nmap (Network Mapper) is an industry standard tool for mapping networks, identifying live hosts and discovering running services.
A Nmap scan usually goes through these steps, although many are optional and depend on the command-line arguments you provide:
- Enumerate targets
- Discover live hosts
- Reverse-DNS lookup
- Ports scanning
- Detect versions
- Detect OS
- Traceroute
- Scripts
- Write output