`nmap -p- -sV 10.129.177.5` `-p-` scans all ports `-sV` will determine service and version on port `-sC` will use default scripts, better detection myof services - should not be ran on networks without permission [Learning by practicing: Active (Nmap) vs Passive (p0f) information gathering](https://www.securitynik.com/2016/08/active-nmap-vs-passive-p0f-information_10.html)