What is the purpose of the --badsum option and when would you use it?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the Nmap and ZenMap Tests. Access flashcards and multiple choice questions, with hints and explanations for each question. Ensure success in your exam!

Multiple Choice

What is the purpose of the --badsum option and when would you use it?

Explanation:
This option is about testing how a network handles malformed traffic by using deliberately invalid checksums. By sending packets whose checksum fields are intentionally incorrect, you can see whether devices like firewalls or intrusion detection systems still respond, drop, or log the traffic. Some systems only perform superficial checks and may let bad-checksum packets through, while properly validating stacks will drop them. This helps you assess whether any detection or filtering is relying on checksum validity and how a target might react to evasion attempts. That’s why the best description is that it sends packets with intentionally invalid checksums to try evading simplistic detection. It’s not about sending legitimate traffic, increasing speed, or changing the target’s expectations—it's a diagnostic probe of how traffic with bad checksums is treated by the network and security devices. Use with care, as malformed packets can provoke abnormal or disruptive responses.

This option is about testing how a network handles malformed traffic by using deliberately invalid checksums. By sending packets whose checksum fields are intentionally incorrect, you can see whether devices like firewalls or intrusion detection systems still respond, drop, or log the traffic. Some systems only perform superficial checks and may let bad-checksum packets through, while properly validating stacks will drop them. This helps you assess whether any detection or filtering is relying on checksum validity and how a target might react to evasion attempts.

That’s why the best description is that it sends packets with intentionally invalid checksums to try evading simplistic detection. It’s not about sending legitimate traffic, increasing speed, or changing the target’s expectations—it's a diagnostic probe of how traffic with bad checksums is treated by the network and security devices. Use with care, as malformed packets can provoke abnormal or disruptive responses.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy