nerdexam
EC-Council

312-50V10 · Question #343

312-50V10 Question #343: Real Exam Question with Answer & Explanation

The correct answer is C. Stealth scan. The NMAP -sS flag performs a TCP SYN scan, known as a stealth scan because it never completes the three-way handshake.

Scanning Networks

Question

A security engineer is attempting to map a company's internal network. The engineer enters in the following NMAP command: NMAP -n -sS -P0 -p 80 ... What type of scan is this?

Options

  • AQuick scan
  • BIntense scan
  • CStealth scan
  • DComprehensive scan

Explanation

The NMAP -sS flag performs a TCP SYN scan, known as a stealth scan because it never completes the three-way handshake.

Common mistakes.

  • A. A quick scan uses the -F flag to scan a reduced set of ports, which is not present in this command.
  • B. An intense scan uses -T4 -A to enable OS detection, version scanning, and script scanning, none of which are specified here.
  • D. A comprehensive scan typically combines -sS -sU -T4 -A -v across a broad port range, far beyond the single-port scan shown here.

Concept tested. NMAP TCP SYN stealth scan technique

Reference. https://nmap.org/book/man-port-scanning-techniques.html

Topics

#NMAP#SYN scan#stealth scan#port scanning

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V10 Practice