How to do Scanning?



Scanning refers to a set of procedures for identifying active hosts , ports and services in a network.
Scanning is one of the components of intelligence gathering an attacker uses to create a profile of the target organization.

Types of Scanning

1. Network Scanning.
2. Vulnerability Scanning.

Network Scanning 

Objectives of Network Scanning are Identifying live hosts and MAC Addresses.

 List of Network Scanning Softwares.

1. NMAP.
2. Angry IP Scanner.
3. Advanced IP Scanner.
4. Pingtester.

Vulnerability Scan

It is a proactive method for analyzing vulnerabilities on target network with help of vulnerability scanning.
vulnerabilities can be classified as severe,high,medium,low and information based on risks found on the target.

List of commercial vulnerability scanners used in coperate companies.

1. Nessus VS
2. Saint VS
3. Qualys VS
4. Nexpose VS
5. GFI Languard VS
6. Coreimpact VS
7. Solar winds engineers toolset VS

Scanning Counter Measures

1. Block unwanted ports at the firewall.
2. Hide sensitive information from public view.
3. Configure firewall and intrusion detection system(IDS).
4. Rules to detect and block probes.
5. Use custom ruleset to lockdown the network.
6. Ensure that routing and filtering mechanisms cannot be by passed using specific source codes or source routing techniques.
7. Understand the network configuration and its accessable ports by launching TCP and UDP port scans alongwith ICMP probes against your own IP address space.

Enumeration

Image result for enumeration

It is defined as the process of extracting usernames, machine names, network resources, shares and services from a system.

Types of enumeration attacks conducted on networks.

1. Netbios enumeration
2. SNMP enumeration
3. LDAP enumeration
4. NTP enumeration
5. SMTP enumeration
6. DNS enumeration

Malware Threats

1. Trojan horse is a program in which harmful code is contained inside apparently harmless software or data in such a way that it can get control and do its chosen form of damage such as corrupting the files on our HDD.
Trojan horses can be created with an extension of ".exe",".bat",".com",".vbs",".pif",".scr" and ".php".

2. Virus is a program or piece of code i.e, loaded on to our computer without our knowledge and runs against our wishes.
Virus ( Vital information resource under siege )

3. Worm is a harmful software program that can self replicate on computers via computer networks without us being aware that our machine has become infected. The secondary stage of Virus is worm.

Commonly computer worms are spread in one of the following ways.

1. Files sent as email attachments. 
2. Via a link to a website.
3. Via a link sent in an chat message.
4. Via peer to peer file sharing network.
5. Some worms are spread as network packets these directly penetrate the computer memory and then the worm code is activated

Server side exploits are also called worms.

Comments

Post a Comment

Popular posts from this blog

Managing Output with Manipulators in C++

Well, when I started studying C++ or you can say when I was forced to study CPP I was like already I have Maths, Physics and Chemistry to study so why this shitty extra burden on my shoulders. But that subject which I was forced to study or having no other option instead of studying CPP became my passion now. Anyways that's a hell of a story! So, this piece of reading will give you an explanation about what are manipulators and how they are implemented in CPP. Manipulators By the name you might have already thought that this is going to be something related to manipulation of something. Well, you are on a right track So, you already got an idea what it is about I would like to make it clear that what is that "something". That something is nothing but Input and Output operations. Well, in this post we will be focusing mainly on Managing Output with Manipulators. Lets, start the boring thing! The header file iomanip provides a set of functions call
Read more

What is sniffing?

Image
Wiretapping is a process of monitoring the telephone and internet conversations by a third party attackers connect a hardware or software or combination of both to the switch carrying information between two phones or hosts on the internet. Types of wire taping 1. Active wire taping : It only monitors, records the traffic (silently) and also alters the traffic. 2. Passive wire taping : It only monitors and records the traffic. Sniffing attacks are vulnerable to following protocols. 1. Telnet 2. FTP 3.SMTP 4. HTTP 5. POP3 6. NTP 7. IMAP 8. SNMP 9. RDP In network sniffing attacks are mostly done on data link layer and network layer of OSI reference model based switches Recommended sniffing tool is Wireshark.  Wireshark is available for both windows and Linux , it is the best tool for sniffing and it's absolutely free . You can download Wireshark from their official site  Wireshark download . Session Hijack
Read more

Creating a bootable USB.

A lot of people just asks me how to create a bootable USB easily. The funny part is that they mainly ask how to make it for Linux, I mean bro, if you don't know even how to make a bootable USB then you better should stick with windows OS, because it suits you better, but for the people who are reading this article for creating bootable USB, guys, first of all, I will tell you the simplest method. Don’t expect from me to explain to you how to make it using the command prompt. So, all you need is one software of 1 MB, your ISO file, a computer and yeah USB. So, just download the software Rufus from their official site(first link after typing Rufus on Google). Then make sure your ISO image file is downloaded. Now run the Rufus.exe file and then select the USB disk, from the first 'disk' option then in the bottom right of the application there will be a mall option.  Looking like a CD mounted on HDD. Click on that and select the ISO image file. A
Read more