nerdexam
Exams312-50V11Questions#613
EC-Council

312-50V11 · Question #613

312-50V11 Question #613: Real Exam Question with Answer & Explanation

The correct answer is A: Nmap -O -p80 <host(s.>. The -O flag in Nmap enables OS detection by analyzing TCP/IP stack responses, a technique known as stack fingerprinting. Pairing it with -p80 directs the probe to a commonly open port to improve accuracy.

Question

Which of the following Nmap commands would be used to perform a stack fingerprinting?

Options

  • ANmap -O -p80 <host(s.>
  • BNmap -hU -Q<host(s.>
  • CNmap -sT -p <host(s.>
  • DNmap -u -o -w2 <host>
  • ENmap -sS -0p target

Explanation

The -O flag in Nmap enables OS detection by analyzing TCP/IP stack responses, a technique known as stack fingerprinting. Pairing it with -p80 directs the probe to a commonly open port to improve accuracy.

Common mistakes.

  • B. The flags -hU and -Q are not valid Nmap options, making this command syntactically incorrect and non-functional.
  • C. The -sT flag initiates a TCP connect scan to enumerate open ports but does not perform OS detection without the -O flag.
  • D. The flags -u -o -w2 do not correspond to valid Nmap OS fingerprinting options and would not perform stack fingerprinting.
  • E. While -sS performs a SYN scan, the token '-0p' is malformed - it uses the digit zero instead of the letter O and omits a port number - making the command invalid.

Concept tested. Nmap OS detection via TCP/IP stack fingerprinting

Reference. https://nmap.org/book/man-os-detection.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V11 Practice