Certified Ethical Hacker (CEH v11) — Question 276

You are a penetration tester and are about to perform a scan on a specific server. The agreement that you signed with the client contains the following specific condition for the scan: `The attacker must scan every port on the server several times using a set of spoofed source IP addresses.` Suppose that you are using
Nmap to perform this scan.
What flag will you use to satisfy this requirement?

Answer options

• A. The -g flag
• B. The -A flag
• C. The -f fag
• D. The -D flag

Correct answer: D

Explanation

The correct answer is D, as the -D flag in Nmap allows you to specify decoy addresses to obfuscate the true source IP during scanning. This helps in fulfilling the requirement of using spoofed source IPs. The other options do not provide the capability to spoof source addresses as required by the client's conditions.