Unlocking the Power of Port Scanning with Illegal Flag Combinations
5 Questions
2 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

Which of the following flag combinations can be used to scan a target for open ports?

  • FIN, URG, PUSH
  • SYN, ACK
  • FIN, URG, PUSH, ACK (correct)
  • ACK

    • What does analyzing the header information (WINDOW field) of received RST packets help determine?

  • The TCP/IP implementation details used by the majority of systems on the Internet
  • The operating system of the target
  • Whether the port is open or closed (correct)
  • The number of open ports on the target

    • Why can't you rely solely on the technique of analyzing the WINDOW field to determine the state of ports?

  • The technique is not supported by Microsoft Windows
  • The WINDOW value on closed ports is always zero
  • The technique is not reliable (correct)
  • The technique only works on OSes with RFC 793-compliant TCP/IP implementations

    • Which flag is set in the TCP probe packets used in the FIN Use ACK Flag Probe Scan?

    <p>ACK</p> Signup and view all the answers

    What does a non-zero WINDOW value on a particular port imply?

    <p>The port is open</p> Signup and view all the answers

    More Like This

    Use Quizgecko on...
    Browser
    Open
    Browser
    Browser