Certified Ethical Hacker (CEH v13) — Question 85

While performing an Nmap scan against a host, Paola determines the existence of a firewall. In an attempt to determine whether the firewall is stateful or stateless, which of the following options would be best to use?

Answer options

• A. -sA
• B. -sX
• C. -sT
• D. -sF

Correct answer: A

Explanation

The -sA option is used for an ACK scan, which can help identify whether a firewall is stateful by checking how it responds to unsolicited packets. The other options, -sX, -sT, and -sF, serve different purposes such as Xmas scans, TCP connect scans, and FIN scans, but they are not as effective at determining the statefulness of a firewall.