\gdef\RowColorName{#1}}\rowcolor{\RowColorName}} % Shortcut for row colour
\newcommand{\mymulticolumn}[3]{\multicolumn{#1}{>{\columncolor{\RowColorName}}#2}{#3}} % For coloured multi-cols
\newcolumntype{x}[1]{>{\raggedright}p{#1}} % New column types for ragged-right paragraph columns
\newcommand{\tn}{\tabularnewline} % Required as custom column type in use

% Font and Colours
\definecolor{HeadBackground}{HTML}{333333}
\definecolor{FootBackground}{HTML}{666666}
\definecolor{TextColor}{HTML}{333333}
\definecolor{DarkBackground}{HTML}{A3A3A3}
\definecolor{LightBackground}{HTML}{F3F3F3}
\renewcommand{\familydefault}{\sfdefault}
\color{TextColor}

% Header and Footer
\pagestyle{fancy}
\fancyhead{} % Set header to blank
\fancyfoot{} % Set footer to blank
\fancyhead[L]{
\noindent
\begin{multicols}{3}
\begin{tabulary}{5.8cm}{C}
    \SetRowColor{DarkBackground}
    \vspace{-7pt}
    {\parbox{\dimexpr\textwidth-2\fboxsep\relax}{\noindent
        \hspace*{-6pt}\includegraphics[width=5.8cm]{/web/www.cheatography.com/public/images/cheatography_logo.pdf}}
    }
\end{tabulary}
\columnbreak
\begin{tabulary}{11cm}{L}
    \vspace{-2pt}\large{\bf{\textcolor{DarkBackground}{\textrm{Network Recon Cheat Sheet}}}} \\
    \normalsize{by \textcolor{DarkBackground}{coffeefueled} via \textcolor{DarkBackground}{\uline{cheatography.com/25996/cs/7096/}}}
\end{tabulary}
\end{multicols}}

\fancyfoot[L]{ \footnotesize
\noindent
\begin{multicols}{3}
\begin{tabulary}{5.8cm}{LL}
  \SetRowColor{FootBackground}
  \mymulticolumn{2}{p{5.377cm}}{\bf\textcolor{white}{Cheatographer}}  \\
  \vspace{-2pt}coffeefueled \\
  \uline{cheatography.com/coffeefueled} \\
  \end{tabulary}
\vfill
\columnbreak
\begin{tabulary}{5.8cm}{L}
  \SetRowColor{FootBackground}
  \mymulticolumn{1}{p{5.377cm}}{\bf\textcolor{white}{Cheat Sheet}}  \\
   \vspace{-2pt}Published 11th February, 2016.\\
   Updated 13th May, 2016.\\
   Page {\thepage} of \pageref{LastPage}.
\end{tabulary}
\vfill
\columnbreak
\begin{tabulary}{5.8cm}{L}
  \SetRowColor{FootBackground}
  \mymulticolumn{1}{p{5.377cm}}{\bf\textcolor{white}{Sponsor}}  \\
  \SetRowColor{white}
  \vspace{-5pt}
  %\includegraphics[width=48px,height=48px]{dave.jpeg}
  Measure your website readability!\\
  www.readability-score.com
\end{tabulary}
\end{multicols}}




\begin{document}
\raggedright
\raggedcolumns

% Set font size to small. Switch to any value
% from this page to resize cheat sheet text:
% www.emerson.emory.edu/services/latex/latex_169.html
\footnotesize % Small font.

\begin{multicols*}{3}

\begin{tabularx}{5.377cm}{X}
\SetRowColor{DarkBackground}
\mymulticolumn{1}{x{5.377cm}}{\bf\textcolor{white}{Nmap Base Syntax}}  \tn
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{\# nmap {[}Scan Type{]} {[}Options{]} \{targets\}} \tn 
\hhline{>{\arrayrulecolor{DarkBackground}}-}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{X}
\SetRowColor{DarkBackground}
\mymulticolumn{1}{x{5.377cm}}{\bf\textcolor{white}{Target Specification}}  \tn
% Row 0
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{Single IPv4: `192.168.1.1`} \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{Single IPv6: `AAAA::FF`} \tn 
% Row Count 2 (+ 1)
% Row 2
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{FQDN: `host.local`} \tn 
% Row Count 3 (+ 1)
% Row 3
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{IPv4 Range: `192.168.1.27-78`} \tn 
% Row Count 4 (+ 1)
% Row 4
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{CIDR Block: `192.168.1.0/16`} \tn 
% Row Count 5 (+ 1)
% Row 5
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{File: `-iL targets.txt`} \tn 
% Row Count 6 (+ 1)
\hhline{>{\arrayrulecolor{DarkBackground}}-}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{p{0.69678 cm} x{4.28022 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{Host Discovery Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
`-sL` & list hosts and reverse DNS \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
`-sn` & discovery probes only \tn 
% Row Count 2 (+ 1)
% Row 2
\SetRowColor{LightBackground}
`-Pn` & skip discovery stage \tn 
% Row Count 3 (+ 1)
% Row 3
\SetRowColor{white}
`-n` & disable reverse DNS resolution \tn 
% Row Count 4 (+ 1)
% Row 4
\SetRowColor{LightBackground}
`-R` & force reverse DNS resolution \tn 
% Row Count 5 (+ 1)
% Row 5
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{\{\{nobreak\}\}`-{}-dns-servers \textless{}list\textgreater{}`} \tn 
% Row Count 6 (+ 1)
\hhline{>{\arrayrulecolor{DarkBackground}}--}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{x{2.28942 cm} x{2.68758 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{Scan Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{{\bf{TCP Scan Types}}} \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
`-sS` & SYN \tn 
% Row Count 2 (+ 1)
% Row 2
\SetRowColor{LightBackground}
`-sT` & Connect \tn 
% Row Count 3 (+ 1)
% Row 3
\SetRowColor{white}
`-sN` & NULL \tn 
% Row Count 4 (+ 1)
% Row 4
\SetRowColor{LightBackground}
`-sF` & FIN \tn 
% Row Count 5 (+ 1)
% Row 5
\SetRowColor{white}
`-sX` & Xmas (FIN, PSH, URG) \tn 
% Row Count 6 (+ 1)
% Row 6
\SetRowColor{LightBackground}
`-sA` & ACK \tn 
% Row Count 7 (+ 1)
% Row 7
\SetRowColor{white}
`-sW` & Window \tn 
% Row Count 8 (+ 1)
% Row 8
\SetRowColor{LightBackground}
`-sM` & FIN/ACK \tn 
% Row Count 9 (+ 1)
% Row 9
\SetRowColor{white}
`-sI \textless{}zombie host\textgreater{}` & use zombie \tn 
% Row Count 11 (+ 2)
% Row 10
\SetRowColor{LightBackground}
`-{}-scanflags {[}flags{]}` & \seqsplit{`URG/ACK/PSH/RST/SYN/FIN`} \tn 
% Row Count 13 (+ 2)
% Row 11
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{{\bf{UDP Scan}}} \tn 
% Row Count 14 (+ 1)
% Row 12
\SetRowColor{LightBackground}
`-sU` & UDP \tn 
% Row Count 15 (+ 1)
% Row 13
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{{\bf{SCTP Scan Types}}} \tn 
% Row Count 16 (+ 1)
% Row 14
\SetRowColor{LightBackground}
`-sY` & INIT \tn 
% Row Count 17 (+ 1)
% Row 15
\SetRowColor{white}
`-sZ` & COOKIE ECHO \tn 
% Row Count 18 (+ 1)
% Row 16
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{{\bf{Protocol Scan}}} \tn 
% Row Count 19 (+ 1)
% Row 17
\SetRowColor{white}
`-sO` & IP Protocol Scan \tn 
% Row Count 20 (+ 1)
\hhline{>{\arrayrulecolor{DarkBackground}}--}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{X}
\SetRowColor{DarkBackground}
\mymulticolumn{1}{x{5.377cm}}{\bf\textcolor{white}{-p - Port Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{Exclude ports} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-exclude ports \textless{}port ranges\textgreater{}`} \tn 
% Row Count 2 (+ 2)
% Row 1
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{Protocol specification} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`T21-25` - TCP ports 21 to 25\{\{nl\}\}`U53,111,137` - UDP ports 53, 111, 137\{\{nl\}\}`S22` - SCTP port 22\{\{nl\}\}`P` - IP Protocol} \tn 
% Row Count 6 (+ 4)
% Row 2
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{Fast port scan} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-F` - scan top 100 ports (default 1000)} \tn 
% Row Count 8 (+ 2)
% Row 3
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{Sequential port scan} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-r` - sequential scan (default random)} \tn 
% Row Count 10 (+ 2)
% Row 4
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{Ports in nmap-services file} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`{[}1-65535{]}` - ports in nmap-services\{\{nl\}\}`-{}-port-ratio` - ports with greater ratio\{\{nl\}\}`-{}-top-ports \textless{}n\textgreater{}` - n highest ratio} \tn 
% Row Count 14 (+ 4)
\hhline{>{\arrayrulecolor{DarkBackground}}-}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{x{2.04057 cm} x{2.93643 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{-o - OS Detection Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
`-{}-osscan-limit` & only live machines \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
`-{}-fuzzy` & low-probability guesses \tn 
% Row Count 2 (+ 1)
\hhline{>{\arrayrulecolor{DarkBackground}}--}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{x{1.79172 cm} x{3.18528 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{Output Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
`-v|vv|vvv` & verbosity \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
`-d\textless{}0-9\textgreater{}` & debugging \tn 
% Row Count 2 (+ 1)
% Row 2
\SetRowColor{LightBackground}
`-{}-reason` & explain port and host states \tn 
% Row Count 4 (+ 2)
% Row 3
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{\{\{bt\}\}{\bf{File Outputs}}} \tn 
% Row Count 5 (+ 1)
% Row 4
\SetRowColor{LightBackground}
`-oN \textless{}file\textgreater{}` & normal \tn 
% Row Count 6 (+ 1)
% Row 5
\SetRowColor{white}
`oX \textless{}file\textgreater{}` & XML \tn 
% Row Count 7 (+ 1)
% Row 6
\SetRowColor{LightBackground}
`-oS \textless{}file\textgreater{}` & script kiddie \tn 
% Row Count 8 (+ 1)
% Row 7
\SetRowColor{white}
`-oG \textless{}file\textgreater{}` & grepable \tn 
% Row Count 9 (+ 1)
% Row 8
\SetRowColor{LightBackground}
`-oA \textless{}basename\textgreater{}` & all \tn 
% Row Count 11 (+ 2)
\hhline{>{\arrayrulecolor{DarkBackground}}--}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{X}
\SetRowColor{DarkBackground}
\mymulticolumn{1}{x{5.377cm}}{\bf\textcolor{white}{Scripting Engine Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{Use default scripts} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-sC`\{\{nl\}\}`-{}-script=default`} \tn 
% Row Count 2 (+ 2)
% Row 1
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{Run scripts (individual or list)} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-script`\{\{nl\}\}~~~`\textless{}filename\textgreater{}` - script filename\{\{nl\}\}~~~`\textless{}category\textgreater{}` - category of scripts\{\{nl\}\}~~~`\textless{}directory\textgreater{}` - scripts in directory\{\{nl\}\}~~~`\textless{}expression\textgreater{}` - boolean expression\{\{nl\}\}~~~`{[},...{]}` - continue comma separated list} \tn 
% Row Count 10 (+ 8)
% Row 2
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{Script arguments} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-script-args`\{\{nl\}\}~~~`\textless{}n1\textgreater{}=\textless{}v1\textgreater{}`\{\{nl\}\}~~~`\textless{}n2\textgreater{}=\{\textless{}n3\textgreater{}=\textless{}v3\textgreater{}\}`\{\{nl\}\}~~~`\textless{}n4\textgreater{}=\{\textless{}v4\textgreater{},\textless{}v5\textgreater{}\}`} \tn 
% Row Count 14 (+ 4)
% Row 3
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{Load script args from a file} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-script-args-file \textless{}filename\textgreater{}`} \tn 
