Scanning
Download
1 / 30

Scanning - PowerPoint PPT Presentation


  • 150 Views
  • Uploaded on

Scanning. 2012 BackTrack Workshop Upstate ISSA Chapter. Agenda. Passive “Scanning” Active Scanning. Passive “Scanning”. Wireshark tcpdump Lanmap EtherApe. Wireshark. Applications -> BackTrack -> Information Gathering -> Network Analysis -> Network Traffic Analysis -> wireshark OR

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about ' Scanning' - millie


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
Scanning

Scanning

2012 BackTrack Workshop

Upstate ISSA Chapter


Agenda
Agenda

  • Passive “Scanning”

  • Active Scanning


Passive scanning
Passive “Scanning”

  • Wireshark

  • tcpdump

  • Lanmap

  • EtherApe


Wireshark
Wireshark

  • Applications -> BackTrack -> Information Gathering -> Network Analysis -> Network Traffic Analysis -> wireshark

    OR

    wireshark



Tcpdump
tcpdump

  • Simple packet capture from eth0

    tcpdump –i eth0

  • Limit number of packets capture

    tcpdump –c 2 –i eth0

  • Display packets in ASCII

    tcpdump –A –i eth0

  • And Hex…

    tcpdump –XX –i eth0


Tcpdump1
tcpdump

tcpdump –i eth0






Active scanning
Active Scanning

  • Hack Naked

  • Ping Sweeps

  • Discovering Open Ports

  • Service Enumeration

  • SNMP Walking

  • VPN Detection


Hack naked
Hack Naked

  • Conduct testing without security controls such as firewalls, IPS and AV


Ping sweeps
Ping Sweeps

  • Nmap

  • Zenmap

  • fping

  • hping2


Nmap ping sweep
Nmap (Ping Sweep)

nmap 192.168.1.0/24 -sP


Zenmap ping sweep
Zenmap (Ping Sweep)


Fping
fping

fping –g 192.168.1.0/24


Fping wireshark capture
Fping (Wireshark capture)


Hping default packets
hping (Default Packets)

hping2 192.168.1.112 –S -V


Discovering open ports
Discovering Open Ports

  • Nmap Default Scan

  • Scanning All Ports



Zenmap default scan
Zenmap (Default Scan)


Service enumeration
Service Enumeration

  • Nmap Service Detection

  • NSE (Nmap Scripting Engine)


Nmap service detection
Nmap Service Detection

nmap 192.168.1.112 -sV


Nse nessus scripting engine
NSE (Nessus Scripting Engine)

nmap 192.168.1.112 -sC






ad