Exam 312-50v11 topic 1 question 305 discussion

-D = Decoy

IDS/Firewall Evasion Techniques - IP Address Decoy IP address decoy technique refers to generating or manually specifying the IP addresses of decoys in order to evade an IDS or firewall. # Nmap -D RND:10 <target IP address> (P.359/343)

-D = Decoy

with Nmap -D you scan spoof the source adresses!!

Answer Is decoy, I attach refrence commands https://nmap.org/man/es/man-briefoptions.html

answer is D Nmap may be used to create decoys, that are meant to fool firewalls. whereas decoys is used for nefarious functions, it’s usually used to rectify. nmap -D 192.168.0.1,192.168.0.2,… When using the -D command, you’ll be able to follow the command with a list of decoy addresses. These decoy addresses also will show as if they’re scanning the network, to obfuscate the scan that’s actually being done. Similarly, it’s possible to use commands like “–spoof-mac” to spoof an Nmap mac address, similarly as the command “-S” to spoof a source address.

The attacker must scan every port on the server several times using a set of spoofed source IP addresses.` Suppose that you are using Nmap to perform this scan. What flag will you use to satisfy this requirement?