Re: nmap -S option

From: Dan Catalin Vasile (hardware_cta@yahoo.com)
Date: Thu Feb 15 2007 - 03:41:14 EST

• Next message: dfullerton@mantor.org: "Content filesystem scan"
• Previous message: Thor (Hammer of God): "Re: Avoid sending current credentials automatically over the network"
• In reply to: Baris Erdogan: "nmap -S option"
• Next in thread: Philippe Dumont: "RE: nmap -S option"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Read the manual:

"
 -S <IP_Address> (Spoof source address)

    In some circumstances, Nmap may not be able to
determine your source address ( Nmap will tell you if
this is the case). In this situation, use -S with the
IP address of the interface you wish to send packets
through.

    Another possible use of this flag is to spoof the
scan to make the targets think that someone else is
scanning them. Imagine a company being repeatedly port
scanned by a competitor! The -e option and -P0 are
generally required for this sort of usage. Note that
you usually won't receive reply packets back (they
will be addressed to the IP you are spoofing), so Nmap
won't produce useful reports.
"

SO, this option can only be used when you have
multiple IP adresses on the machine that initiated the
scan and you want a specific one to be used in the
scan.
OR, you may want to spoof the scan, so it will look
like somebody else is scanning. In this specific
situation you will not recive any data from the scaned
host.

Have secure fun,
Dan

--- Baris Erdogan <bariswinston@yahoo.com> wrote:

> Hello,
>
> When i use "nmap -sS targetaddress -S spoofaddress
> -e eth0" command, nmap does not show open ports at
> end of scan.
> i wanna know whether this is normal case or not.
> do i misuse nmap options?
> Because when i use nmap with "nmap -sS
> targetaddress", nmap shows me open ports at the end
> of scan.
>
> Thanks,
>
> Kind regards,
>
> Baris Erdogan
>
>
>
>
____________________________________________________________________________________
> Any questions? Get answers on any topic at
> www.Answers.yahoo.com. Try it now.
>
>
------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download
> Hailstorm for FREE.
>
>
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
>
------------------------------------------------------------------------
>
>

 
____________________________________________________________________________________
Any questions? Get answers on any topic at www.Answers.yahoo.com. Try it now.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

• Next message: dfullerton@mantor.org: "Content filesystem scan"
• Previous message: Thor (Hammer of God): "Re: Avoid sending current credentials automatically over the network"
• In reply to: Baris Erdogan: "nmap -S option"
• Next in thread: Philippe Dumont: "RE: nmap -S option"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:35 EDT