Nmap Scanning with Categories

Example 1: Nmap script scan with categories

Categories

• https://nmap.org/book/nse-usage.html#nse-categories
  • auth
  • broadcast
  • brute
  • default
  • discovery
  • dos
  • exploit
  • external
  • fuzzer
  • intrusive
  • malware
  • safe
  • version
  • vuln

# Scan UDP/161 with all snmp-* scripts
# Do not use categories: vuln, intrusive, malware, dos, exploit, or fuzzer
sudo nmap -p161 -sU --script "(not vuln and not intrusive and not malware and not dos and not exploit and not fuzzer) and snmp-*" <target>