Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Mapping  Identify Live Hosts  Determine running Services TCP Port Scanning UDP Port Scanning Banner Grabbing ARP Discovery  Identify Perimeter.

Published byAlysha Stanphill Modified over 10 years ago

Similar presentations

Presentation on theme: "Network Mapping  Identify Live Hosts  Determine running Services TCP Port Scanning UDP Port Scanning Banner Grabbing ARP Discovery  Identify Perimeter."— Presentation transcript:

1 Network Mapping  Identify Live Hosts  Determine running Services TCP Port Scanning UDP Port Scanning Banner Grabbing ARP Discovery  Identify Perimeter Network (Router / Firewalls)‏ Tracerouting Scan Default Firewall/Router Ports Perform FIN/ACK Scan Map Router / Firewall Rule-Base  Passive OS Guessing  Active OS Guessing TCP/IP Stack Fingerprinting HTTP Packet Analysis ICMP Packet Analysis Telnet Handshake Analysis  Host Enumeration Systems Enumeration Heorot.net

2 Identify Live Hosts  Project Scope will restrict scan spectrum  Tools: ping nmap hping traceroute tpctraceroute Heorot.net

3 Identify Live Hosts ping Demonstration

4 Identify Live Hosts nmap Demonstration

5 Identify Live Hosts hping Demonstration

6 Identify Live Hosts traceroute Demonstration

7 Identify Live Hosts tcptraceroute Demonstration

8 Hands-On Exercise Identify Live Hosts  Tools: ping nmap hping traceroute tpctraceroute  Man pages # man ping # man nmap # man traceroute # man tcptraceroute  Difference between: TCP UDP  What is an “ICMP echo request”? #man icmp Heorot.net

9 Determine Running Services  TCP Port Scanning  UDP Port Scanning  Banner Grabbing  ARP Discovery Heorot.net

10 Determine Running Services TCP Port Scanning  Tools: nmap netcat hping Heorot.net

11 Determine Running Services nmap Demonstration

12 Determine Running Services netcat Demonstration

13 Determine Running Services hping Demonstration

14 Determine Running Services UDP Port Scanning  Tools: nmap netcat hping Heorot.net

15 Determine Running Services nmap Demonstration

16 Determine Running Services netcat Demonstration

17 Determine Running Services hping Demonstration

18 Determine Running Services Banner Grabbing  Tools: nmap amap netcat telnet Heorot.net

19 Determine Running Services nmap Demonstration

20 Determine Running Services amap Demonstration

21 Determine Running Services netcat Demonstration

22 Determine Running Services telnet Demonstration

23 Determine Running Services ARP Discovery  Tools: arping arp + protocol analyzer Heorot.net

24 Hands-On Exercise Determining Running Services  Tools: nmap netcat hping amap netcat telnet  TCP Services 5 “open” services  UDP Services 1 “closed” service (or is it???)  Banners How many banners can you grab? Version Information Application Name  TCP 3-way Handshake Heorot.net

25 Operating System Guessing Operating System Query  Tools: httprint netcat nmap Heorot.net

26 Operating System Guessing httprint Demonstration

27 Operating System Guessing netcat Demonstration

28 Operating System Guessing ICMP Packet Analysis  Tools: xprobe Heorot.net

29 Operating System Guessing xprobe Demonstration

30 Operating System Guessing Telnet Handshake Analysis  Tools: nmap telnetfp Heorot.net

31 Operating System Guessing nmap Demonstration

32 Host Enumeration What did you miss? Unknown application? Unusual OS?  Time to read up: RFC (Request for Comments)‏ White Papers Manuals Heorot.net

33 Hands-On Exercise Operating System Guessing / Host Enumeration  Tools: xprobe nmap  RFCs What they are Who produces them RFC 793, 768, 792 ○ Bonus: 854, 4251 ○ Super-Geek Bonus: 3766  White Papers Linux Slackware  Documentation Slackware Heorot.net

34 Module 4 – Conclusion  Phase II  Controls Assessment  Scheduling ○ Information Gathering ○ Network Mapping Identify Live Hosts Determine running Services Identify Perimeter Network (Router / Firewalls)‏ Passive OS Guessing Active OS Guessing Host Enumeration Heorot.net

Download ppt "Network Mapping  Identify Live Hosts  Determine running Services TCP Port Scanning UDP Port Scanning Banner Grabbing ARP Discovery  Identify Perimeter."

Similar presentations

Overview The TCP/IP Stack. The Link Layer (L2). The Network Layer (L3). The Transport Layer (L4). Port scanning & OS/App detection techniques. Evasion.

Overview The TCP/IP Stack. The Link Layer (L2). The Network Layer (L3). The Transport Layer (L4). Port scanning & OS/App detection techniques. Evasion.
 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,

 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning.

Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning.
IP Network Scanning.

IP Network Scanning.
CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.

CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning Last updated 9-18-08.

Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning Last updated
Scanning Determining if the system is alive IP Scanning Port Scanning War Dialing.

Scanning Determining if the system is alive IP Scanning Port Scanning War Dialing.
Hacking Exposed 7 Network Security Secrets & Solutions Chapter 2 Scanning 1.

Hacking Exposed 7 Network Security Secrets & Solutions Chapter 2 Scanning 1.
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
Scanning slides (c) 2012 by Richard Newman based on Hacking Exposed 7 by McClure, Scambray, and Kurtz.

Scanning slides (c) 2012 by Richard Newman based on Hacking Exposed 7 by McClure, Scambray, and Kurtz.
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &

1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &
Www.inventecesc.com Switch Test Presentation The Outline 1.The concept of ping 2.TCP/IP protocol 3.ICMP 4.Ethereal 5.RFC standard for benchmark.

Switch Test Presentation The Outline 1.The concept of ping 2.TCP/IP protocol 3.ICMP 4.Ethereal 5.RFC standard for benchmark.
Week 3-1 Week 3 Scanning Determine if system is alive Determine which services are running or listening Determine the OS.

Week 3-1 Week 3 Scanning Determine if system is alive Determine which services are running or listening Determine the OS.
Network Analyzer Example

Network Analyzer Example
Computer Security and Penetration Testing

Computer Security and Penetration Testing
IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)

IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)
SUSE Linux Enterprise Server Administration (Course 3037) Chapter 7 Connect the SUSE Linux Enterprise Server to the Network.

SUSE Linux Enterprise Server Administration (Course 3037) Chapter 7 Connect the SUSE Linux Enterprise Server to the Network.
Ana Chanaba Robert Huylo

Ana Chanaba Robert Huylo

Similar presentations

Ads by Google