Skip to content

Commit ed9c1c7

Browse files
UnExplainableFish52UnExplainableFish52
committed
update: minor fixes and add tldr
1 parent d46c91f commit ed9c1c7

1 file changed

Lines changed: 358 additions & 1 deletion

File tree

nmap/nmap.html

Lines changed: 358 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -643,6 +643,194 @@
643643
table { font-size: 0.88rem; }
644644
}
645645

646+
/* ===== TL;DR SECTION ===== */
647+
.tldr-section {
648+
margin-top: 64px;
649+
padding: 48px 32px;
650+
background: linear-gradient(135deg, rgba(17,24,39,0.95), rgba(26,32,53,0.95));
651+
border: 2px solid transparent;
652+
border-image: linear-gradient(135deg, var(--accent-cyan), var(--accent-purple), var(--accent-orange)) 1;
653+
border-radius: 0;
654+
position: relative;
655+
}
656+
657+
.tldr-section::before {
658+
content: '';
659+
position: absolute;
660+
top: 0; left: 0; right: 0; bottom: 0;
661+
background: radial-gradient(ellipse at 20% 50%, rgba(0,229,255,0.04) 0%, transparent 60%),
662+
radial-gradient(ellipse at 80% 50%, rgba(179,136,255,0.04) 0%, transparent 60%);
663+
pointer-events: none;
664+
}
665+
666+
.tldr-header {
667+
text-align: center;
668+
margin-bottom: 40px;
669+
position: relative;
670+
}
671+
672+
.tldr-header h2 {
673+
font-size: 2.2rem;
674+
font-weight: 900;
675+
letter-spacing: 2px;
676+
background: linear-gradient(135deg, var(--accent-cyan), var(--accent-purple), var(--accent-orange));
677+
-webkit-background-clip: text;
678+
-webkit-text-fill-color: transparent;
679+
background-clip: text;
680+
animation: tldrGradient 4s ease infinite;
681+
background-size: 200% 200%;
682+
}
683+
684+
@keyframes tldrGradient {
685+
0%, 100% { background-position: 0% 50%; }
686+
50% { background-position: 100% 50%; }
687+
}
688+
689+
.tldr-header .tldr-subtitle {
690+
color: var(--text-muted);
691+
font-size: 1.05rem;
692+
margin-top: 8px;
693+
font-style: italic;
694+
}
695+
696+
.tldr-cards {
697+
display: flex;
698+
flex-direction: column;
699+
gap: 32px;
700+
}
701+
702+
.tldr-card {
703+
background: var(--bg-secondary);
704+
border: 1px solid var(--border);
705+
border-radius: var(--radius-md);
706+
padding: 28px 28px 24px;
707+
position: relative;
708+
transition: border-color var(--transition), box-shadow var(--transition);
709+
}
710+
711+
.tldr-card:hover {
712+
border-color: var(--accent-cyan);
713+
box-shadow: 0 0 24px rgba(0,229,255,0.08);
714+
}
715+
716+
.tldr-card-header {
717+
display: flex;
718+
align-items: center;
719+
gap: 14px;
720+
margin-bottom: 12px;
721+
}
722+
723+
.tldr-card-number {
724+
background: var(--accent-cyan);
725+
color: var(--bg-primary);
726+
font-size: 0.75rem;
727+
font-weight: 800;
728+
padding: 4px 10px;
729+
border-radius: var(--radius-sm);
730+
letter-spacing: 1px;
731+
font-family: var(--font-mono);
732+
flex-shrink: 0;
733+
}
734+
735+
.tldr-card-number.stealth { background: var(--accent-purple); color: #fff; }
736+
.tldr-card-number.recon { background: var(--accent-cyan); }
737+
.tldr-card-number.os { background: var(--accent-orange); color: var(--bg-primary); }
738+
.tldr-card-number.quick { background: var(--accent-green); color: var(--bg-primary); }
739+
.tldr-card-number.sweep { background: var(--accent-blue); color: #fff; }
740+
741+
.tldr-card-title {
742+
font-size: 1.2rem;
743+
font-weight: 700;
744+
color: var(--text-primary);
745+
}
746+
747+
