Unlocking the Power of Port Scanning with Illegal Flag Combinations

Questions and Answers

PDF Questions PDF Answers

Which of the following flag combinations can be used to scan a target for open ports?

FIN, URG, PUSH

SYN, ACK

FIN, URG, PUSH, ACK (correct)

ACK

What does analyzing the header information (WINDOW field) of received RST packets help determine?

The TCP/IP implementation details used by the majority of systems on the Internet

The operating system of the target

Whether the port is open or closed (correct)

The number of open ports on the target

Why can't you rely solely on the technique of analyzing the WINDOW field to determine the state of ports?

The technique is not supported by Microsoft Windows

The WINDOW value on closed ports is always zero

The technique is not reliable (correct)

The technique only works on OSes with RFC 793-compliant TCP/IP implementations

Which flag is set in the TCP probe packets used in the FIN Use ACK Flag Probe Scan?

ACK

What does a non-zero WINDOW value on a particular port imply?

The port is open