Shared Flashcard Set

Details

CEH Certified Ethical Hacker 312-50:NMAP flag settings
CEH Certified Ethical Hacker 312-50 NMAP flag settings
30
Computer Science
Professional
03/16/2013
Click here to study/print these flashcards.

Create your own flash cards! Sign up here.

Additional Computer Science Flashcards

 

 

Cards

Term
-sS
 Definition
SYN scan-flag
Half Open" Scan
Term
sA
useful on which systems
 Definition
ACK scan
Linux/Unix
Term
-sX
 Definition
XMAS scan
Term
-sN
useful on which systems
 Definition
NULL scan
Linux/Unix
Term
-sR
 Definition
RPC scan
Term
-sW
 Definition
Windows scan
Term
-sI
 Definition
Idle scan
Term
-sF
 Definition
FIN scan
Term
-sT
 Definition
TCP Connect scan
Term
Speed: serial / slowest -T paranoid
 Definition
-T0 Verbose alternate
Term
Speed: Serial / slow -T sneaky
 Definition
-T1 Verbose alternate
Term
Speed: Serial / Normal -T polite
 Definition
-T2 Verbose alternate
Term
Speed : Normal / parallel -T normal
 Definition
-T3 Verbose alternate
Term
Speed : Parallel / fast -T aggressive
 Definition
-T4 Verbose alternate
Term
Speed: Parallel / fastest -T Insane
 Definition
-T5 Verbose alternate
Term
-A
 Definition
Agressive scanning, which uses scripts, and therefore enables the scripting engine, called NSE.
Term
-sC
 Definition
Enables common scripts, and therefore enables the scripting engine, called NSE.
Term
-p
 Definition
Specified the ports to be scanned. Examples: -p 80 -p 1-65535 -p 23,25,53
Term
-p U:53-57,T:80,8080
 Definition
Scans UDP ports 53-57 and TCP ports 80 and 8080.
Term
-sP
 Definition
Ping scan, which enumerates hosts on the network. ICMP ping sent; if no response, a TCP ping is sent. If response is SYN/ACK, the port is open. RST/ACK response indicates a closed port.
Term
-sS
 Definition
SYN/Stealth/Half-open scan:. SYN/ACK means port is open. RST/ACK means port is closed.
Term
-sV
 Definition
Version detection: Attempts to determine which service or program is listening on a particular port
and, if possible, the version number of that service or program.
Term
-PO (letter O)
 Definition
First, it disables ICMP pings, skipping the initial ICMP ping scan. Then, it scan hosts that do not respond to ICMP. Useful to avoid detection.
Term
-sO
 Definition
Performs a protocol scan. 1=ICMP, 2=IGMP, 6=TCP, 17=UDP.
Term
-A or -sC
 Definition
Nmap Scripting Engine (NSE) can do the following: Network discovery Advanced version detection Vulnerability detection Backdoor detection Vulnerability exploitation
Term
-PR
 Definition
Arp scan;  puts Nmap and its optimized algorithms in charge of ARP requests, which optimizes scanning an ethernet LAN for hosts
Term
-sL
 Definition
Reverse DNS query
Term
-PT
 Definition
TCP Ping sweep
Term
-o newscan.txt
 Definition
Specify results file newscan.txt
Term
–P0
 Definition
Completely removes the nmap ping requirement from the pre-scanning process. Nmap will still attempt a reverse DNS on the remote station unless the disable reverse DNS (-n) option is used.
Supporting users have an ad free experience!