% Row Count 16 (+ 2)
% Row 4
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{Debug information} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-script-trace`} \tn 
% Row Count 18 (+ 2)
% Row 5
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{Update script database} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-script-updatedb`} \tn 
% Row Count 20 (+ 2)
\hhline{>{\arrayrulecolor{DarkBackground}}-}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{X}
\SetRowColor{DarkBackground}
\mymulticolumn{1}{x{5.377cm}}{\bf\textcolor{white}{-sV - Version Detection Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{send less common probes (default 7)} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-version intensity \textless{}0-9\textgreater{}`} \tn 
% Row Count 2 (+ 2)
% Row 1
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{light version scanning (intensity 2)} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-version light`} \tn 
% Row Count 4 (+ 2)
% Row 2
\SetRowColor{LightBackground}
\mymulticolumn{1}{x{5.377cm}}{full version scanning (intensity 9)} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-version-all`} \tn 
% Row Count 6 (+ 2)
% Row 3
\SetRowColor{white}
\mymulticolumn{1}{x{5.377cm}}{debug information} \tn 
\mymulticolumn{1}{x{5.377cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}`-{}-version-trace`} \tn 
% Row Count 8 (+ 2)
\hhline{>{\arrayrulecolor{DarkBackground}}-}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{x{2.4885 cm} x{2.4885 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{Miscellaneous Options}}  \tn
% Row 0
\SetRowColor{LightBackground}
`-6` & IPv6 \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
`-A` & Aggressive \textasciicircum{}`-O -sV -sC -{}-traceroute`\textasciicircum{} \tn 
% Row Count 3 (+ 2)
% Row 2
\SetRowColor{LightBackground}
`-T`\{\{nl\}\}~~~`paranoid|0`\{\{nl\}\}~~~`sneaky|1`\{\{nl\}\}~~~`polite|2`\{\{nl\}\}~~~`normal|3`\{\{nl\}\}~~~`aggressive|4`\{\{nl\}\}~~~`insane|5` & Timing options\{\{nl\}\}slowest scan\{\{nl\}\}slower scan\{\{nl\}\}slow scan\{\{nl\}\}default\{\{nl\}\}faster scan\{\{nl\}\}fastest scan \tn 
% Row Count 14 (+ 11)
% Row 3
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{\{\{bt\}\}{\bf{Runtime Commands}}} \tn 
% Row Count 15 (+ 1)
% Row 4
\SetRowColor{LightBackground}
`v|V` & +|- verbosity \tn 
% Row Count 16 (+ 1)
% Row 5
\SetRowColor{white}
`d|D` & +|- debugging \tn 
% Row Count 17 (+ 1)
% Row 6
\SetRowColor{LightBackground}
`p|P` & on|off packet tracing \tn 
% Row Count 19 (+ 2)
\hhline{>{\arrayrulecolor{DarkBackground}}--}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{x{2.4885 cm} x{2.4885 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{DNS Enumeration}}  \tn
% Row 0
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{{\bf{dnsrecon}}} \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
`-{}-domain` & domain to target \tn 
% Row Count 2 (+ 1)
% Row 2
\SetRowColor{LightBackground}
`-{}-range` & IP range for reverse lookup \tn 
% Row Count 4 (+ 2)
% Row 3
\SetRowColor{white}
`-{}-name\_server` & DNS server \tn 
% Row Count 5 (+ 1)
% Row 4
\SetRowColor{LightBackground}
`-{}-dictionary \textless{}file\textgreater{}` & dictionary of targets \tn 
% Row Count 7 (+ 2)
% Row 5
\SetRowColor{white}
`-{}-type`\{\{nl\}\}~~~~`std`\{\{nl\}\}~~~~`goo`\{\{nl\}\}~~~~`axfr`\{\{nl\}\}~~~~`tld` & type of enumeration\{\{nl\}\}~~~~standard\{\{nl\}\}~~~~Google sub-domains\{\{nl\}\}~~~~test for zone transfers\{\{nl\}\}~~~~test against IANA TLDs \tn 
% Row Count 18 (+ 11)
% Row 6
\SetRowColor{LightBackground}
`-w` & deep whois analysis \tn 
% Row Count 19 (+ 1)
% Row 7
\SetRowColor{white}
`-{}-csv` & export to CSV \tn 
% Row Count 20 (+ 1)
% Row 8
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{\{\{bt\}\}{\bf{dnsenum}}} \tn 
% Row Count 21 (+ 1)
% Row 9
\SetRowColor{white}
`-{}-dnsserver \textless{}server\textgreater{}` & target dns server \tn 
% Row Count 23 (+ 2)
% Row 10
\SetRowColor{LightBackground}
`-{}-subfile \textless{}file\textgreater{}` & output file \tn 
% Row Count 24 (+ 1)
\hhline{>{\arrayrulecolor{DarkBackground}}--}
\end{tabularx}
\par\addvspace{1.3em}

\begin{tabularx}{5.377cm}{x{2.4885 cm} x{2.4885 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{Service Enumeration}}  \tn
% Row 0
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{{\bf{Useful command lines}}} \tn 
% Row Count 1 (+ 1)
% Row 1
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{`nmap -v -p \textless{}ports\textgreater{} -oG \textless{}file\textgreater{} \textless{}address range\textgreater{}`} \tn 
% Row Count 2 (+ 1)
% Row 2
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{`ls -l /usr/share/nmap/scripts/\textless{}protocol\textgreater{}*`} \tn 
% Row Count 3 (+ 1)
% Row 3
\SetRowColor{white}
{\bf{SMB}}\{\{bt\}\} & TCP 139,445\{\{bt\}\} \tn 
% Row Count 4 (+ 1)
% Row 4
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{{\bf{`nbtscan`}}} \tn 
% Row Count 5 (+ 1)
% Row 5
\SetRowColor{white}
~~~~`-r` & use port 137 \tn 
% Row Count 7 (+ 2)
% Row 6
\SetRowColor{LightBackground}
~~~~`\textless{}address range\textgreater{}` & targets \tn 
% Row Count 10 (+ 3)
% Row 7
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{{\bf{`enum4linux`}}} \tn 
% Row Count 11 (+ 1)
% Row 8
\SetRowColor{LightBackground}
~~~~`-a` & all simple enumeration \tn 
% Row Count 13 (+ 2)
% Row 9
\SetRowColor{white}
~~~~`-u user -p pass` & authenticated \tn 
% Row Count 16 (+ 3)
% Row 10
\SetRowColor{LightBackground}
\{\{bt\}\}{\bf{SMTP}} & TCP 25, 110\{\{bt\}\} \tn 
% Row Count 17 (+ 1)
% Row 11
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{{\bf{`nc -nv \textless{}address\textgreater{} 25`}}} \tn 
% Row Count 18 (+ 1)
% Row 12
\SetRowColor{LightBackground}
~~~~`VRFY` & verify address \tn 
% Row Count 20 (+ 2)
% Row 13
\SetRowColor{white}
~~~~`EXPN` & query mail list \tn 
% Row Count 22 (+ 2)
% Row 14
\SetRowColor{LightBackground}
\{\{bt\}\}{\bf{SNMP}} & UDP 161\{\{bt\}\} \tn 
% Row Count 23 (+ 1)
% Row 15
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{`{\bf{onesixtyone}}`} \tn 
% Row Count 24 (+ 1)
% Row 16
\SetRowColor{LightBackground}
~~~~`-c \textless{}file\textgreater{}` & community strings \tn 
% Row Count 26 (+ 2)
% Row 17
\SetRowColor{white}
~~~~`-i \textless{}file\textgreater{}` & targets \tn 
% Row Count 28 (+ 2)
% Row 18
\SetRowColor{LightBackground}
~~~~`-o \textless{}file\textgreater{}` & output file \tn 
% Row Count 30 (+ 2)
\end{tabularx}
\par\addvspace{1.3em}

\vfill
\columnbreak
\begin{tabularx}{5.377cm}{x{2.4885 cm} x{2.4885 cm} }
\SetRowColor{DarkBackground}
\mymulticolumn{2}{x{5.377cm}}{\bf\textcolor{white}{Service Enumeration (cont)}}  \tn
% Row 19
\SetRowColor{LightBackground}
\mymulticolumn{2}{x{5.377cm}}{`{\bf{snmpwalk}} {[}opt{]} agent {[}OID{]}`} \tn 
% Row Count 1 (+ 1)
% Row 20
\SetRowColor{white}
~~~~`-c \textless{}string\textgreater{}` & community string \tn 
% Row Count 3 (+ 2)
% Row 21
\SetRowColor{LightBackground}
~~~~`-v\{1|2c|3\}` & version \tn 
% Row Count 5 (+ 2)
% Row 22
\SetRowColor{white}
`{\bf{snmpcheck}}`\{\{nl\}\}~~~~`-t \textless{}address\textgreater{}`\{\{nl\}\}~~~~`-c`\{\{nl\}\}~~~~`-w` & enumeration tool\{\{nl\}\}~~~~target\{\{nl\}\}~~~~community string\{\{nl\}\}~~~~detect write access \tn 
% Row Count 13 (+ 8)
% Row 23
\SetRowColor{LightBackground}
{\bf{SQL}}\{\{bt\}\} & TCP 1433,3306\{\{bt\}\} \tn 
% Row Count 14 (+ 1)
% Row 24
\SetRowColor{white}
\mymulticolumn{2}{x{5.377cm}}{`{\bf{sqlmap}}`} \tn 
% Row Count 15 (+ 1)
% Row 25
\SetRowColor{LightBackground}
~~~~`-{}-url="url"` & target \tn 
% Row Count 17 (+ 2)
% Row 26
\SetRowColor{white}
~~~~`-{}-dbms=\textless{}DBMS\textgreater{}` & force dbms \tn 
% Row Count 19 (+ 2)
% Row 27
\SetRowColor{LightBackground}
~~~~`-a` & retrieve all \tn 
% Row Count 21 (+ 2)
% Row 28
\SetRowColor{white}
~~~~`-{}-dump` & dump data \tn 
% Row Count 23 (+ 2)
% Row 29
\SetRowColor{LightBackground}
~~~~`-{}-os-shell` & retrieve shell \tn 
% Row Count 25 (+ 2)
% Row 30
\SetRowColor{white}
~~~~`-{}-crawl \textless{}depth\textgreater{}` & crawl site \tn 
% Row Count 28 (+ 3)
\hhline{>{\arrayrulecolor{DarkBackground}}--}
\end{tabularx}
\par\addvspace{1.3em}


% That's all folks
\end{multicols*}

\end{document}