Which flag would you use to perform operating system detection via TCP/IP fingerprinting?

Prepare for the Nmap and ZenMap Tests. Access flashcards and multiple choice questions, with hints and explanations for each question. Ensure success in your exam!

Multiple Choice

Which flag would you use to perform operating system detection via TCP/IP fingerprinting?

Explanation:
OS detection via TCP/IP fingerprinting works by sending crafted probes and analyzing how the target responds—looking at patterns like TTL, window size, TCP options, and acknowledgment behavior to infer the operating system. In Nmap, this capability is enabled with the -O flag, which activates TCP/IP fingerprinting and matches the observed response patterns against known OS fingerprints. The other options serve different purposes: -sV focuses on service and version detection, -F performs a fast scan, and -p- scans all ports. Therefore, to perform operating system detection via TCP/IP fingerprinting, you would use the -O flag.

OS detection via TCP/IP fingerprinting works by sending crafted probes and analyzing how the target responds—looking at patterns like TTL, window size, TCP options, and acknowledgment behavior to infer the operating system. In Nmap, this capability is enabled with the -O flag, which activates TCP/IP fingerprinting and matches the observed response patterns against known OS fingerprints. The other options serve different purposes: -sV focuses on service and version detection, -F performs a fast scan, and -p- scans all ports. Therefore, to perform operating system detection via TCP/IP fingerprinting, you would use the -O flag.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy