ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam
Go to Exam

Exam 312-50v12 topic 1 question 188 discussion

Actual exam question from ECCouncil's 312-50v12
Question #: 188
Topic #: 1
[All 312-50v12 Questions]

A penetration tester was assigned to scan a large network range to find live hosts. The network is known for using strict TCP filtering rules on its firewall, which may obstruct common host discovery techniques. The tester needs a method that can bypass these firewall restrictions and accurately identify live systems. What host discovery technique should the tester use?

  • A. ICMP Timestamp Ping Scan
  • B. ICMP ECHO Ping Scan
  • C. TCP SYN Ping Scan
  • D. UDP Ping Scan
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by DarioReymag at Feb. 6, 2024, 10:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
insaniunt
Highly Voted 1 year, 4 months ago
Selected Answer: D
D. UDP Ping Scan When dealing with strict TCP filtering rules on a firewall, a UDP Ping Scan can be an effective host discovery technique. Unlike ICMP or TCP SYN ping scans, UDP ping scans use UDP packets, which can sometimes bypass certain firewall restrictions.
upvoted 5 times
insaniunt
1 year, 4 months ago
module 3 page 286 from ceh v12 book
upvoted 4 times
...
...
e020fdc
Most Recent 1 month, 2 weeks ago
Selected Answer: C
ChatGPT says C: In environments with strict TCP filtering rules on firewalls, traditional host discovery methods like ICMP pings are often blocked or ignored, making them unreliable for identifying live hosts. However, firewalls often allow traffic to certain TCP ports (e.g., port 80 for HTTP, 443 for HTTPS) to remain functional — and that’s where a TCP SYN Ping Scan comes in. 🔍 TCP SYN Ping Scan (-PS in Nmap): - Sends TCP SYN packets to specified ports (commonly allowed ones like 80, 443). - If the host is alive and the port is open, it will respond with a SYN-ACK. - Even if the port is closed, the host will send a RST, confirming it is up. - Useful for bypassing ICMP and default ping blocking on firewalls. - Faster and stealthier than full connection scans.
upvoted 1 times
...
agelbahri
3 months, 3 weeks ago
Selected Answer: A
strict TCP filtering rules on its firewall
upvoted 1 times
...
7c4eac1
7 months, 1 week ago
Selected Answer: C
SYN packets are often permitted for legitimate connection attempts, making it an effective way to discover hosts in environments with restricted ICMP and UDP traffic.
upvoted 1 times
...
qtygbapjpesdayazko
1 year, 3 months ago
Selected Answer: D
Is D. Key word "strict TCP filtering rules on its firewall". so can not be ICMP and TCP related scans.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel