CFR-310 Exam QuestionsBrowse all questions from this exam

CFR-310 Exam - Question 32


After successfully enumerating the target, the hacker determines that the victim is using a firewall. Which of the following techniques would allow the hacker to bypass the intrusion prevention system (IPS)?

Show Answer
Correct Answer: B

Xmas scanning is a technique that utilizes a combination of TCP flags (URG, PSH, and FIN) to probe targets. By setting these flags in an unconventional manner, the hacker can potentially evade detection by firewalls and intrusion prevention systems (IPS). The unusual or unexpected nature of these flag combinations may bypass or confuse security systems, making it a plausible method for evading IPS.

Discussion

1 comment
Sign in to comment
WutanOption: B
Oct 12, 2023

B. Xmas scanning Xmas scanning is a type of port scanning that sets various TCP flags (URG, PSH, and FIN) to probe a target. By sending packets with these flags set, the hacker can attempt to evade detection by the firewall or IPS. The use of unusual or unexpected TCP flag combinations may confuse or bypass certain security systems.