as a note to self (and anyone who reads the blog)
"The host discovery (ping probe) defaults have been enhanced to include twice as many probes. The default is now "-PE -PS443 -PA80 -PP". In exhaustive testing of 90 different probes, this emerged as the best four-probe combination, finding 14% more Internet hosts than the previous default, "-PE -PA80". The default for non-root users is -PS80,443, replacing the previous default of -PS80. In addition, ping probes are now sent in order of effectiveness (-PE first) so that less effective probes may not have to be sent. ARP ping is still the default on local ethernet networks."
The non-sudo/root versions of the -sP should be noted, it could be enough traffic/ports per second to have some firewalls throw a SYN flood alert if you were to scan several hosts (like a Class C).
wireshark captures:
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgkb-2EFi9876-yrwgS7iUcu3Ivhv7CzjBi6x_u4qrP8qpXEUUvTG0DFFTLqiBGLJCemREbC2RvvtRn9XBXB9_4bkPhyphenhyphen_hnVogcQqGOQfzANtK82GAQvU0qcIO28_DkuL8qPPJQsPHCtyc/s400/nmap-sP-nosudo_0.jpg)
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj5VSeE9BeAJ90i57QR-zx454ghVwmZSVjPpS2sk_CTpq437nrV2n5_dGjYRrm6n3ryR1eRnUz7czWmW2WFzVUQ-hsZyEO4TjcMLdrcOGqLRM9f1XGMlJLHLH-0OpqQNFUr2_b5XBaLgJc/s400/nmap-sP-sudo_0.jpg)
No comments:
Post a Comment