.tldr-card-desc {
748+
color: var(--text-secondary);
749+
font-size: 0.95rem;
750+
margin-bottom: 16px;
751+
line-height: 1.7;
752+
}
753+
754+
.tldr-card .code-wrapper {
755+
margin-bottom: 14px;
756+
}
757+
758+
.tldr-tip {
759+
display: flex;
760+
align-items: flex-start;
761+
gap: 8px;
762+
padding: 12px 16px;
763+
background: rgba(0,229,255,0.04);
764+
border-left: 3px solid var(--accent-cyan);
765+
border-radius: 0 var(--radius-sm) var(--radius-sm) 0;
766+
font-size: 0.9rem;
767+
color: var(--text-secondary);
768+
line-height: 1.7;
769+
}
770+
771+
.tldr-tip.stealth-tip { border-left-color: var(--accent-purple); background: rgba(179,136,255,0.04); }
772+
.tldr-tip.os-tip { border-left-color: var(--accent-orange); background: rgba(255,183,77,0.04); }
773+
.tldr-tip.quick-tip { border-left-color: var(--accent-green); background: rgba(105,240,174,0.04); }
774+
.tldr-tip.sweep-tip { border-left-color: var(--accent-blue); background: rgba(66,165,245,0.04); }
775+
776+
.tldr-tip .tip-icon {
777+
flex-shrink: 0;
778+
font-size: 1rem;
779+
}
780+
781+
.tldr-sudo-note {
782+
margin-top: 36px;
783+
padding: 20px 24px;
784+
background: linear-gradient(135deg, rgba(0,229,255,0.06), rgba(179,136,255,0.06));
785+
border: 1px solid rgba(0,229,255,0.2);
786+
border-radius: var(--radius-md);
787+
text-align: center;
788+
font-size: 1rem;
789+
color: var(--text-secondary);
790+
line-height: 1.8;
791+
}
792+
793+
.tldr-sudo-note strong {
794+
color: var(--accent-cyan);
795+
}
796+
797+
.tldr-sudo-note code {
798+
background: var(--bg-tertiary);
799+
padding: 2px 7px;
800+
border-radius: 4px;
801+
font-family: var(--font-mono);
802+
font-size: 0.88em;
803+
color: var(--accent-green);
804+
}
805+
806+
.tldr-flags {
807+
display: flex;
808+
flex-wrap: wrap;
809+
gap: 6px;
810+
margin-top: 10px;
811+
margin-bottom: 4px;
812+
}
813+
814+
.tldr-flag-tag {
815+
display: inline-block;
816+
background: var(--bg-tertiary);
817+
border: 1px solid var(--border);
818+
padding: 2px 10px;
819+
border-radius: 20px;
820+
font-size: 0.78rem;
821+
font-family: var(--font-mono);
822+
color: var(--text-muted);
823+
letter-spacing: 0.3px;
824+
}
825+
826+
@media (max-width: 640px) {
827+
.tldr-section { padding: 28px 16px; margin-top: 40px; }
828+
.tldr-header h2 { font-size: 1.6rem; }
829+
.tldr-card { padding: 20px 16px 18px; }
830+
.tldr-card-title { font-size: 1.05rem; }
831+
.tldr-sudo-note { padding: 16px; font-size: 0.9rem; }
832+
}
833+
646834
/* ===== PRINT ===== */
647835
@media print {
648836
body { background: #fff; color: #111; }
@@ -653,6 +841,7 @@
653841
a { color: #0066cc; }
654842
th { background: #eee; color: #111; }
655843
td { color: #333; }
844+
.tldr-header h2 { -webkit-text-fill-color: #111; background: none; }
656845
}
657846
</style>
658847
</head>
@@ -749,6 +938,13 @@ <h2>📑 Table of Contents</h2>
749938
<li><a href="#appendix-d">D — Glossary of Terms</a></li>
750939
</ul>
751940
</div>
941+
942+
<div class="toc-part">
943+
<div class="toc-part-title"><a href="#tldr">⚡ TL;DR — 5 Flex Commands</a></div>
944+
<ul class="toc-sections">
945+
<li><a href="#tldr">In a rush? 5 battle-tested, copy-paste-ready commands</a></li>
946+
</ul>
947+
</div>
752948
</nav>
753949

754950
<!-- ============ HIGH-LEVEL FLOW DIAGRAM ============ -->
@@ -2561,9 +2757,170 @@ <h2><span class="part-num">APPENDIX</span> Reference Material</h2>
25612757

25622758
</section>
25632759

2760+
<!-- ================================================================ -->
2761+
<!-- TL;DR — 5 FLEX COMMANDS -->
2762+
<!-- ================================================================ -->
2763+
<section class="tldr-section" id="tldr">
2764+
2765+
<div class="tldr-header">
2766+
<h2>⚡ TL;DR — 5 FLEX COMMANDS</h2>
2767+
<p class="tldr-subtitle">In a rush? Grab these and go. Each one is battle-tested and production-ready.</p>
2768+
</div>
2769+
2770+
<div class="tldr-cards">
2771+
2772+
<!-- TLDR Command 1 -->
2773+
<div class="tldr-card">
2774+
<div class="tldr-card-header">
2775+
<span class="tldr-card-number stealth">01</span>
2776+
<span class="tldr-card-title">🥷 Stealth SYN Scan — Low &amp; Slow</span>
2777+
</div>
2778+
<p class="tldr-card-desc">A quiet, under-the-radar scan that avoids tripping IDS/IPS. Uses half-open SYN packets, fragmented payloads, skips DNS resolution, and outputs to all three file formats for documentation.</p>
2779+
<div class="tldr-flags">
2780+
<span class="tldr-flag-tag">-sS</span>
2781+
<span class="tldr-flag-tag">-T2</span>
2782+
<span class="tldr-flag-tag">-Pn</span>
2783+
<span class="tldr-flag-tag">-n</span>
2784+
<span class="tldr-flag-tag">-f</span>
2785+
<span class="tldr-flag-tag">--max-retries</span>
2786+
<span class="tldr-flag-tag">--host-timeout</span>
2787+
<span class="tldr-flag-tag">-oA</span>
2788+
</div>
2789+
<div class="code-wrapper">
2790+
<button class="copy-btn" onclick="copyCode(this)">Copy</button>
2791+
<pre><span class="cmd-root">sudo nmap</span> <span class="cmd-flag">-sS -T2 -Pn -n -f --max-retries</span> <span class="cmd-value">2</span> <span class="cmd-flag">--host-timeout</span> <span class="cmd-value">45s</span> <span class="cmd-flag">-oA</span> <span class="cmd-value">stealth-scan</span> <span class="cmd-target">TARGET</span></pre>
2792+
</div>
2793+
<div class="tldr-tip stealth-tip">
2794+
<span class="tip-icon">💡</span>
2795+
<span>Use <code>-T2</code> (polite) for real engagements where stealth matters and IDS evasion is critical. In labs or CTFs, <code>-T3</code> (default/normal) is perfectly fine and noticeably faster. Never use <code>-T4</code> or <code>-T5</code> on stealth-sensitive targets — they're loud and easily flagged.</span>
2796+
</div>
2797+
</div>
2798+
2799+
<!-- TLDR Command 2 -->
2800+
<div class="tldr-card">
2801+
<div class="tldr-card-header">
2802+
<span class="tldr-card-number recon">02</span>
2803+
<span class="tldr-card-title">🔍 Full Port Scan + Service Detection + File Output</span>
2804+
</div>
2805+
<p class="tldr-card-desc">The workhorse scan. Covers all 65,535 ports, identifies service versions, runs default NSE scripts, filters for open ports only, and saves everything to disk in all formats. This is what you run after initial discovery.</p>
2806+
<div class="tldr-flags">
2807+
<span class="tldr-flag-tag">-sS</span>
2808+
<span class="tldr-flag-tag">-p-</span>
2809+
<span class="tldr-flag-tag">-sV</span>
2810+
<span class="tldr-flag-tag">-sC</span>
2811+
<span class="tldr-flag-tag">--open</span>
2812+
<span class="tldr-flag-tag">--max-retries</span>
2813+
<span class="tldr-flag-tag">--host-timeout</span>
2814+
<span class="tldr-flag-tag">-T3</span>
2815+
<span class="tldr-flag-tag">-vv</span>
2816+
<span class="tldr-flag-tag">-oA</span>
2817+
</div>
2818+
<div class="code-wrapper">
2819+
<button class="copy-btn" onclick="copyCode(this)">Copy</button>
2820+
<pre><span class="cmd-root">sudo nmap</span> <span class="cmd-flag">-sS -p- -sV -sC --open --max-retries</span> <span class="cmd-value">1</span> <span class="cmd-flag">--host-timeout</span> <span class="cmd-value">5m</span> <span class="cmd-flag">-T3 -vv -oA</span> <span class="cmd-value">full-recon</span> <span class="cmd-target">TARGET</span></pre>
2821+
</div>
2822+
<div class="tldr-tip">
2823+
<span class="tip-icon">💡</span>
2824+
<span>Combine <code>-sV</code> + <code>-sC</code> for comprehensive enumeration — version detection plus safe default scripts. <code>-oA</code> saves <code>.nmap</code> + <code>.xml</code> + <code>.gnmap</code> — always use it so you never lose scan data.</span>
2825+
</div>
2826+
</div>
2827+
2828+
<!-- TLDR Command 3 -->
2829+
<div class="tldr-card">
2830+
<div class="tldr-card-header">
2831+
<span class="tldr-card-number os">03</span>
2832+
<span class="tldr-card-title">🖥️ OS Detection + Aggressive Enumeration + All Output Formats</span>
2833+
</div>
2834+
<p class="tldr-card-desc">Deep fingerprinting scan with OS detection, aggressive guessing when uncertain, balanced version intensity, default scripts, and explicit output to all three file formats. The go-to command when you need to know exactly what's running.</p>
2835+
<div class="tldr-flags">
2836+
<span class="tldr-flag-tag">-sS</span>
2837+
<span class="tldr-flag-tag">-O</span>
2838+
<span class="tldr-flag-tag">--osscan-guess</span>
2839+
<span class="tldr-flag-tag">-sV</span>
2840+
<span class="tldr-flag-tag">--version-intensity 5</span>
2841+
<span class="tldr-flag-tag">-sC</span>
2842+
<span class="tldr-flag-tag">-p-</span>
2843+
<span class="tldr-flag-tag">--max-retries</span>
2844+
<span class="tldr-flag-tag">--host-timeout</span>
2845+
<span class="tldr-flag-tag">-oN -oX -oG</span>
2846+
</div>
2847+
<div class="code-wrapper">
2848+
<button class="copy-btn" onclick="copyCode(this)">Copy</button>
2849+
<pre><span class="cmd-root">sudo nmap</span> <span class="cmd-flag">-sS -O --osscan-guess -sV --version-intensity</span> <span class="cmd-value">5</span> <span class="cmd-flag">-sC -p- --max-retries</span> <span class="cmd-value">2</span> <span class="cmd-flag">--host-timeout</span> <span class="cmd-value">10m</span> <span class="cmd-flag">-T3 -oN</span> <span class="cmd-value">scan.nmap</span> <span class="cmd-flag">-oX</span> <span class="cmd-value">scan.xml</span> <span class="cmd-flag">-oG</span> <span class="cmd-value">scan.grep</span> <span class="cmd-target">TARGET</span></pre>
2850+
</div>
2851+
<div class="tldr-tip os-tip">
2852+
<span class="tip-icon">💡</span>
2853+
<span>OS detection (<code>-O</code>) requires <strong>root/sudo</strong> and works best when the target has at least 1 open + 1 closed port. If results are uncertain, <code>--osscan-guess</code> makes Nmap print its best guess with a confidence percentage.</span>
2854+
</div>
2855+
</div>
2856+
2857+
<!-- TLDR Command 4 -->
2858+
<div class="tldr-card">
2859+
<div class="tldr-card-header">
2860+
<span class="tldr-card-number quick">04</span>
2861+
<span class="tldr-card-title">⚡ Quick Top-Ports Recon — Fast First Look</span>
2862+
</div>
2863+
<p class="tldr-card-desc">Your fast first-look command. Scans the top 1000 most common ports with version detection and default scripts. Perfect for initial triage before committing to a full all-port scan. Verbose output lets you see results in real-time.</p>
2864+
<div class="tldr-flags">
2865+
<span class="tldr-flag-tag">-sS</span>
2866+
<span class="tldr-flag-tag">-sV</span>
2867+
<span class="tldr-flag-tag">-sC</span>
2868+
<span class="tldr-flag-tag">--top-ports 1000</span>
2869+
<span class="tldr-flag-tag">--open</span>
2870+
<span class="tldr-flag-tag">--max-retries</span>
2871+
<span class="tldr-flag-tag">--host-timeout</span>
2872+
<span class="tldr-flag-tag">-T3</span>
2873+
<span class="tldr-flag-tag">-vv</span>
2874+
<span class="tldr-flag-tag">-oA</span>
2875+
</div>
2876+
<div class="code-wrapper">
2877+
