Understanding Idle Scan: Mechanism and Characteristics
Idle Scan is an advanced TCP port scanning technique. In this method, an attacker uses a “zombie” computer (a machine in an idle state) to perform port scanning on target systems. 🎯 Basic Concepts Idle Scan is based on three important facts: TCP Port State Verification Open port → Responds with SYN/ACK packet Closed port → Responds with RST packet Unsolicited Packet Response Unsolicited SYN/ACK → Responds with RST Unsolicited RST → Ignored IP ID Characteristics ...