While performing a SYN (half-open) scan using Nmap, you send a SYN packet to a target IP address and receive a SYN/ACK response. How should this result be interpreted?
A.
The scanned port is open and ready to establish a connection
According to the CEH Network Scanning module, a SYN scan works by analyzing TCP handshake responses.
SYN → SYN/ACK = Port OPEN
SYN → RST = Port CLOSED
No response = FILTERED
Option A is correct.
CEH emphasizes SYN scanning as stealthy because the handshake is never completed.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit