The target host's operating system reassembles the fragments into the complete payload, executing the exploit.
Never execute a full exploit on a target you suspect is a honeypot. Walk away. The defender is watching you in real-time. The target host's operating system reassembles the fragments
Simulate specific services (e.g., SSH, FTP) but offer limited interactivity. They primarily log connection attempts. The target host's operating system reassembles the fragments
Combine fragmentation with decoy scans . Send your fragmented packets from your real IP, but bury them in a crowd of fake IPs. The target host's operating system reassembles the fragments