\documentclass[10pt,a4paper]{article} % Packages \usepackage{fancyhdr} % For header and footer \usepackage{multicol} % Allows multicols in tables \usepackage{tabularx} % Intelligent column widths \usepackage{tabulary} % Used in header and footer \usepackage{hhline} % Border under tables \usepackage{graphicx} % For images \usepackage{xcolor} % For hex colours %\usepackage[utf8x]{inputenc} % For unicode character support \usepackage[T1]{fontenc} % Without this we get weird character replacements \usepackage{colortbl} % For coloured tables \usepackage{setspace} % For line height \usepackage{lastpage} % Needed for total page number \usepackage{seqsplit} % Splits long words. %\usepackage{opensans} % Can't make this work so far. Shame. Would be lovely. \usepackage[normalem]{ulem} % For underlining links % Most of the following are not required for the majority % of cheat sheets but are needed for some symbol support. \usepackage{amsmath} % Symbols \usepackage{MnSymbol} % Symbols \usepackage{wasysym} % Symbols %\usepackage[english,german,french,spanish,italian]{babel} % Languages % Document Info \author{Brent Miller (squigit)} \pdfinfo{ /Title (nmap.pdf) /Creator (Cheatography) /Author (Brent Miller (squigit)) /Subject (NMAP Cheat Sheet) } % Lengths and widths \addtolength{\textwidth}{6cm} \addtolength{\textheight}{-1cm} \addtolength{\hoffset}{-3cm} \addtolength{\voffset}{-2cm} \setlength{\tabcolsep}{0.2cm} % Space between columns \setlength{\headsep}{-12pt} % Reduce space between header and content \setlength{\headheight}{85pt} % If less, LaTeX automatically increases it \renewcommand{\footrulewidth}{0pt} % Remove footer line \renewcommand{\headrulewidth}{0pt} % Remove header line \renewcommand{\seqinsert}{\ifmmode\allowbreak\else\-\fi} % Hyphens in seqsplit % This two commands together give roughly % the right line height in the tables \renewcommand{\arraystretch}{1.3} \onehalfspacing % Commands \newcommand{\SetRowColor}[1]{\noalign{\gdef\RowColorName{#1}}\rowcolor{\RowColorName}} % Shortcut for row colour \newcommand{\mymulticolumn}[3]{\multicolumn{#1}{>{\columncolor{\RowColorName}}#2}{#3}} % For coloured multi-cols \newcolumntype{x}[1]{>{\raggedright}p{#1}} % New column types for ragged-right paragraph columns \newcommand{\tn}{\tabularnewline} % Required as custom column type in use % Font and Colours \definecolor{HeadBackground}{HTML}{333333} \definecolor{FootBackground}{HTML}{666666} \definecolor{TextColor}{HTML}{333333} \definecolor{DarkBackground}{HTML}{5F5AA3} \definecolor{LightBackground}{HTML}{F5F4F9} \renewcommand{\familydefault}{\sfdefault} \color{TextColor} % Header and Footer \pagestyle{fancy} \fancyhead{} % Set header to blank \fancyfoot{} % Set footer to blank \fancyhead[L]{ \noindent \begin{multicols}{3} \begin{tabulary}{5.8cm}{C} \SetRowColor{DarkBackground} \vspace{-7pt} {\parbox{\dimexpr\textwidth-2\fboxsep\relax}{\noindent \hspace*{-6pt}\includegraphics[width=5.8cm]{/web/www.cheatography.com/public/images/cheatography_logo.pdf}} } \end{tabulary} \columnbreak \begin{tabulary}{11cm}{L} \vspace{-2pt}\large{\bf{\textcolor{DarkBackground}{\textrm{NMAP Cheat Sheet}}}} \\ \normalsize{by \textcolor{DarkBackground}{Brent Miller (squigit)} via \textcolor{DarkBackground}{\uline{cheatography.com/56403/cs/14945/}}} \end{tabulary} \end{multicols}} \fancyfoot[L]{ \footnotesize \noindent \begin{multicols}{3} \begin{tabulary}{5.8cm}{LL} \SetRowColor{FootBackground} \mymulticolumn{2}{p{5.377cm}}{\bf\textcolor{white}{Cheatographer}} \\ \vspace{-2pt}Brent Miller (squigit) \\ \uline{cheatography.com/squigit} \\ \uline{\seqsplit{www}.dot.gov} \end{tabulary} \vfill \columnbreak \begin{tabulary}{5.8cm}{L} \SetRowColor{FootBackground} \mymulticolumn{1}{p{5.377cm}}{\bf\textcolor{white}{Cheat Sheet}} \\ \vspace{-2pt}Not Yet Published.\\ Updated 6th March, 2018.\\ Page {\thepage} of \pageref{LastPage}. \end{tabulary} \vfill \columnbreak \begin{tabulary}{5.8cm}{L} \SetRowColor{FootBackground} \mymulticolumn{1}{p{5.377cm}}{\bf\textcolor{white}{Sponsor}} \\ \SetRowColor{white} \vspace{-5pt} %\includegraphics[width=48px,height=48px]{dave.jpeg} Measure your website readability!\\ www.readability-score.com \end{tabulary} \end{multicols}} \begin{document} \raggedright \raggedcolumns % Set font size to small. Switch to any value % from this page to resize cheat sheet text: % www.emerson.emory.edu/services/latex/latex_169.html \footnotesize % Small font. \begin{multicols*}{2} \begin{tabularx}{8.4cm}{X} \SetRowColor{DarkBackground} \mymulticolumn{1}{x{8.4cm}}{\bf\textcolor{white}{Download ZeNMAP}} \tn \SetRowColor{white} \mymulticolumn{1}{x{8.4cm}}{\seqsplit{https://nmap.org/download.html}% Row Count 1 (+ 1) } \tn \hhline{>{\arrayrulecolor{DarkBackground}}-} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{x{2.88 cm} x{5.12 cm} } \SetRowColor{DarkBackground} \mymulticolumn{2}{x{8.4cm}}{\bf\textcolor{white}{Host Notation}} \tn % Row 0 \SetRowColor{LightBackground} IP & 152.120.2.200 \tn % Row Count 1 (+ 1) % Row 1 \SetRowColor{white} Hostname & IDNS3.dot.gov \tn % Row Count 2 (+ 1) % Row 2 \SetRowColor{LightBackground} Subnet & 152.120.2.0/24 \tn % Row Count 3 (+ 1) % Row 3 \SetRowColor{white} IP Range & 152.120.2.5-20 \tn % Row Count 4 (+ 1) \hhline{>{\arrayrulecolor{DarkBackground}}--} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{x{2.16 cm} x{5.84 cm} } \SetRowColor{DarkBackground} \mymulticolumn{2}{x{8.4cm}}{\bf\textcolor{white}{Common Options}} \tn % Row 0 \SetRowColor{LightBackground} -T3 & Normal Speed \tn % Row Count 1 (+ 1) % Row 1 \SetRowColor{white} -T4 & Fast Speed \tn % Row Count 2 (+ 1) % Row 2 \SetRowColor{LightBackground} -A & OS and Version detection \tn % Row Count 3 (+ 1) % Row 3 \SetRowColor{white} -O & OS detection \tn % Row Count 4 (+ 1) % Row 4 \SetRowColor{LightBackground} -v & Verbose \tn % Row Count 5 (+ 1) % Row 5 \SetRowColor{white} -sV & Probe open ports to determine service/version info \tn % Row Count 7 (+ 2) % Row 6 \SetRowColor{LightBackground} -sn & Ping Scan \tn % Row Count 8 (+ 1) % Row 7 \SetRowColor{white} -p \textless{}port range\textgreater{} & Only scan specified ports \tn % Row Count 10 (+ 2) % Row 8 \SetRowColor{LightBackground} -{}-script= & Run a specified script \tn % Row Count 11 (+ 1) % Row 9 \SetRowColor{white} -iL {[}filename{]} & Input file of hosts/IPs \tn % Row Count 13 (+ 2) % Row 10 \SetRowColor{LightBackground} -oN {[}filename{]} & Save as text file \tn % Row Count 15 (+ 2) % Row 11 \SetRowColor{white} -oX {[}filename{]} & Save as XML file \tn % Row Count 17 (+ 2) \hhline{>{\arrayrulecolor{DarkBackground}}--} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{x{3.52 cm} x{4.48 cm} } \SetRowColor{DarkBackground} \mymulticolumn{2}{x{8.4cm}}{\bf\textcolor{white}{Common Scripts}} \tn % Row 0 \SetRowColor{LightBackground} ssl-enum-ciphers & Display SSL cipher \tn % Row Count 1 (+ 1) % Row 1 \SetRowColor{white} smb-protocols & Display SMB protocol \tn % Row Count 2 (+ 1) % Row 2 \SetRowColor{LightBackground} ssl-heartbleed & Display heartbleed \tn % Row Count 3 (+ 1) \hhline{>{\arrayrulecolor{DarkBackground}}--} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{x{2.48 cm} x{5.52 cm} } \SetRowColor{DarkBackground} \mymulticolumn{2}{x{8.4cm}}{\bf\textcolor{white}{Preset Profiles}} \tn % Row 0 \SetRowColor{LightBackground} Intense & nmap -T4 -A-v \tn % Row Count 1 (+ 1) % Row 1 \SetRowColor{white} Quick Scan Plus & nmap -sV -T4 -O -F -{}-version-light \tn % Row Count 3 (+ 2) % Row 2 \SetRowColor{LightBackground} Ping Scan & nmap -sn \tn % Row Count 4 (+ 1) \hhline{>{\arrayrulecolor{DarkBackground}}--} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{X} \SetRowColor{DarkBackground} \mymulticolumn{1}{x{8.4cm}}{\bf\textcolor{white}{References}} \tn \SetRowColor{white} \mymulticolumn{1}{x{8.4cm}}{\seqsplit{https://nmap.org/book/man.html} \newline % Row Count 1 (+ 1) \seqsplit{https://www.cyberciti.biz/security/nmap-command-examples-tutorials/} \newline % Row Count 3 (+ 2) \seqsplit{https://www.linux.com/learn/beginners-guide-nmap}% Row Count 4 (+ 1) } \tn \hhline{>{\arrayrulecolor{DarkBackground}}-} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{X} \SetRowColor{DarkBackground} \mymulticolumn{1}{x{8.4cm}}{\bf\textcolor{white}{FAQ}} \tn % Row 0 \SetRowColor{LightBackground} \mymulticolumn{1}{x{8.4cm}}{How do tell who at DOT runs a server?} \tn \mymulticolumn{1}{x{8.4cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}Run `nmap -sV -T4 -O -A` and look for a hostname\{\{nl\}\}Check the hostname for a mode\{\{nl\}\}Check Solarwinds for the `Support\_Manager` property\{\{nl\}\}Check the patch list to see if ITSS manages it} \tn % Row Count 6 (+ 6) % Row 1 \SetRowColor{white} \mymulticolumn{1}{x{8.4cm}}{Is a host running SMB v1?} \tn \mymulticolumn{1}{x{8.4cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}Run `nmap -{}-script=smb-protocols`\{\{nl\}\}Check for anything below version 2.0} \tn % Row Count 9 (+ 3) % Row 2 \SetRowColor{LightBackground} \mymulticolumn{1}{x{8.4cm}}{Is a host using low security SSL?} \tn \mymulticolumn{1}{x{8.4cm}}{\hspace*{6 px}\rule{2px}{6px}\hspace*{6 px}Run `nmap -{}-script=ssl-enum-ciphers`\{\{nl\}\}Check for any warnings about SWEET32/RC4/ low Diffie-Helman key exchanges} \tn % Row Count 13 (+ 4) \hhline{>{\arrayrulecolor{DarkBackground}}-} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{X} \SetRowColor{DarkBackground} \mymulticolumn{1}{x{8.4cm}}{\bf\textcolor{white}{Example \#1}} \tn \SetRowColor{white} \mymulticolumn{1}{x{8.4cm}}{NCATS report for a server comes in \newline % Row Count 1 (+ 1) Summary: \newline % Row Count 2 (+ 1) NCCIC NCATS Cyber Hygiene reported a system vulnerability \newline % Row Count 4 (+ 2) Source IP: `204.68.195.16` \newline % Row Count 5 (+ 1) Host Name: `docketsinfo.dot.gov` \newline % Row Count 6 (+ 1) 1) Run `nmap -sV -T4 -A -v docketsinfo.dot.gov` \newline % Row Count 7 (+ 1) 2) Note the hostname in the 3389 and 10000 port results, and the `smb-os-discovery` script \newline % Row Count 9 (+ 2) 3) determine that this is an OST server that is not on the ITSS patch list \newline % Row Count 11 (+ 2) 4) most likely an OST (Non-ITSS) managed server% Row Count 12 (+ 1) } \tn \hhline{>{\arrayrulecolor{DarkBackground}}-} \end{tabularx} \par\addvspace{1.3em} \begin{tabularx}{8.4cm}{X} \SetRowColor{DarkBackground} \mymulticolumn{1}{x{8.4cm}}{\bf\textcolor{white}{Example \#2}} \tn \SetRowColor{white} \mymulticolumn{1}{x{8.4cm}}{NCATS report for a server comes in \newline % Row Count 1 (+ 1) Summary: \newline % Row Count 2 (+ 1) NCCIC NCATS Cyber Hygiene reported a system vulnerability \newline % Row Count 4 (+ 2) Source IP: 204.68.194.45 \newline % Row Count 5 (+ 1) Destination IP: 64.69.57.0 /24 \newline % Row Count 6 (+ 1) Host Name: 204.68.194.45 \seqsplit{DOTDMZWAS018VG.ext.dot.gov} \newline % Row Count 8 (+ 2) 1) Run `nmap -sV -T4 -A -v \seqsplit{DOTDMZWAS018VG.ext.dot.gov`} \newline % Row Count 10 (+ 2) 2) Note the hostname in the 443 port scan \newline % Row Count 11 (+ 1) 3) Find this server in the ITSS patch list \newline % Row Count 12 (+ 1) 4) Determine that this is an ITSS manager server.% Row Count 13 (+ 1) } \tn \hhline{>{\arrayrulecolor{DarkBackground}}-} \end{tabularx} \par\addvspace{1.3em} % That's all folks \end{multicols*} \end{document}