Discovering hosts with SCTP INIT ping scans
SCTP packets can be used to determine if a host is online by sending SCTP INIT packets and looking for ABORT or INIT ACK responses. Nmap implements this effective technique named SCTP INIT ping scan.
The following recipe describes how to launch SCTP INIT ping scans from Nmap.
How to do it...
Open your terminal and use the -PY
option:
# nmap -sn -PY <target>
The output follows the same format as the other types of ping scans:
# nmap -sn -PY scanme.nmap.org
Nmap scan report for scanme.nmap.org (45.33.32.156)
Host is up (0.15s latency).
Other addresses for scanme.nmap.org (not scanned):
2600:3c01::f03c:91ff:fe18:bb2f
Nmap done: 1 IP address (1 host up) scanned in 4.31 seconds
How it works...
The arguments -sn -PY scanme.nmap.org
tell Nmap to send an SCTP INIT ping scan against the host scanme.nmap.org
to determine if it's online. Nmap attempts to initiate a connection to a service by sending a SCTP INIT packet and looks for an...