Passive Attacks and Reconnaissance using NMAP for Network Scanning

Slide Note
Embed
Share

Learn how to use NMAP for passive attacks and reconnaissance through port scanning techniques like ping scan, TCP port scan, and stealth scan. Understand how to analyze the output in Wireshark to identify open ports and version numbers on target systems.

aden
aden Follow

Uploaded on Jul 16, 2024 | 2 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. LAB # 5 PASSIVE ATTACKS AND RECONNAISSANCE OS FINGERPRINTING & SCANNING STUDENTS MANUAL EXERCISE: NMAP PORT SCANNING STEP 1 : Download NMAP from HERE in Windows 7 VM STEP 2: Open WIRESHARK STEP 3: Start Capturing on Local Area Connection. STEP 4: Open Command Prompt . Using NMAP to Ping scan At the command line; type nmap sP 10.170.26.* OR try: nmap sP 10.170.26.0/24 observe the output on the command line and wireshark. The sP option tells Nmap to perform a ping scan. The * at the end of the address means to scan for every host address on the 10.170.26 network. The scan should take about 20 to 30 seconds. 1

  2. LAB # 5 PASSIVE ATTACKS AND RECONNAISSANCE OS FINGERPRINTING & SCANNING STUDENTS MANUAL EXERCISE: NMAP PORT SCANNING Using NMAP for TCP port scan: At the command line; type nmap sT 10.170.26.161 observe the output on the command line and wireshark. The sT option tells Nmap to perform a TCP port scan. This is a full connection scan. The scan may take few minutes. Look at the signature of the scan in Wireshark. Notice that there are many SYN packets sent from 10.170.26.101 (the computer doing the scanning) and many RST/ACK packets being sent back. RST/ACK is the response for a request to connect to a port that is not open. Look at what happens when an open port is discovered. If you look at the output from the Nmap scan, you know that port 80, the HTTP service port, is open. To find those particular packets out of the thousands of packets captured, you will need to filter out the unwanted traffic. In the Filter box, type tcp.port==80 and press enter. Look at the last four packets captured. Note the SYN, SYN/ACK, and ACK packets. A three-way handshake was completed so that the port could be established as open. This is okay, but it is very noisy and can show up in the server logs. The last of the four packets is an RST sent by the scanning computer. 2

  3. LAB # 5 PASSIVE ATTACKS AND RECONNAISSANCE OS FINGERPRINTING & SCANNING STUDENTS MANUAL EXERCISE: NMAP PORT SCANNING Using NMAP to a stealth scan: At the command line; type nmap sS 10.170.26.161 observe the output on the command line and wireshark. The sS option tells Nmap to perform a TCP SYN stealth port scan. Since this type of scan requires Nmap to behave on the network in an atypical manner, you must have administrative rights. The scan should take about one second. In the Filter box, type tcp.port==80 and press enter. Look at the last three packets. Note that this time the three-way handshake is not completed. The SYN packet is sent and the SYN/ACK is returned, but instead of sending back an ACK, the scanning computer sends an RST. This will allow the scanning computer to establish that the port is in fact opened, but is less likely to be registered in the logs. 3

  4. LAB # 5 PASSIVE ATTACKS AND RECONNAISSANCE OS FINGERPRINTING & SCANNING STUDENTS MANUAL EXERCISE: NMAP FOOT PRINTING Using NMAP to determine veraion number At the command line; type nmap v -a 10.170.26.161 observe the output on the command line. The v option tells Nmap to perform a ping scan. The * at the end of the address means to scan for every host address on the 10.170.26 network. The scan should take about 20 to 30 seconds. At the command line; type nmap V 10.170.26.161/170 1

  5. LAB # 5 PASSIVE ATTACKS AND RECONNAISSANCE OS FINGERPRINTING & SCANNING STUDENTS MANUAL EXERCISE: NMAP PORT SCANNING Using NMAP for Aggressive and fast scanning: At the command line; type nmap A 10.170.26.161/170 observe the output on the command line The V option tells Nmap to perform a TCP port scan. This is a full connection scan. The scan may take few minutes. Look at the signature of the scan in Wireshark. Notice that there are many SYN packets sent from 10.170.26.101 (the computer doing the scanning) and many RST/ACK packets being sent back. RST/ACK is the response for a request to connect to a port that is not open. At the command line; type nmap F 10.170.26.161/170 observe the output on the command line The V option tells Nmap to perform a TCP port scan. This is a full connection scan. The scan may take few minutes. Look at the signature of the scan in Wireshark. Notice that there are many SYN packets sent from 2

  6. LAB # 5 PASSIVE ATTACKS AND RECONNAISSANCE OS FINGERPRINTING & SCANNING STUDENTS MANUAL EXERCISE: NMAP PORT SCANNING Using NMAP for open ports: At the command line; type nmap open 10.170.26.161 observe the output on the command line The sS option tells Nmap to perform a TCP SYN stealth port scan. Since this type of scan requires Nmap to behave on the network in an atypical manner, you must have administrative rights. The scan should take about one second. At the command line; type nmap p 22,25,80,21 10.170.26.161 observe the output on the command line 3

