Certified Ethical Hacker (CEH v12) — Question 4

You are attempting to run an Nmap port scan on a web server. Which of the following commands would result in a scan of common ports with the least amount of noise in order to evade IDS?

Answer options

• A. nmap -A - Pn
• B. nmap -sP -p-65535 -T5
• C. nmap -sT -O -T0
• D. nmap -A --host-timeout 99 -T1

Correct answer: C

Explanation

The correct answer is C because the -T0 option sets the timing template to the slowest mode, which helps in reducing the chance of detection by Intrusion Detection Systems (IDS). Options A, B, and D either run scans that are more aggressive or do not minimize noise effectively, making them less suitable for evading IDS.