While conducting an internal penetration test, you need to determine which TCP ports are listening on a file server without generating logs that record completed three-way handshakes. Security monitoring on the network largely ignores single SYN probes but flags any full TCP connections. Which Nmap scan type best satisfies these requirements?
The TCP SYN (half-open) scan, invoked with the -sS option, sends only the initial SYN packet to each target port. If the port is open, the server replies with SYN/ACK, and Nmap immediately responds with an RST instead of completing the handshake. Because the TCP three-way handshake is never finished, many intrusion detection or logging systems that focus on completed connections do not record the attempt, making the technique comparatively stealthy. A TCP connect scan (-sT) does complete the handshake and is therefore more likely to be logged. A UDP scan (-sU) probes UDP ports, not TCP, and a FIN scan (-sF) relies on sending bare FIN packets, which can be filtered or ignored and is primarily useful against stateless filtering devices, not stateful firewalls that monitor connection states.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is the TCP SYN (half-open) scan considered stealthier than a TCP connect scan?
Open an interactive chat with Bash
What are the main differences between TCP SYN scan (-sS) and TCP FIN scan (-sF)?
Open an interactive chat with Bash
How does a UDP scan (-sU) differ from a TCP SYN scan (-sS) in assessing network ports?
Open an interactive chat with Bash
What is the TCP SYN scan (-sS)?
Open an interactive chat with Bash
Why is the three-way handshake important to TCP communication?
Open an interactive chat with Bash
How does the TCP SYN scan compare to other Nmap scan types like FIN or UDP?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Reconnaissance Techniques
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .