Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: "closed-port" backdoors
From: Andreas Hasenack <andreas () CONECTIVA COM BR>
Date: Thu, 22 Mar 2001 09:16:45 -0300
Em Thu, Mar 22, 2001 at 12:06:34AM -0600, Frank Knobbe escreveu:

If the back door is capable of detecting SYN's, then I would guess it
is running the NIC in promiscuous mode. Instead of opening a port


No, it opens a raw socket, just like one or two of portsentry's modes.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]