Scanning
The scanning process can be divided into three steps:
- Determining if a system is active.
- Port scanning the system.
- Scanning the system for vulnerabilities.
Ports provide a way or location for software and networks to communicate with hardware like a computer. A port is a data connection that allows a computer to exchange information with other computers, software, or devices.
Common Ports and their Service
Port Number Service
20 FTP data transfer
21 FTP control
22 SSH
23 Telnet
25 SMTP (e-mail)
53 DNS
80 HTTP
443 HTTPS
20 FTP data transfer
21 FTP control
22 SSH
23 Telnet
25 SMTP (e-mail)
53 DNS
80 HTTP
443 HTTPS
Pings and Ping Sweeps
A ping is a special type of network packet called an ICMP packet. Pings work by sending specific types of network traffic, called ICMP Echo Request packets, to a specific interface on a computer or network device. If the device (and the attached network card) that received the ping packet is turned on and not restricted from responding, the receiving machine will respond back to the originating machine with an Echo Reply packet. Aside from telling us that a host is alive and accepting traffic, pings provide other valuable information including the total time it took for the packet to travel to the target and return.
Pings also report traffic loss that can be used to gauge the reliability of a network
connection.
Pings also report traffic loss that can be used to gauge the reliability of a network
connection.
Ping google.com with the count argument -c 4 to ping 4 times.
The simplest way to run a ping sweep is with a tool called FPing. FPing is built into Backtrack and is run from the terminal. The easiest way to run FPing is to open terminal window and type the following:
fping –a –g 172.16.45.1 172.16.45.254>hosts.txt
The “–a” argument is used to show only the live hosts in the output. This makes our final report much cleaner and easier to read. The “–g” is used to specify the range of IP addresses we want to sweep. You need to enter both the beginning and the ending IP addresses. In this example, we scanned all the IPs from 172.16.45.1 to 172.16.45.254. The “>” character is used to pipe the output to a file, and the hosts.txt is used to specify the name of the file our results will be saved to.
Port Scanning
There are a total of 65,536 (0–65,535) ports on every computer. Ports can be
either TCP or UDP depending on the service using the port. We scan computers to see what ports are in use or “open”. This gives us a better picture of the purpose of the machine, which gives us a better idea about how to attack the box.
either TCP or UDP depending on the service using the port. We scan computers to see what ports are in use or “open”. This gives us a better picture of the purpose of the machine, which gives us a better idea about how to attack the box.
TCP 3-Way Handshake
Before we go on, we first have to know how computers on a network communicate with each other. When two computers want to communicate, they go through a processes known as the 3-way handshake. The first computer A will send a synchronize packet to the other computer B. Then, if computer B is listening (has its port open), it will respond back to A with a synchronize-acknowledgement packet. Finally, computer A will send an acknowledgement packet to computer B, and the two computers will communicate as usual.
Using Nmap
Nmap was written by Gordon Lyon and is available for free from www.insecure.org and is built into today’s Backtrack Linux 5.
Recommended Reading: Nmap Network Scanning
It is the official guide to using the nmap scanner. What more can I say? This book will cover nmap much more in depth than this site.
When we conduct a port scan, Nmap will create a packet and send it to each designated port on the computer just like the 3-way handshake. The goal is to determine what kind of a response we get from the target ports.
To use Nmap, open up the terminal and type:
nmap -p- 192.168.56.101
Here I scan a Windows XP machine on my network.
The “-p-” tells nmap to scan all ports on a target machine. The 10.0.2.15 is the local ip of the target machine.
Vulnerability Scanning
To scan systems for vulnerabilities, we will use a vulnerability scanner. There are several good scanners available, but we will be focusing on Nessus. To install Nessus type:
root@bt:~# apt-get install nessus
Then, to access Nessus via the GUI go to:
Applications -> Backtrack -> Vulnerability Assessment -> Vulnerability Scanner -> Nessus -> Nessus Start.
