nerdexam
Exams312-50V9Questions#490
EC-Council

312-50V9 · Question #490

312-50V9 Question #490: Real Exam Question with Answer & Explanation

The correct answer is B: NMAP -P0 -A -O -p1-65535 192.168.0/24. Scanning a class C network with ICMP blocked requires skipping ping discovery, specifying all 65535 ports, and enabling OS and service fingerprinting.

Question

Which NMAP command combination would let a tester scan every TCP port from a class C network that is blocking ICMP with fingerprinting and service detection?

Options

  • ANMAP -PN -A -O -sS 192.168.2.0/24
  • BNMAP -P0 -A -O -p1-65535 192.168.0/24
  • CNMAP -P0 -A -sT -p0-65535 192.168.0/16
  • DNMAP -PN -O -sS -p 1-1024 192.168.0/8

Explanation

Scanning a class C network with ICMP blocked requires skipping ping discovery, specifying all 65535 ports, and enabling OS and service fingerprinting.

Common mistakes.

  • A. This option omits a port range argument, so NMAP defaults to scanning only the top 1000 ports rather than all 65535 TCP ports as required.
  • C. The /16 CIDR notation targets a class B network spanning 65536 hosts rather than a single class C /24 subnet, making the scope incorrect.
  • D. The -p 1-1024 argument restricts scanning to only privileged ports, not all 65535 TCP ports, and /8 targets an entire class A address space.

Concept tested. NMAP flags for full TCP port scan bypassing ICMP filtering

Reference. https://nmap.org/book/man.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V9 Practice