This is an extremely basic question but also one I can't really seem to find an answer for, despite looking through the nmap documentation (man, online, and google).
My question is, what is the difference between doing nmap <target>
and nmap -sS <target>
, for example? I know that -sS
is a TCP SYN scan, but I guess what I am not sure of is how/why this differs from just scanning ports using nmap <target>
?
Best Answer
There is no difference. Per the man page -sS is the default scan type (usually.. see the man page for exceptions). I've confirmed this with a tcpdump.