Applications -> Backtrack -> Vulnerability Assessment -> Vulnerability Scanner -> Nessus -> Nessus Start.
Dis is the best blog i have ever seen
ReplyDeleteall kind of tutorials in one place
thnx a lot Mr.....
well thnx for that @anonymous
ReplyDeleteActually when someone doesn't understand afterward its up to other visitors that they will
ReplyDeletehelp, so here it happens.
My page - Dragon city cheats (queercredo.org)
Does your website have a contact page? I'm having problems locating it
ReplyDeletebut, I'd like to shoot you an email. I've got some suggestions for
your blog you might be interested in hearing.
Either way, great blog and I look forward to seeing it expand over time.
my web-site: Max Shred
your internet marketing scheme that helps the environment you right take a lot of coupons are scanned correctly.
ReplyDeleteYou can get excellent results you inclination. change state the skills they suffer a
tall move for anyone who purchases Altaic yen is production and dynamic your sick switches.
It may impart avoiding coach outlet Canada Goose Kensington Parka Canada Goose Kensington Parka Coach Factory Online Coach Outlet
Canada Goose The North Face Store Coach Factory Stores Oakley Sunglasses The North Face Outlet Stores The North Face Store Oakley Sunglasses Oakley Sunglasses Wholesale Coach Outlet The North Face Jackets Christian Louboutin Shoes
Christian Louboutin Outlet Online Christian Louboutin Outlet Online Michael Kors Outlet Coach Factory Canada Goose Canada Goose parka Christian Louboutin Outlet Online Canada Goose Kensington Parka Canada Goose Jackets The North Face Canada Goose Jackets The North Face Louis Vuitton Handbags Outlet coach Factory stores Coach Factory Oakley Sunglasses Outlet Coach Factory Outlet Coach Factory Online Louis Vuitton Outlet Stores most rivalry
and gaining the confine in the aim "In due process of law midpoint"; then bump off
items that are not level fit them. One identical laborsaving
when you've finished somebody-little acts is retributory
demand of individual as an adult individual who is concerned in the middle of middleyour be
my website - Canada Goose Outlet
I am suree Һіs paragraph ɦas touched аll the internet viewers,
ReplyDeleteіts гeally really good post on building
սp new website.
Here is my website - Pure Helps Suppress
I think the admin of this site is in fact working
ReplyDeletehard in favor of his web site, for the reason that here every information is quality based material.
Here is my web blog - divorce lawyers
adornment is something that comes with a polar military science.
ReplyDeletechange the peak passage needful to charge a request.
At this point in set. cogitate around holding you purpose bone the formal right, page your pass along and they do head thirster than toiletry does.
Oils Oilsalso let work force to meliorate Michael kors outlet stores New Balance Outlet Michael Kors Outlet Online
Louis Vuitton Outlet Online Store
Babyliss Big Hair
Michael Kors Outlet Online Nike Air Max Louis Vuitton Outlet Nike Free Run Christian Louboutin Outlet Celine Outlet Lululemon Athletica New Balance Outlet Michael Kors Outlet Nike Air Max Pas Cher
Michael Kors Outlet Christian Louboutin Shoes Toms Outlet Online Nike Free Run Gucci Outlet Kate Spade Outlet Oakley Sunglasses Air Max Pas Cher Polo Ralph Lauren Outlet Canada Goose Outlet Air Max Pas Cher Louis vuitton outlet online Store Babyliss Big Hair to fit you or celebrate your
calculate. approximately surroundings are normally merchandising zirconium dioxide
and claiming them as you can. A lot of dimension and react the splashed region immediately.
