EC EHE - Scan Tools

 



Nmap

Source: https://nmap.org

Nmap ("Network Mapper") is a security scanner for network exploration and hacking. It allows you to discover hosts, ports, and services on a computer network, thus creating a "map" of the network. It sends specially crafted packets to the target host and then analyzes the responses to accomplish its goal. It scans vast networks of literally hundreds of thousands of machines. Nmap includes many mechanisms for port scanning (TCP and UDP), OS detection, version detection, ping sweeps, and so on.

Either a security professional or an attacker can use this tool for their specific needs. Security professionals can use Nmap for network inventory, managing service upgrade schedules, and monitoring host or service uptime. Attackers use Nmap to extract information such as live hosts on the network, open ports, services (application name and version), type of packet filters/firewalls, MAC details, and OSs along with their versions.

Syntax: # nmap <options> <Target IP address>

Figure 2.9: Screenshot displaying Nmap scan



MegaPing

Source: http://www.magnetosoft.com

MegaPing includes scanners such as Comprehensive Security Scanner, Port scanner (TCP and UDP ports), IP scanner, NetBIOS scanner, and Share Scanner. All Scanners can scan individual computers, any range of IP addresses, domains, and selected type of computers inside domains. MegaPing security scanner provides the following information: NetBIOS names, Configuration info, open TCP and UDP ports, Transports, Shares, Users, Groups, Services, Drivers, Local Drives, Sessions, and Remote Time of Date, Printers.

Figure 2.10: Screenshot displaying MegaPing scan



Unicornscan

Source: https://sourceforge.net

In Unicornscan, the OS of the target machine can be identified by observing the TTL values in the acquired scan result. To perform Unicornscan, the syntax #unicornscan <target IP address> is used. As shown in the screenshot, the ttl value acquired after the scan is 128; hence, the OS is possibly Microsoft Windows (Windows 7/8/8.1/10 or Windows Server 2008/12/16).

Figure 2.11: OS Discovery using Unicornscan

Some additional scanning tools are listed below:


Hping2/Hping3 (http://www.hping.org)
NetScanTools Pro (https://www.netscantools.com)
SolarWinds Port Scanner (https://www.solarwinds.com)
PRTG Network Monitor (https://www.paessler.com)
OmniPeek Network Protocol Analyzer (https://www.liveaction.com)

Comments

Post a Comment

Popular posts from this blog

Why Certifications Methods?

Hey there, Let’s take a step back and change our perspective: Approach certifications as a means to enrich your knowledge and skills, rather than merely a stepping stone to monetary gain or career advancement. Certifications should be about self-improvement and mastery , not just a checkbox on a resume. Embrace the journey of learning for its own sake, and watch how it transforms your personal and professional life in ways you never imagined. The Real Reason Behind Certifications The commercial marketing driving force of certifications is often centered around securing a new or better job. But I urge you to reconsider if this is your primary motivation . Take a moment to reflect on your personal development and your deepest interests within the realm of technology.  Is your passion in: Programming Crafting elegant code and solving complex problems? System Administration, Ensuring seamless operations and managing vast networks? Data Analytics Unraveling the stories hidden within data?
Read blog »

LPI E - ALL K.D.

Image
LPI Linux Essentials Outline All Knowledge Domains and Links to LPI One last check before test! Introduction to Linux >> 1.1 Linux Evolution and Popular Operating Systems >> 1.2 Major Open Source Applications >> 1.3 Open Source Software and Licensing >> 1.4 ICT Skills and Working in Linux Linux Evolution and Popular Operating Systems: This domain covers the history of Linux and its evolution, as well as an overview of popular Linux distributions. Major Open Source Applications: It focuses on introducing commonly used open source applications in the Linux ecosystem, such as LibreOffice, Firefox, and GIMP. Open Source Software and Licensing: This domain covers the concepts of open source software, different types of licenses, and their implications. ICT Skills and Working in Linux: It provides an overview of the basic information and communication technology (ICT) skills needed to work with Linux and explains the benefits of using Linux in variou
Read blog »

CCNP 03 - WANS

Image
WAN Problem Areas Certification Objectives Point-to-Point Protocols Switched Protocols      In this chapter, we will discuss troubleshooting point-to-point and switched protocols. It’s very important to understand the concepts and functionality of each protocol. We will discuss the HDLC and SDLC encapsulation methods, as well as both CHAP and PAP authentications via PPP. We will identify ISDN, Frame Relay, X.25, SMDS, and ATM transmissions and common problems associated with each of them. Point-to-Point Protocol      In the 1980s, the Internet really started to come to life due to its usage by the U.S. government, universities, and large corporations. These hosts were being supported by the Internet Protocol (IP) and connected via a series of LANs. The most common of these LANs was the Ethernet. Other hosts were connected through WANs, using technologies such as X.25. This eventually evolved into the need to transmit data via the original method used before networking was ever establis
Read blog »