AHRQ Healthcare Horizon Scanning System Horizon Scanning ...
1.1 Scanning
Transcript of 1.1 Scanning
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 2/77
www.vncert.gov.vn
SCANNING
Module 4
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 3/77
www.vncert.gov.vn
Content
1•
Definition of scanning
2 • Types and objectives of Scanning
3 • Checking live systems and open ports
4• Understanding scanning techniques
5 • Different tools present to perform Scanning
6 • Understanding banner grabbing and OS fingerprinting
7 • Drawing network diagrams of vulnerable host
8 • Preparing proxies
9 • Scanning countermeasures
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 4/77
www.vncert.gov.vn
Scanning - Definition
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 5/77
www.vncert.gov.vn
Types of Scanning
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 6/77
www.vncert.gov.vn
Objectives of Scanning
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 8/77
www.vncert.gov.vn
Checking for Live Systems - ICMP
Scanning
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 9/77
www.vncert.gov.vn
Angry IP Scanner
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 10/77
www.vncert.gov.vn
Angry IP Scanner: Screenshot
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 12/77
www.vncert.gov.vn
Three Way Handshake
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 13/77
www.vncert.gov.vn
Three Way Handshake: Screenshot
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 14/77
www.vncert.gov.vn
TCP Communication Flags
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 16/77
www.vncert.gov.vn
Nmap: Screenshot
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 17/77
www.vncert.gov.vn
Nmap: Scan Methods
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 18/77
www.vncert.gov.vn
Nmap: Scan Methods
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 19/77
www.vncert.gov.vn
NMAP Scan Options
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 20/77
www.vncert.gov.vn
NMAP Output Format
t
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 21/77
www.vncert.gov.vn
NMAP Timing Options
t
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 22/77
www.vncert.gov.vn
NMAP Options
ncert go n
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 23/77
www.vncert.gov.vn
HPING2
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 24/77
www.vncert.gov.vn
Hping2 Commands
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 25/77
www.vncert.gov.vn
SYN Stealth / Half Open Scan
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 26/77
www.vncert.gov.vn
Stealth Scan
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 27/77
www.vncert.gov.vn
Xmas Scan
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 28/77
www.vncert.gov.vn
FIN Scan
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 29/77
www.vncert.gov.vn
NULL Scan
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 30/77
www.vncert.gov.vn
IDLE Scan
www vncert gov vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 31/77
www.vncert.gov.vn
IDLE Scan: Basics
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 32/77
www.vncert.gov.vn
IDLE Scan: Step 1
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 33/77
www.vncert.gov.vn
IDLE Scan: Step 2.1 (Open Port)
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 34/77
www.vncert.gov.vn
IDLE Scan: Step 2.2 (Closed Port)
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 35/77
g
IDLE Scan: Step 3
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 36/77
g
ICMP Echo Scanning/List Scan
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 37/77
g
TCP Connect / Full Open Scan
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 39/77
War Dialer Technique
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 40/77
Why War Dialing?
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 41/77
Wardialing
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 42/77
PhoneSweep – War Dialing Tool
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 46/77
War Dialing CountermeasuresSandTrap Tool
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 48/77
OS Fingerprinting
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 49/77
Active Stack Fingerprinting
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 50/77
Passive Fingerprinting
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 51/77
Active Banner Grabbing Using Telnet
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 52/77
GET REQUESTS
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 53/77
p0f – Banner Grabbing Tool
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 54/77
p0f for Windows
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 55/77
Httprint Banner Grabbing Tool
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 56/77
Httprint: Screenshot
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 57/77
Tools for Active Stack Fingerprinting
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 61/77
Nessus: Screenshot 1
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 62/77
Nessus: Screenshot 2
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 63/77
GFI LANGuard
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 64/77
GFI LANGuard Features
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 66/77
Retina: Screenshot
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 68/77
FriendlyPinger
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 70/77
Proxy Servers
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 71/77
Use of Proxies for Attack
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 72/77
Free Proxy Servers (1/2)
www.vncert.gov.vn
( )
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 73/77
Free Proxy Servers (2/2)
www.vncert.gov.vn
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 74/77
SocksChain
www.vncert.gov.vn
l h
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 75/77
HTTP Tunneling Techniques
www.vncert.gov.vn
h d l
7/29/2019 1.1 Scanning
http://slidepdf.com/reader/full/11-scanning 76/77
Why Do I Need HTTP Tunneling
www.vncert.gov.vn