<button class="copy-btn" onclick="copyCode(this)">Copy</button>
2878+
<pre><span class="cmd-root">sudo nmap</span> <span class="cmd-flag">-sS -sV -sC --top-ports</span> <span class="cmd-value">1000</span> <span class="cmd-flag">--open --max-retries</span> <span class="cmd-value">1</span> <span class="cmd-flag">--host-timeout</span> <span class="cmd-value">2m</span> <span class="cmd-flag">-T3 -vv -oA</span> <span class="cmd-value">quick-recon</span> <span class="cmd-target">TARGET</span></pre>
2879+
</div>
2880+
<div class="tldr-tip quick-tip">
2881+
<span class="tip-icon">💡</span>
2882+
<span>Great for initial triage — run this first, review findings, then follow up with a full <code>-p-</code> scan on interesting hosts. The <code>--top-ports 1000</code> covers ~93% of commonly encountered ports.</span>
2883+
</div>
2884+
</div>
2885+
2886+
<!-- TLDR Command 5 -->
2887+
<div class="tldr-card">
2888+
<div class="tldr-card-header">
2889+
<span class="tldr-card-number sweep">05</span>
2890+
<span class="tldr-card-title">🌐 Subnet Sweep + Service Discovery — Network-Wide</span>
2891+
</div>
2892+
<p class="tldr-card-desc">Sweep an entire subnet to discover services across all live hosts. Uses top 100 ports for speed, version detection, aggressive timeouts to skip unresponsive hosts, and outputs everything. Ideal for mapping an entire network segment quickly.</p>
2893+
<div class="tldr-flags">
2894+
<span class="tldr-flag-tag">-sS</span>
2895+
<span class="tldr-flag-tag">-sV</span>
2896+
<span class="tldr-flag-tag">--top-ports 100</span>
2897+
<span class="tldr-flag-tag">--open</span>
2898+
<span class="tldr-flag-tag">--max-retries</span>
2899+
<span class="tldr-flag-tag">--host-timeout</span>
2900+
<span class="tldr-flag-tag">-T3</span>
2901+
<span class="tldr-flag-tag">-oA</span>
2902+
</div>
2903+
<div class="code-wrapper">
2904+
<button class="copy-btn" onclick="copyCode(this)">Copy</button>
2905+
<pre><span class="cmd-root">sudo nmap</span> <span class="cmd-flag">-sS -sV --top-ports</span> <span class="cmd-value">100</span> <span class="cmd-flag">--open --max-retries</span> <span class="cmd-value">1</span> <span class="cmd-flag">--host-timeout</span> <span class="cmd-value">1m</span> <span class="cmd-flag">-T3 -oA</span> <span class="cmd-value">network-sweep</span> <span class="cmd-target">TARGET_SUBNET/24</span></pre>
2906+
</div>
2907+
<div class="tldr-tip sweep-tip">
2908+
<span class="tip-icon">💡</span>
2909+
<span>For large networks (e.g., /16), reduce <code>--top-ports</code> to <code>20</code> and tighten <code>--host-timeout</code> to <code>30s</code> to keep scan times manageable. You can always do deeper per-host scans on interesting findings.</span>
2910+
</div>
2911+
</div>
2912+
2913+
</div><!-- /.tldr-cards -->
2914+
2915+
<div class="tldr-sudo-note">
2916+
💡 <strong>Pro Tip:</strong> Running these commands with <code>sudo</code> enables SYN scan (<code>-sS</code>), OS detection (<code>-O</code>), and raw socket access — resulting in <strong>faster</strong>, <strong>stealthier</strong>, and <strong>more accurate</strong> scans. Without <code>sudo</code>, Nmap falls back to the slower TCP connect scan (<code>-sT</code>).
2917+
</div>
2918+
2919+
</section>
2920+
25642921
<!-- ============ FOOTER ============ -->
25652922
<footer class="footer">
2566-
<p>🛡️ Nmap Recon Playbook — Built by Loki</p>
2923+
<p>🛡️ Nmap Recon Playbook — Built by <a href="https://github.com/UnExplainableFish52" target="_blank">UnExplainableFish52</a></p>
25672924
<p>Use responsibly. Always get authorization. Stay ethical.</p>
25682925
<p style="margin-top:8px; font-size:0.7rem; color:var(--text-muted)">Last updated: February 2026</p>
25692926
</footer>

0 commit comments

Comments
 (0)