From manual: -D decoy Causes a decoy scan to be performed, which makes it appear to the remote host that the host(s) you specify as decoys are scanning the target network *too*. It should be mentioned that decoy doesn't really hide your IP; it just makes the target's task difficult to figure out which one of the IPs is doing scanning. Otherwise how would your host receive SYN-ACK.

Most modern IDS, especially one on a firewall you have to traverse, will look at ARP data and see the packets coming from a different host and will either alarm on spoofing or completely block (and alarm). You’re far better off reducing the number of ports scanned (don’t scan all 65,535, only what you need) and going low and slow to evade IDS and SIEM traffic flow detections. Which, also brings up a point, it’s not just firewall IDS you must avoid, there are also the SIEM traffic flow monitors to watch out for and they’re often more sensitive than the firewall based IDS.

Yes! I was literally looking for a video like this on your channel this past weekend.

It would be great to show proof of purpose and reasons to perform any of this in a real world scenario where networks aren't flat and ports aren't always open. Otherwise, this is just punching in commands just for fun and proving theory. The decoy is exactly what it means, a "decoy". Not to be confused with spoofing which I felt was how it was sold here. The original source still appeared in Wireshark (10.x IP) whether it is changed to random decoys or assigned. It would be great if the video showed port scanning that shows up as closed or filtered, and then show us how to bypass that Firewall/IDS filtered state given the decoy and the fragmentation methods to the point Nmap eventually show an open port by using those methods. Just a suggestion!

The vid quality is mad heat congrats man u really deserve it ❤️

Just got the notification, took a cup of coffee, enjoying the video and then ..

Thank you for this video. Please make a new refreshed guide as to installing kali onto a usb as well as testing. I’ve advised my students to be careful due to people forgetting how dangerous testing can be. FYI*

Can you further explain why Fragmentation would be useful here? Since what we try to do is a Syn Scan, meaning we dont actually have to have application data encapsulated. Fragmentation leaves the Ethernet and IP/TCP Headers intact for each packet and only fragments aplpication data inside. How would that evade a firewall which only works on IP/TCP level?

Thank you for so much details explained

thanks sir for your support....from india

thank you very much , good job full of useful information .

Hello Sir , I really like your Tutorials, Videos . thank you 🔥🔥🔥🔥 ❤️❤️❤️❤️ From INDIA धन्यवाद 🙏🙏🙏🙏

yesss more nmap

this is a very helpful video

When the host gives you a RST it doesn't mean the port is open... I means it's closed... It literally means "Reset".

شكرا مقطع جميل جدا اتمنى لك التقدم⚘⚘⚘✋🏻

Thank you ❤️

Very nice

Great video and explenations as always! I am just unsure of 1 thing, why do you write --send-eth on the decoy and fragmenting scan you do? What does --send-eth mean or do?

I m huge fan sir ❤️❤️❤️❤️😇😇

Nice video

Nice

Hey HackerSploit, can you make a video on how to split and switch between terminals on the kali 2020 which supports this features out of the box without the need of tmux.

Yh great.

please make video on IDS and honeypot evasion also!

thx

Why did we get two ports opened after using a differnt addresss in 7:00 - 7:57

Sir.Please Make videos of Buffer overflow.

Yes, ma Babe Is back... LOl

Please put the example of bug bounty from starting to finish that how to start how to submit report all

thx bro, how can we get the mac address of the victim with this method, because when there is a firewall it is not easy?

I am running Kali Linux in the cloud. When I use Wireshark to analyse the nmap output, it has the [PSH] phrase with purple colour coding around it and does not display the output above. Really frustrating!

Fabulous

I have a question. Since we spoofed the ip, how come we stil receive the response? since the server will send a packet with the fake ip that we used

No video on webscraping? Hackersploit

Which one is good c++ or python....I am a student and looking forward in cs field

finally! been waiting for this for so long!

Alexis man..!!! i love you..!!!

is there a way to scan a windows 10 host with a firewall because it displays that all ports are filtered

If I use the Decoy command with an ip which is in my local network, to be more 'discreet' I also need to change my MAC address? Because the source in Wireshark is my MAC adress.

I have a small doubt, when using Decoy, we can also see your host ip 10.0.0.X along with other Decoy IPs sending SYN probes to the target. Why is that? Is there anyway to completely avoid them?

is this similar to zombie scan? nmap -Pn -sI

Sir make tutorials about pwncat

I dont understanding where are these random ip using RND in decoy scan comming from ?

Why your Udemy course are not available now??

Hello, is this how we avoid the filter because only tcp or udp header present on the first fragment?

Why do we use "send eth"? Thank you.

Can we use list of Decoy IPs ???

Thanks bro

@hackersploit Hey! I just have a little doubt. Is this whole playlist in the order in which a beginner should learn things. I went through the playlist and certain videos that (i think) are in middle which should be in the beginning. Please help

Hello,... question. What online password attack tool will use long and large generated wordlist without need of proxy.txt file?

what kind of zsh theme you use

Why nano/etc/proxyserver.config showing an empty terminal space

Please, Make a video on javascript.

Macbook air 2017 is good for hacking aur not ????

i really wonder what happens when you use 127.0.0.1 as decoy :D and can you use target IP as decoy?

Hi sir, I have a doubt. I had asked my friend to give me his IP(both public and private). We both live in different states. When I had searched about the public IP of his network by using whois command, it gave me same info as when I had searched about my public IP address. Why? Then I had switched to his private IP, I got nothing from it but when I searched the entire subnet then I was shocked that it gave me my info (my laptop, mobile, and virtual box), this makes me confused. I was using Nmap.

Sir, Is there any tool like Lazagne that works in Android?

What will happen if i put the ip of the scanned machine itself?

Just thought I’d let you know man. I tried to press the notification bell but it says I’m unable to because your channel is “for children” ? No idea how that happened but yeah ..

Why does - -send-eth change the fragmentation size, the manual only says it’s used to send frames instead of packets? Can somebody clarify that for me.

Make video on owasp top 10 or sans 25 series.

This is exactly what is so frustrating about trying to learn this stuff. Being a complete novice and just getting started. i find it difficult to understand the piont in spending so much time learning an outdated method of doing things. You say its so important but then in the same video say its basically obsolete. What is the beneficial takeaway of this?

Please make a tutorial on ss7

he said we can find out which ip is a admin on a certain network using wireshock, how?

what is that 10.0.0.4 of? can someone explain? 6:36

Why do you use Linux?

if it doesnt work nowadays why to cover it ?

Isn't the MTU the Ethernet's payload? If so, when you specify --mtu 24, why it doesn't show as a fragmented packet? the IP header is 20 bytes long (without options) and then you have 20 more bytes of TCP header, which should be cut off into five chunks of 4 bytes. Does anybody know why it didn't work here? BTW nice video ;-)

Hi

random decoy doesnt work for me. is anyone getting the same error?

Kali is not running properly in virtualbox

#NotificationSquad

Sec c

Bro need android AV evasion video clearly!!!

Hello Bro Burpsuite “ full” tutorial gives please thanks bro

Coda wilsono help record my lost account

First comments

why dont you write all this up to a forum post aswell and provide link like a good youtuber would?

Are you an Indian?

first view

FIRSTTTT HAHAH

Halp me bro

Nice

Nice