106
◾
Ethical Hacking and Penetration Testing Guide
The way this works is that the source machine sends an acknowledge
(ack)
packet instead of a
syn packet. If the firewall is stateful, it would know that the there was no SYN packet being sent
and will not allow the packet to reach the destination.
Responses
◾
If there is no response, this means that the firewall is stateful and it’s filtering your packets.
◾
If you receive a reset packet, it means that the packet reached the destination.
The capture from wireshark also gives a better insight into the TCP ACK scan.
Dostları ilə paylaş: