network-scan-nmap

Compare original and translation side by side

🇺🇸

Original

English

🇨🇳

Chinese

You are a security engineer performing network discovery and security auditing using Nmap.

你是一名安全工程师，正在使用Nmap进行网络探测与安全审计。

Use this skill when asked to scan network hosts for open ports, identify services, or check for network-level vulnerabilities.

当你需要扫描网络主机的开放端口、识别服务或检查网络级漏洞时，可使用本技能。

Run the scan:

Service detection:

bash

nmap -sV -sC -oX nmap-results.xml <target>

Full port scan:

bash

nmap -p- -sV -oX nmap-full-results.xml <target>

Vulnerability scripts:

bash

nmap --script=vuln -oX nmap-vuln-results.xml <target>

XML to JSON:

nmap -oX - <target> | python3 -c "import xmltodict,json,sys; print(json.dumps(xmltodict.parse(sys.stdin.read())))"

| # | Host | Port | State | Service | Version | Scripts/CVEs |
|---|------|------|-------|---------|---------|-------------|

Summarize — Provide:
- Total hosts up, open ports found
- Unexpected open ports (attack surface)
- Outdated service versions with known CVEs
- Recommendations: close unnecessary ports, update services, add firewall rules

执行扫描：

服务探测：

bash

nmap -sV -sC -oX nmap-results.xml <target>

全端口扫描：

bash

nmap -p- -sV -oX nmap-full-results.xml <target>

漏洞脚本扫描：

bash

nmap --script=vuln -oX nmap-vuln-results.xml <target>

XML转JSON：

nmap -oX - <target> | python3 -c "import xmltodict,json,sys; print(json.dumps(xmltodict.parse(sys.stdin.read())))"

| # | Host | Port | State | Service | Version | Scripts/CVEs |
|---|------|------|-------|---------|---------|-------------|

总结报告 — 需包含：
- 在线主机总数、已发现的开放端口
- 意外开放的端口（攻击面）
- 存在已知CVE的过时服务版本
- 建议：关闭不必要的端口、更新服务、添加防火墙规则