Which of the following is a typical drawback of OS detection with -O?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the Nmap and ZenMap Tests. Access flashcards and multiple choice questions, with hints and explanations for each question. Ensure success in your exam!

Multiple Choice

Which of the following is a typical drawback of OS detection with -O?

Explanation:
OS detection with -O works by sending a variety of probes and comparing the host’s replies to a fingerprint database. The typical drawback is that network devices in the path—firewalls, NATs, and IDSs—can interfere with those probes, block or alter responses, and mask the true characteristics of the target’s TCP/IP stack. This can make fingerprints unreliable, leading to incorrect OS guesses or no result at all. Other options aren’t the main issue in practice: while privileged access is often required to send raw packets, that’s a setup constraint rather than a reliability problem; OS detection isn’t guaranteed to be perfect in all cases, but saying it always is ignores real-world noise; and you don’t need physical access to perform remote OS detection.

OS detection with -O works by sending a variety of probes and comparing the host’s replies to a fingerprint database. The typical drawback is that network devices in the path—firewalls, NATs, and IDSs—can interfere with those probes, block or alter responses, and mask the true characteristics of the target’s TCP/IP stack. This can make fingerprints unreliable, leading to incorrect OS guesses or no result at all.

Other options aren’t the main issue in practice: while privileged access is often required to send raw packets, that’s a setup constraint rather than a reliability problem; OS detection isn’t guaranteed to be perfect in all cases, but saying it always is ignores real-world noise; and you don’t need physical access to perform remote OS detection.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy