nerdexam
Exams312-50V11Questions#698
EC-Council

312-50V11 · Question #698

312-50V11 Question #698: Real Exam Question with Answer & Explanation

The correct answer is A: nmap -p 445 -n -T4 -open 10.1.0.0/16. The fastest Nmap TCP port scan on a large network combines port targeting, disabled DNS resolution, and aggressive timing to maximize speed.

Question

Trinity needs to scan all hosts on a /16 network for TCP port 445 only. What is the fastest way she can accomplish this with Nmap? Stealth is not a concern.

Options

  • Anmap -p 445 -n -T4 -open 10.1.0.0/16
  • Bnmap -p 445 -max -Pn 10.1.0.0/16
  • Cnmap -sn -sF 10.1.0.0/16 445
  • Dnmap -s 445 -sU -T5 10.1.0.0/16

Explanation

The fastest Nmap TCP port scan on a large network combines port targeting, disabled DNS resolution, and aggressive timing to maximize speed.

Common mistakes.

  • B. -max is not a valid Nmap flag, making this command syntactically invalid and non-functional.
  • C. -sn instructs Nmap to perform a ping sweep only with no port scanning, and the port is not specified with -p, so port 445 would never be scanned.
  • D. -s 445 is not a valid Nmap option for specifying a port (the correct flag is -p 445), and -sU performs a UDP scan rather than the required TCP scan.

Concept tested. Nmap TCP port scan speed optimization flags

Reference. https://nmap.org/book/man-briefoptions.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V11 Practice