ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v10 All Questions

View all questions & answers for the 312-50v10 exam
Go to Exam

Exam 312-50v10 topic 1 question 142 discussion

Actual exam question from ECCouncil's 312-50v10
Question #: 142
Topic #: 1
[All 312-50v10 Questions]

If there is an Intrusion Detection System (IDS) in intranet, which port scanning technique cannot be used?

  • A. Spoof Scan
  • B. TCP SYN
  • C. TCP Connect scan
  • D. Idle scan
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by NoImDirtyDan at June 30, 2020, 8:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
NoImDirtyDan
Highly Voted 2 years, 4 months ago
This should be a TCP Connect scan, which is the noisiest and most likely to be logged.
upvoted 13 times
...
WZ1122
Most Recent 7 months ago
Selected Answer: C
TCP Connect scan
upvoted 1 times
...
RDz
1 year, 5 months ago
Refer this article - https://www.ciscopress.com/articles/article.asp?p=469623&seqNum=5 The TCP Full Connect can be detected by IDS
upvoted 2 times
...
TrendMicroDLPSSucks
2 years, 2 months ago
Fundamentally, an idle scan consists of three steps that are repeated for each port: Probe the zombie's IP ID and record it. Forge a SYN packet from the zombie and send it to the desired port on the target. Depending on the port state, the target's reaction may or may not cause the zombie's IP ID to be incremented. Probe the zombie's IP ID again. The target port state is then determined by comparing this new IP ID with the one recorded in step 1.
upvoted 1 times
...
TrendMicroDLPSSucks
2 years, 2 months ago
TcP sync scan, or -sS rpvodies a sync with no ack hence doe snot complete 3way handshake
upvoted 3 times
...
TrendMicroDLPSSucks
2 years, 2 months ago
IP spoofing is the creation of Internet Protocol (IP) packets which have a modified source address in order to either hide the identity of the sender, to impersonate another computer system, or both. ... If the packet has been spoofed, the source address will be forged.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago