A penetration tester is performing an Nmap scan on a target system to gather as much information as possible without raising suspicion. The tester suspects the presence of a fairly updated intrusion detection system (IDS) on the network. Which of the following Nmap options should the tester use to perform OS detection in the most efficient manner while maintaining a lower profile?
-T2 -O is correct because the -O flag in Nmap is used for operating system detection. However, when trying to maintain a lower profile to avoid detection by an IDS, it's important to adjust the timing of the scan to make it slower and less aggressive.
-T4 -O is incorrect because it speeds up the scan, which increases the chances of detection.
--osscan-limit -O -T2 is incorrect because the --osscan-limit option limits OS detection to promising targets and -T2 makes the scan quite slow but does not specify stealth measures.
-O is incorrect because -O merely activates OS detection without considering stealth or timing concerns.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does the -O flag do in Nmap?
Open an interactive chat with Bash
What is the purpose of timing options like -T2 in Nmap scans?
Open an interactive chat with Bash
What are some strategies for avoiding detection when using Nmap?