The SCTP INIT scan:
This scan technique is applicable in both TCP and UDP protocols. The scanning techniques come with multiple features for information retrieval, which include the multi-homing. The technique gets its alternative name of half-open scanning since the scan does not initiate a full SCTP association. An INIT chunk is responsible for initiating the scan. This technique is applicable in cases where multiple ports are to be scanned since it is capable of scanning thousands of ports within a very short time. The scan is useful in SS7 related applications. This scan can be detected using a zone alarm and be blocked using an effective firewall (Lyon, 2008).
This is a scanning technique where a specified number of ports are scanned. The number of ports to be scanned is maintained at a minimum. From this concept of little number of ports, being scanned the technique is considered a lightweight technique. The technique is instrumental in the exploitation of the limited number of services that an attacker is well endowed in their exploitation. The accuracy of the scan as well as the speed of deployment makes the scanning approach convenient to attackers. The application of fully integrated IDS software helps in identification of the scan (Gregg, & Watkins, 2006).
FTP bounce scan:
Another scan not covered in module two is the FTP bounce scan. The FTP bounce scan is attractive to hackers because it hides the traces of the scan being performed. The scan is based on the vulnerability of the FTP protocol. An FTP server is run anonymously in synchrony with the legitimate web server and the attacker can issues instructions to acquire information from the legitimate web server through batch files with padded junk. This scan is difficult to trace but can be prevented by implementing techniques that inhibit third party connections as well as access to certain ports (Salomon, 2010).
Gregg, M., & Watkins, S. (2006). Hack the stack using snort and ethereal to master the 8 layers of an insecure network. Rockland, MA: Syngress Pub..
Cristina L. & Rafael B., (2007) An Analysis on the Schemes for Detecting and Preventing ARP Cache Poisoning Attacks: 27th International Conference on Distributed Computing Systems Workshops.
Lyon, G. F. (2008). Nmap network scanning: official Nmap project guide to network discovery and security scanning. Sunnyvale, CA: Insecure.Com, LLC.
Salomon, D. (2010). Elements of computer security. New York: Springer-Verlag.