Target Enumeration and Port Scanning Techniques
◾
109
Performing an IDLE Scan with NMAP
Now that we have identified a good candidate for our zombie, let’s try performing an IDLE scan
with nmap. The idle scan can be simply performed by specifying the –sI parameter with nmap,
followed by the iP of our zombie host and the target that we want to scan against.
Command
:
nmap –sI
Also, one thing that would be worth mentioning here is that while performing an IDLE scan,
you should also use the –pN option. This will prevent nmap from sending an initial packet from
your real IP to the target host. Here is another example from the nmap book, which shows the idle
scan being performed on riaa.com by using a host that belongs to adobe.com.
Dostları ilə paylaş: