Mod 1 - Port Scanners - PE

Question 1

This Parameter will control the timing of scanning and is the highest speed available. This speed can expose your overall intent.

Answer 1

-T5

Question 2

This Parameter will commence a XMAS scan on a device.

Answer 2

nmap -sX

(for slide just use -sX)

Question 3

This Parameter will export the scan results as an XML for external manipulation.

Answer 3

-oX

Question 4

Nmap’s default scan with admin privileges.

• -Pn
• -sT
• -sS
• sU

Answer 4

-sS

Question 5

Nmaps default scan with without admin privileges.

• Pn
• sT
• sS
• sU

Answer 5

-sT

Question 6

This Parameter will give more information on basic scans implemented

Answer 6

-v

Question 7

____ - This port state is the result of an active port with an application that is actively accepting TCP connections.

Answer 7

open

Question 8

This Parameter will scan only the provided ports input

Answer 8

-p

Question 9

____ Is the result when it cannot determine whether the port is active because packet sorting stops connections from reaching the port. It could be the result of a dedicated firewall device, router, router rules or host-based firewall software.

Answer 9

filtered

Question 10

Make an nmap scan for nonexist.org and include more information

Answer 10

nmap -v nonexist.org

Question 11

What flags are sent in a Christmas scan?

• SYN,SYN/ACK,PSH,ACK
• FIN,PSH,URG
• FIN,PSH,URG,SYN,SYN/ACK
• FIN,SYN,SYN/ACK,PSH

Answer 11

FIN,PSH,URG

Question 12

This parameter with specified numbers will scan all ports

Answer 12

-p 0-65535

Question 13

Conduct a service probe on “scanme.nmap.org” for top ports on the machine. What ports are open? EX:10,20,30,455 (Lowest to highest port)

Question 14

This parameter/option will assume every host in a network scan is online. Example: -sS

Answer 14

-Pn

Question 15

This Parameter will enable you to import a list of ip addresses or networks to scan

Answer 15

-iL

Question 16

Nmap scans how many ports by default if not specified?

• 500 ports
• 1000 ports
• Top 1000 used ports
• All well known ports

Answer 16

Top 1000 used ports

Question 17

What is the possible Operating system for scanme.nmap.org?

• Linux
• Solaris
• Debian
• Windows

Answer 17

Linux

Question 18

When implementing nmap on a network its capabilities can include identifying ports, servers and active hosts within the network scope. What type of reconissiance is nmap classified to implement on a network?

• Recursive
• Active
• Passive
• Port-scanner

Answer 18

Active

Question 19

This parameter will enable OS detection

Answer 19

-O

Question 20

____ The result of a port that is active but has no application listening on it.

Answer 20

closed

Question 21

Nmap has the capability to integrate scripts

• TRUE
• FALSE

Answer 21

TRUE

Question 22

____ Is the result when nmap can connect to a port but is unable to verify ports as active or deactivated

Answer 22

unfiltered

Question 23

Create a nmap scan that will scan a 198.216.0.0/16 network for version information on services ssh,dns,pop3 and RDP

Question 24

This Parameter will control the timing of scanning and takes the longest time to assist in avoiding detection.

Answer 24

-T0

Question 25

Nmap scans are a form of what type of reconnisance?

Answer 25

active