-
With knockd a server can be configured to respond only after some ports were checked before. Its often used for SSH. Coutermeasure: Sniff traffic and wait for an user to login and reconstruct the knocking pattern out of the pcaps.
-
General notes NC / Netcat Try netcat first on interesting ports or narrow port ranges to be more silent Network scan Choose a port which is probably open on systems on this network. E.g. 445 for Windows hosts or 22 for Linux hosts. for i in $(seq 1 254); do nc -zv -w 1 10.10.10.$i 445;…