Nmap Scanning with Categories

Example 1: Nmap script scan with categories

Categories

• https://nmap.org/book/nse-usage.html#nse-categories
  • auth
  • broadcast
  • brute
  • default
  • discovery
  • dos
  • exploit
  • external
  • fuzzer
  • intrusive
  • malware
  • safe
  • version
  • vuln

# Scan UDP/161 with all snmp-* scripts
# Do not use categories: vuln, intrusive, malware, dos, exploit, or fuzzer
sudo nmap 10.10.0.113 -p161 -sU --script \
"(not vuln \
and not intrusive \
and not malware \
and not dos \
and not exploit \
and not fuzzer) \
and snmp-*"