Vulnerability Scanning with NMAP

Author: Martin Voelk
January 12, 2016

Almost everyone in IT Security has either heard of or used the powerful port scanning tool NMAP. However a lot of the folks don’t seem to know that NMAP can be turned into a free powerful Vulnerability Scanner like Nessus or OpenVAS.

Here is how to do that (from Kali or any other Linux distro):

nmap -sS -sV –script=vulscan/vulscan.nse target

To eliminate false positives:
nmap -PN -sS -sV –script=vulscan –script-args vulscancorrelation=1 target