Which hping3 command performs a FIN, PUSH and URG scan on port 80?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the Certified Ethical Hacker Version 11 Exam with a comprehensive test featuring flashcards and multiple choice questions, each accompanied by hints and explanations to ensure a thorough understanding. Ace your ethical hacking exam with confidence!

Multiple Choice

Which hping3 command performs a FIN, PUSH and URG scan on port 80?

Explanation:
This question hinges on crafting a TCP packet with specific flags to perform a FIN-PUSH-URG scan on a target port. In hping3, you can set individual TCP flags with dedicated options: -F sets FIN, -P sets PUSH, and -U sets URG. Combining all three flags (-F -P -U) creates a FIN+PUSH+URG packet, often referred to as a FIN-PSH-URG (Xmas-like) probe. Targeting port 80 with -p 80 and sending this to the destination IP 10.0.0.25 results in a scan that asks how the host responds to this unusual packet, which can reveal open versus closed states behind network defenses. The other commands do not achieve this specific flag combination. One uses ICMP mode (-1), which sends an ICMP Echo Request rather than a TCP packet with FIN, PUSH, and URG flags. Another sets only the SYN flag (-S) and includes a timestamp option, which does not create the FIN-PUSH-URG probe. The UDP mode (-2) sends UDP packets, not TCP packets with the requested flags.

This question hinges on crafting a TCP packet with specific flags to perform a FIN-PUSH-URG scan on a target port. In hping3, you can set individual TCP flags with dedicated options: -F sets FIN, -P sets PUSH, and -U sets URG. Combining all three flags (-F -P -U) creates a FIN+PUSH+URG packet, often referred to as a FIN-PSH-URG (Xmas-like) probe. Targeting port 80 with -p 80 and sending this to the destination IP 10.0.0.25 results in a scan that asks how the host responds to this unusual packet, which can reveal open versus closed states behind network defenses.

The other commands do not achieve this specific flag combination. One uses ICMP mode (-1), which sends an ICMP Echo Request rather than a TCP packet with FIN, PUSH, and URG flags. Another sets only the SYN flag (-S) and includes a timestamp option, which does not create the FIN-PUSH-URG probe. The UDP mode (-2) sends UDP packets, not TCP packets with the requested flags.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy