Ethical Hacking: Scanning Networks

Become an ethical hacker. Learn how to detect network vulnerabilities to prevent attacks on your organization's infrastructure and data.

Introduction

• Scanning the LAN
• Discovering resources
• Hacking ethically
• Setting up your virtual network

1. Scanning Purpose and Methodology

• Roadmapping a scan
• Outlining the TCP flags
• Leveraging the TCP three-way handshake
• Summarizing scanning tools
• Discovering Nmap
• Using hping3

2. Discovering Hosts

• Locating network hosts
• Comparing ping scans
• Sending SYN and ACK scans
• Challenge: Identify a scanning signature
• Solution: Identify a scanning signature

3. Identifying Open Services

• Evaluating port scanning methods
• Scanning IPv6 networks
• Identifying listening hosts using SCTP
• Using SSDP for discovery
• Optimizing scans with Nmap Script Engine

4. Determining Operating Systems

• Fingerprinting the OS
• Using Wireshark for OS discovery
• Employing IPv6 fingerprinting
• Harnessing the TTL value
• Mapping the network using Nmap

5. Moving through the Network

• Generating less noise
• Understanding the idle scan
• Firewalking the network
• Implementing stealth scans

6. Avoiding Detection

• Manipulating packets
• Spoofing and cloaking
• Employing proxies
• Leveraging anonymizers

7. Counteracting Scanning

• Preventing scanning
• Detecting spoofing
• Challenge: Draw a network diagram
• Solution: Draw a network diagram
• Next steps