Output Format Scan PDF 1661526017
Output Format Scan PDF 1661526017
Page 2 of 14
Introduction- Scan Output Formats
Pentesters sometimes notice that it becomes troublesome to come up with reports in an explicit format
where conducting network scans in giant organizations is extremely tedious. Many organizations make a
huge mistake by not using the right set of tools to prepare the report for the output that is derived from
the scans.
The Nmap tool has the capability to prepare scan results in various formats, which gives the pentester
multiple options like generating an HTML page, CSV formats, scripting language etc. So let us explore all
the scan output options provided by nmap and look at how useful it can be to any organization, depending
on their needs.
Page 3 of 14
If a pentester wants to create the scan reports in Normal as well as XML form in a combination.:
Here you see the port numbers, the state of the ports, and the type of the packet that determined the
state of the port or the host.
Page 4 of 14
Verbosity mode
To increase the level of verbosity for printing more information about the scan. In this scan details like
open ports, estimated time of completion, etc are highlighted.
This mode is used twice or more for better verbosity: -vv, or give a verbosity level directly, like -vv, v2, v3.
Page 5 of 14
Debugging mode
Debugging mode is generally used when the verbose mode doesn’t provide enough details about the scan,
so it digs deeper into the scanning process. The level of debug can be increased by specifying its number.
Here you get details like the flags [resent in the packets], the time-to-live etc.
Page 6 of 14
Another such command:
Page 7 of 14
Page 8 of 14
Nmap Scan Report in XML Format
-oX <filespec>
It stands for Extensible Markup Language which is a tree-structured file format that is supported by Nmap.
The results from the Nmap scan can be exported into an XML file and be further used for analysis or
another additional task.
When an XML report is generated, it contains information like an executed command, host and port
states, Nmap Scripting Engine output services, timestamps, run statistics, and debugging information.
Page 9 of 14
Sometimes, Pentesters prefer getting an html stylesheet as their report as it gives much-organised scan
results:
Page 10 of 14
Appending the output
Nmap by default overwrites logfiles by using any output options. We can use the append option to
append the results instead of overwriting them:
Page 11 of 14
been included to help pentesters extract information from logs without the need to write a parser, as this
format is meant to be read/parsed with standard Unix tools. It helps in finishing up the scan really quickly.
Page 12 of 14
Page 13 of 14
Page 14 of 14
JOIN OUR
TRAINING PROGRAMS
H ERE
CLICK BEGINNER
Network Pentest
Wireless Pentest
ADVANCED
Advanced CTF
Android Pentest Metasploit
EXPERT
Privilege Escalation
APT’s - MITRE Attack Tactics
Windows
Active Directory Attack
Linux
MSSQL Security Assessment
www.ignitetechnologies.in