Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: options -sn not just pinging

From: David Fifield <david () bamsoftware com>
Date: Tue, 18 Apr 2017 14:20:09 -0700
On Mon, Apr 17, 2017 at 09:17:55PM +0000, Christopher C Thornton wrote:

When I run this scan

nmap -sn 192.168.9.0/25

nmap pings the address range (expected result )
but it also sends syn packets to tcp port 443 on each of the IP’s  
And it sends ack packets to port 80


-sn doesn't mean "ping scan"; it means "host discovery only." The
default host discovery sends four probes:
        ICMP echo
        TCP SYN to port 443
        TCP ACK to port 80
        ICMP timestamp request
If you only want ICMP echo, do -sn -PE.
_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: