Penetration Testing mailing list archives

Re: NMAP Concurrent Scans

From: "rajat swarup" <rajats () gmail com>
Date: Sat, 11 Aug 2007 01:06:05 -0400

On 8/10/07, Clone <en0lc () yahoo com> wrote:

Hello Everyone,

I'm new to NMAP. I have a curious question that I
wanted to get expert opinion on...

I was wondering whether running SYN, FIN, XMAS, NULL
and ACK scans in parallel on a target generate false
results. Since same client IP is  asking for opening &
closing a connection on target machine will it not
 render some ports open and other closed in the
report?


No...the TCP connections required are based on the sequence numbers
generated by the source port.  each flow is identified by source port
and sequence numbers.  i'm not sure what's the source port generating
algorithms are used by nmap though.

-- 
Rajat Swarup

http://rajatswarup.blogspot.com/

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

Current thread:

NMAP Concurrent Scans Clone (Aug 10)
- Re: NMAP Concurrent Scans Burak CIFTER (Aug 11)
- Re: NMAP Concurrent Scans Tim (Aug 11)
- Re: NMAP Concurrent Scans rajat swarup (Aug 11)