  7. LAB # 5 PASSIVE ATTACKS AND RECONNAISSANCE STUDENTS MANUAL EXERCISE: NMAP PORT SCANNING 4

Related


Passive Attacks and Reconnaissance in Network Security

Passive Attacks and Reconnaissance in Network Security

suri
Understanding Network Denial of Service (DoS) Attacks

Understanding Network Denial of Service (DoS) Attacks

zahra
Understanding the Passive Voice and Versatile Verbs

Understanding the Passive Voice and Versatile Verbs

cassidy
Passive verb forms

Passive verb forms

kiro
Types Cyber Attacks: Cyber Security Training Workshop

Types Cyber Attacks: Cyber Security Training Workshop

anara
Network Traffic Analysis with Wireshark: Examples and Techniques

Network Traffic Analysis with Wireshark: Examples and Techniques

tommy-lee
Understanding Active and Passive Voice Usage

Understanding Active and Passive Voice Usage

janelle
Understanding Passive Voice in English Grammar

Understanding Passive Voice in English Grammar

leda
Evolution of CT Scan Technology and Terminology

Evolution of CT Scan Technology and Terminology

madiha
Mastering Passive Voice: Verb Forms and Usage

Mastering Passive Voice: Verb Forms and Usage

halston
Enhancing Cybersecurity with Bluedog VAPT Services

Enhancing Cybersecurity with Bluedog VAPT Services

rosanna
Managing Covid-19 Cyber and Data Protection Risks

Managing Covid-19 Cyber and Data Protection Risks

kaisen
Understanding Denial-of-Service Attacks and Defense Strategies

Understanding Denial-of-Service Attacks and Defense Strategies

delphi
Preventing Active Timing Attacks in Low-Latency Anonymous Communication

Preventing Active Timing Attacks in Low-Latency Anonymous Communication

kmike
Mitigation of DMA-based Rowhammer Attacks on ARM

Mitigation of DMA-based Rowhammer Attacks on ARM

baylee
Mastering Writing Skills & Passive Voice: Lesson Review

Mastering Writing Skills & Passive Voice: Lesson Review

millierose
Network Monitoring and Vulnerability Scanning Overview

Network Monitoring and Vulnerability Scanning Overview

hadiya
Improve Your Reading Skills: Scanning and Skimming Techniques

Improve Your Reading Skills: Scanning and Skimming Techniques

yanis
Effective Reading Strategies: Skimming and Scanning Techniques

Effective Reading Strategies: Skimming and Scanning Techniques

aamina
Environmental Scanning Tool for Strategic Workforce Planning Cycle

Environmental Scanning Tool for Strategic Workforce Planning Cycle

elsierose
Principles of Cyber Security

Principles of Cyber Security

gillian
Implementing Barcode Scanning to Reduce Dispensing Errors in Pharmacy

Implementing Barcode Scanning to Reduce Dispensing Errors in Pharmacy

aurelius
Understanding Passive and Active Voice in English Language

Understanding Passive and Active Voice in English Language

isra
Managing Passive Host and Service Checks with Nagios Core

Managing Passive Host and Service Checks with Nagios Core

kat_t

More Related Content

Understanding Passive Voice and Verb Forms in English
Understanding Passive Voice and Verb Forms in English
Learning Passive Voice in Present Simple Tense: Exercises and Examples
Learning Passive Voice in Present Simple Tense: Exercises and Examples
Understanding Active and Passive Voice for Better Communication Skills
Understanding Active and Passive Voice for Better Communication Skills
Understanding Active vs Passive Voice in Writing
Understanding Active vs Passive Voice in Writing
Understanding Malicious Attacks, Threats, and Vulnerabilities in IT Security
Understanding Malicious Attacks, Threats, and Vulnerabilities in IT Security
Understanding Control Hijacking Attacks in Software Systems
Understanding Control Hijacking Attacks in Software Systems
Adversarial Machine Learning
Adversarial Machine Learning
Cybersecurity Challenges: Attacks on Web Applications and Cost of Security Breaches
Cybersecurity Challenges: Attacks on Web Applications and Cost of Security Breaches
Learn How to Form Passive Voice in English
Learn How to Form Passive Voice in English
Understanding Network Security: Hijacking, Denial of Service, and IDS
Understanding Network Security: Hijacking, Denial of Service, and IDS
Network Slicing with OAI 5G CN Workshop Overview
Network Slicing with OAI 5G CN Workshop Overview
Dynamic Buffer Sizing using Passive Measurements from P4 Switches
Dynamic Buffer Sizing using Passive Measurements from P4 Switches
Understanding Active and Passive Voice in English Grammar
Understanding Active and Passive Voice in English Grammar
Active and Passive Voice Rules for All Tenses: Present Simple, Continuous, and Perfect
Active and Passive Voice Rules for All Tenses: Present Simple, Continuous, and Perfect
Understanding Active and Passive Verbs in English Sentences
Understanding Active and Passive Verbs in English Sentences
Understanding Active and Passive Voice in English Grammar
Understanding Active and Passive Voice in English Grammar
Understanding Active and Passive Voice in English Grammar
Understanding Active and Passive Voice in English Grammar
Understanding Simple Past Tense and Passive Voice Formation
Understanding Simple Past Tense and Passive Voice Formation
Exploring the Passive Voice in English Language
Exploring the Passive Voice in English Language
Understanding Passive Solar Design and Its Benefits
Understanding Passive Solar Design and Its Benefits
Examples of Passive Voice and Simple Present Tense in English
Examples of Passive Voice and Simple Present Tense in English
Impact of NVIDIA Stock Surge on Mutual Funds and Passive Funds Exposure
Impact of NVIDIA Stock Surge on Mutual Funds and Passive Funds Exposure
Understanding Passive Fire Protection in Buildings
Understanding Passive Fire Protection in Buildings
Introduction to Passive Movement in Physical Therapy
Introduction to Passive Movement in Physical Therapy