Documente Academic
Documente Profesional
Documente Cultură
1
Information Networking Security and Assurance Lab
National Chung Cheng University
Introduction
Connect Disconnect
Client Server Client Server
SYN FIN
SYN/ACK ACK/FIN
ACK ACK
Flag
SYN The beginning of a connection
ACK Acknowledge receipt of a previous packet
or transmission
FIN Close a TCP connection
RST Abort a TCP connection
TCP Ping
nmap –sT 192.168.0.1
RPC service
nmap –sR 192.168.0.1
No firewall~
With -sN
IP Header
Nmap –sO <target host>
FTP Bounce
Decoys
Disable Randomizing
Fragmentation (-D) Ports
(-f) (-r)
NmapNmap
–b anonymous@<ftp server> –p <targer port> <target host>
–sS –f <target host>
Nmap –D <spoof host> <target host>
Time-based
Nmap –T <name>algorithm
<target host>
name
Using -TProbe
option Time Spent Time Use
Response on One Host between Parallelized
Timeout Probes Probes
Paranoid 5 min Unlimited 5 min No
With –O flag
OS information
Nmap –O 192.168.0.1
Netscantools
Superscan
IPEYE
WUPS