CompTIA CySA+ (CS0-002) — Question 46

When attempting to do a stealth scan against a system that does not respond to ping, which of the following Nmap commands BEST accomplishes that goal?

Answer options

• A. nmap –sA –O-noping
• B. nmap –sT –O-Pn
• C. nmap –sS –O-Pn
• D. nmap –sQ –O-Pn

Correct answer: C

Explanation

The correct answer is C because the '-sS' option initiates a stealth SYN scan, which is effective for scanning without establishing a full TCP connection, and '-Pn' allows the scan to proceed without ICMP ping. Options A and B utilize different scan types that are less stealthy or require a ping response, while D employs an invalid scan type for this context.