| Technique | Countermeasure | |-----------|----------------| | SYN scan | Enable SYN cookies, use IDS (Snort/Suricata) | | Connect scan | Monitor logs for multiple half-open connections | | UDP scan | Rate-limit ICMP port unreachable messages | | Version detection | Use port knocking or protocol obfuscation | | NSE scripts | Deploy Web Application Firewalls (WAF) |
This paper mirrors the structure of ’s video modules: ethical hacking: scanning networks [author] videos