Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: nmap -S option

from [Baris Erdogan] Network Security [Permanent Link]
Subject: Re: nmap -S option
Date: Thu, 15 Feb 2007 06:17:34 -0800 (PST) 
I have sniffed the traffic when i have used -S option. No original IP address 
are sent over the network and destination system responds to spoofed IP address 
so nmap cannot capture TCP flags used in TCP packet. 

Thanks you all.
 
Baris Erdogan


----- Original Message ----
From: Per-Fredrik Pollnow <per-fredrik.pollnow@sungard.se>
To: Baris Erdogan <bariswinston@yahoo.com>
Cc: pen-test@securityfocus.com
Sent: Thursday, February 15, 2007 8:54:22 PM
Subject: Re: nmap -S option


If you read Nmap?s man page, under the ?S option flag, you can see the
?Note?:

/////////////////////
Note that you usually won't receive reply packets back (they will be
addressed to the IP you are spoofing), so Nmap won't produce useful
reports.
/////////////////////

For better understanding of IP-spoofing:
http://www.securityfocus.com/infocus/1674
(http://www.packetstormsecurity.org/spoof/ip-spoof-guides/IPSpoofing.txt)


MvH
Per-Fredrik Pollnow
SunGard/iXsecurity




                                                                           
             Baris Erdogan                                                 
             <bariswinston@yah                                             
             oo.com>                                                    To 
             Sent by:                  pen-test@securityfocus.com          
             listbounce@securi                                          cc 
             tyfocus.com                                                   
                                                                   Subject 
                                       nmap -S option                      
             02/14/2007 10:13                                              
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           




Hello,

When i use "nmap -sS targetaddress -S spoofaddress -e eth0" command, nmap
does not show open ports at end of scan.
i wanna know whether this is normal case or not.
do i misuse nmap options?
Because when i use nmap with "nmap -sS targetaddress", nmap shows me open
ports at the end of scan.

Thanks,

Kind regards,

Baris Erdogan



____________________________________________________________________________________

Any questions? Get answers on any topic at www.Answers.yahoo.com.  Try it
now.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW

------------------------------------------------------------------------


 
____________________________________________________________________________________
Get your own web address.  
Have a HUGE year through Yahoo! Small Business.
http://smallbusiness.yahoo.com/domains/?p=BESTDEAL

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  nmap -S option, Baris Erdogan
Next by Date:  Re: nmap -S option, Cedric Blancher
Previous by Thread:  Re: nmap -S option, Manuel Arostegui
Next by Thread:  Re: nmap -S option, bariswinston
Indexes:  [Date] [Thread] [Top] [All Lists]