1
00:00:00,480 --> 00:00:01,380
TCP, Skåne.

2
00:00:02,950 --> 00:00:10,030
So in our previous lessons, we discussed the DCPI scan by default and MAP always performs TCP scans

3
00:00:10,030 --> 00:00:11,380
unless otherwise specified.

4
00:00:12,220 --> 00:00:15,270
So let's take a closer look at a TCP scan within Matt.

5
00:00:16,410 --> 00:00:19,430
And Matt sends a sin packet to the target system.

6
00:00:20,530 --> 00:00:26,830
And the target system receives the packet and sends the Sinak packet to the end map computer.

7
00:00:28,350 --> 00:00:33,210
Which receives and map packet and sends the packet to complete the connection.

8
00:00:34,760 --> 00:00:38,570
The destination system port sends the port information that is open.

9
00:00:40,290 --> 00:00:44,910
Then Map terminates the connection by sending a reset packet immediately.

10
00:00:46,910 --> 00:00:52,610
So to scan TCP with and map, we need to add the S-T parameter to the unmap command.

11
00:00:54,260 --> 00:01:02,520
I'll give you an example, we'll scan the TCP top 20 on the meds voidable server that we install.

12
00:01:03,870 --> 00:01:08,640
So open virtual box, open, carry, Linux, open, Métis voidable.

13
00:01:09,530 --> 00:01:11,960
And in Calli Linux VM.

14
00:01:13,590 --> 00:01:23,910
I open up terminal and write the command and map 10 zero to four top ports, 20 press enter.

15
00:01:25,820 --> 00:01:28,490
And the results of the scan are right here.

16
00:01:29,790 --> 00:01:35,940
So let's have a look, as you can see, the top 20 ports were scanned and it was the result.

17
00:01:42,090 --> 00:01:44,640
TCP and since scan difference.

18
00:01:46,150 --> 00:01:51,130
So, yeah, OK, so what are the differences between the skin scan and the TCP scan?

19
00:01:51,880 --> 00:01:56,560
Right here acin scan three way handshake does not complete.

20
00:01:57,970 --> 00:02:02,220
The teacup scan, the three way handshake is complete.

21
00:02:03,620 --> 00:02:10,520
The skin scan, if the Sinak packet arrives, the connection is terminated with Resat.

22
00:02:12,300 --> 00:02:18,120
And on a TCP scan of the Sinak packet arrives, the connection is completed with the packet.

23
00:02:20,050 --> 00:02:25,090
And since can since Ganzer usually not logged on the server.

24
00:02:26,650 --> 00:02:29,440
TCP scan are logged on the server.

25
00:02:31,210 --> 00:02:37,810
Since scans require root authority because there was interference in the packages.

26
00:02:38,850 --> 00:02:46,170
A TCP scan does not require any privileges because it uses the TCP Connect method.