Which scan type uses different arbitrary control bits via a --scanflags option?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which scan type uses different arbitrary control bits via a --scanflags option?

Explanation:
The concept being tested is crafting packets with specific TCP flag bits to observe how a host or its filtering devices respond. The --scanflags option in Nmap lets you set arbitrary combinations of TCP control bits, so you can define your own custom probe patterns rather than sticking to standard scans. This enables Custom Control Bit Scans, where you deliberately choose the flag set to explore filter behavior or stealthiness. Fixed Bit Scans would imply using a fixed, non-custom bit pattern, which isn’t what --scanflags provides. Randomized Port Scans focus on varying port numbers, not the TCP flags. Credentialed Scans involve authenticating to the target, not manipulating TCP flags.

The concept being tested is crafting packets with specific TCP flag bits to observe how a host or its filtering devices respond. The --scanflags option in Nmap lets you set arbitrary combinations of TCP control bits, so you can define your own custom probe patterns rather than sticking to standard scans. This enables Custom Control Bit Scans, where you deliberately choose the flag set to explore filter behavior or stealthiness. Fixed Bit Scans would imply using a fixed, non-custom bit pattern, which isn’t what --scanflags provides. Randomized Port Scans focus on varying port numbers, not the TCP flags. Credentialed Scans involve authenticating to the target, not manipulating TCP flags.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy