312-50V9 · Question #506
Which of the following Nmap commands would be used to perform a stack fingerprinting?
The correct answer is A. Nmap -O -p80 <host(s.>. Nmap's -O flag enables OS detection by probing the target's TCP/IP stack and comparing responses to a signature database, a technique known as stack fingerprinting.
Question
Which of the following Nmap commands would be used to perform a stack fingerprinting?
Options
- ANmap -O -p80 <host(s.>
- BNmap -hU -Q<host(s.>
- CNmap -sT -p <host(s.>
- DNmap -u -o -w2 <host>
- ENmap -sS -0p target
How the community answered
(30 responses)- A93% (28)
- B3% (1)
- D3% (1)
Why each option
Nmap's -O flag enables OS detection by probing the target's TCP/IP stack and comparing responses to a signature database, a technique known as stack fingerprinting.
The Nmap -O flag activates operating system detection by sending specially crafted TCP, UDP, and ICMP probes and analyzing the responses against Nmap's OS fingerprint database. Combining -O with -p80 ensures an open port is available for the probes, which is a prerequisite for accurate TCP/IP stack fingerprinting results.
-hU and -Q are not valid Nmap flags; this command would fail to execute.
-sT performs a full TCP connect scan without any OS detection capability, so no stack fingerprinting would occur.
-u, -o, and -w2 in this combination are not valid Nmap OS fingerprinting syntax and would not produce stack fingerprinting output.
-0p uses the digit zero rather than the capital letter O, making it a malformed flag that would not invoke OS detection.
Concept tested: Nmap OS detection using TCP/IP stack fingerprinting
Source: https://nmap.org/book/man-os-detection.html
Topics
Community Discussion
No community discussion yet for this question.