A security analyst runs the following Nmap command: nmap -sS -sV -O -p 22,80,443,3389 192.168.1.0/24. Which of the following BEST describes what this scan will accomplish?
Trap 1: Perform a full TCP connect scan with UDP service detection on all…
-sS is a SYN scan, not a full connect scan. -sV detects TCP service versions, not UDP. Not all ports are specified.
Trap 2: Perform an aggressive scan of all open ports and enumerate SMB…
The -A flag enables aggressive mode (not used here). SMB enumeration requires specific scripts (--script smb-enum-shares). The specified ports do not include 445.
Trap 3: Perform a UDP scan on the four specified ports and identify running…
-sS is a TCP SYN scan, not a UDP scan. UDP scanning requires the -sU flag.
- A
Perform a full TCP connect scan with UDP service detection on all ports
Why wrong: -sS is a SYN scan, not a full connect scan. -sV detects TCP service versions, not UDP. Not all ports are specified.
- B
Perform a TCP SYN scan on four ports, detect service versions, and attempt OS fingerprinting
-sS = SYN/stealth scan, -sV = version detection, -O = OS fingerprinting, -p 22,80,443,3389 = scan only these four ports. This is a targeted reconnaissance scan.
- C
Perform an aggressive scan of all open ports and enumerate SMB shares
Why wrong: The -A flag enables aggressive mode (not used here). SMB enumeration requires specific scripts (--script smb-enum-shares). The specified ports do not include 445.
- D
Perform a UDP scan on the four specified ports and identify running services
Why wrong: -sS is a TCP SYN scan, not a UDP scan. UDP scanning requires the -sU flag.