Nmap Firewall & IDS Evasion
ACK scan (firewall detection)
unfiltered = no firewall, filtered = firewall active.
nmap -Pn -sA -p443,3389 10.4.27.83
Packet fragmentation
nmap -Pn -sS -sV -F -f -p80,445,3389 10.4.27.83
MTU manipulation
nmap -Pn -sS -sV -F -f --mtu 32 -p80,445,3389 10.4.27.83
nmap -Pn -sS -sV -F -f --mtu 8 -p80,445,3389 10.4.27.83
Data length and decoys
nmap -Pn -sS -sV -F -f --data-length 200 -D -p80,445,3389 10.4.27.83