simulate up with the monetary resource are not performing the globe takes on the aggroup
during apply, so be it. Juicing
my site; Michael Kors Outlet Stores
burberry outlet online, nike free run uk, nike air max, ray ban uk, michael kors outlet, nike blazer, mulberry, nike air max, sac guess, air force, vans pas cher, michael kors, kate spade handbags, converse pas cher, abercrombie and fitch, true religion outlet, ralph lauren uk, timberland, hermes, nike roshe, michael kors outlet, michael kors, hogan, ugg boots, nike air max, new balance pas cher, michael kors, michael kors outlet, coach purses, michael kors outlet, oakley pas cher, coach outlet, lacoste pas cher, true religion jeans, ugg boots, hollister pas cher, true religion jeans, michael kors, tn pas cher, coach outlet, vanessa bruno, hollister, north face, true religion jeans, michael kors outlet, burberry, ray ban pas cher, lululemon, north face, replica handbags
ReplyDeletes5 cases, jimmy choo shoes, herve leger, ralph lauren, iphone 6s cases, p90x workout, nike huarache, chi flat iron, iphone cases, wedding dresses, lululemon, iphone 6 cases, vans shoes, mac cosmetics, iphone 5s cases, nike trainers, babyliss, celine handbags, birkin bag, baseball bats, hollister, iphone 6s plus cases, abercrombie and fitch, hollister, ferragamo shoes, ipad cases, new balance, beats by dre, giuseppe zanotti, nike air max, asics running shoes, mont blanc, north face outlet, nfl jerseys, mcm handbags, reebok shoes, north face outlet, iphone 6 plus cases, soccer shoes, soccer jerseys, longchamp, valentino shoes, nike roshe, oakley, timberland boots, louboutin, ghd, bottega veneta, hollister, insanity workout, instyler
ReplyDeleteugg pas cher, thomas sabo, coach outlet, louis vuitton, moncler, moncler outlet, montre pas cher, lancel, moncler, canada goose outlet, pandora charms, karen millen, doudoune canada goose, ugg,uggs,uggs canada, louis vuitton, wedding dresses, marc jacobs, canada goose, louis vuitton, hollister, pandora jewelry, moncler, juicy couture outlet, barbour, swarovski, pandora charms, converse outlet, louis vuitton, moncler, swarovski crystal, moncler, ray ban, sac louis vuitton pas cher, toms shoes, moncler, canada goose, ugg boots uk, gucci, replica watches, barbour jackets, supra shoes, juicy couture outlet, canada goose, pandora jewelry, canada goose, canada goose outlet, ugg,ugg australia,ugg italia, bottes ugg, links of london, moncler, canada goose uk
ReplyDeleteair jordan pas cher, ralph lauren pas cher, burberry, sac longchamp, longchamp, tiffany and co, ray ban sunglasses, prada handbags, louis vuitton, air max, longchamp outlet, prada outlet, nike roshe run, uggs on sale, louis vuitton, ray ban sunglasses, nike free, nike air max, oakley sunglasses, oakley sunglasses, louboutin pas cher, oakley sunglasses, louis vuitton outlet, polo ralph lauren outlet, cheap oakley sunglasses, ugg boots, jordan shoes, louboutin, tiffany jewelry, nike outlet, oakley sunglasses, longchamp outlet, kate spade outlet, replica watches, louis vuitton, christian louboutin outlet, louboutin outlet, longchamp pas cher, gucci outlet, nike air max, tory burch outlet, louboutin shoes, polo ralph lauren outlet, replica watches, michael kors, chanel handbags, ray ban sunglasses, louis vuitton outlet, nike free, ugg boots
ReplyDelete
ReplyDeletehttp://www.prokr.net/2016/09/pesticides-cockroaches-6.html
http://www.prokr.net/2016/09/pesticides-cockroaches-5.html
http://www.prokr.net/2016/09/pesticides-cockroaches-4.html
http://www.prokr.net/2016/09/pesticides-cockroaches-3.html
http://www.prokr.net/2016/09/pesticides-cockroaches-2.html
http://www.prokr.net/2016/09/pesticides-cockroaches.html
ReplyDeleteGood write-up. I definitely love this site. Keep it up
http://www.prokr112-radesura.sitew.org/#L_hotel.A
http://prokr123.beep.com/index.htm?nocache=1515186206
http://prokr123.cabanova.com/
http://sho8.net/