Penetration Testing LAB

NMAP

PING-Scan considered host up

• Normal User: host accepts or refuses (TCP rst) a connection
• Root and host in same network: host answers an ARP request
• normal user and host in diff network:
  • host answers to icmp echo request
  • host replies to tcp ack on port 80
  • host replies to tcp syn on port 443

• root and host in diff network