Presentation is loading. Please wait.

Presentation is loading. Please wait.

6. Operating Systems Finger printing & Scanning

Published byMelvin Cameron Modified over 5 years ago

Similar presentations

Presentation on theme: "6. Operating Systems Finger printing & Scanning"— Presentation transcript:

1 6. Operating Systems Finger printing & Scanning
NETWORK SECURITY LAB Lab 6. Operating Systems Finger printing & Scanning

2 OS Fingerprinting – Process of determining the Operating System used by a host on a network. • Forensics Wiki – What are the contents of an OS Fingerprint? • Just like human fingerprints have unique characteristics, OS fingerprints are unique too. • These characteristics are reflecting during communication. • By capturing and analyzing certain protocol flags and data packets, we can accurately establish the identity of the OS that relayed it.

3 How is it different than Scanning?
Scanning is done against IP addresses of computers only such as mail servers, web servers or standalone PC’s. OS fingerprinting can be don all network based devices such as Routers, switches, printers, etc.,

4 Points to ponder about nMap
• nMap is a very noisy solution Raises a lot of alerts in IDS/IPS solutions while scanning. The trick is to use nMap with different switches smartly so that the scans remain less frequent yet result effective. – Usage of switches

5 Hands On – Lab Activity Download and install the nMap Utility

6 Target To keep the scanning legal and ethical we will use the following url to scan. The url is provided freely by nMap to be scanned and exploited for practice purposes:

7 Switches to be used in nMap
-V : returns the version number of the service you are hosting -A / -O: Enables OS detection, version detection, script scanning - Using the nMap GUI run a scan against scanme.nmap.org

8 Objective • To intense scan a network (system / server / router)
• Run the nMap utility in GUI Mode Scanme.nmap.org

9 Scanning through nMap • nMap returns with results

10 Scanning a target for specific ports
• Nmap –p <<port number>> 22 <<ssh port>> – target • nMap –p 22 scanme.nmap.org

11 Aggressive Scanning using nMap
• nMap –A <<aggressive>> target – nMap –A scanme.nmap.org Gives the Operating System version of the target. • nMap –F target – Fast scanning (100 ports) of the target • nMap –open target – Runs a fast probe on target and retrieves only open ports on the target.

12 Report Work: • Using nMap commands and switches
provide the result for the following information: Scan using nMap to identify: The version of the Operating System The Services Running on the target Search for ports 8080, 22 and 443 on the target Use a fast scan on the target Retrieve only the open ports on the target Provide the answers in the following format: Command with switch Result

13 Questions

Download ppt "6. Operating Systems Finger printing & Scanning"

Similar presentations

Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.

Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.
Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.

Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning.

Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning.
CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.

CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
IS 247 Introduction to Web Application Development Tim Wu.

IS 247 Introduction to Web Application Development Tim Wu.
Network Management 2 School of Business Eastern Illinois University © Abdou Illia, Spring 2007 (Week 16, Thursday 4/19/2007)

Network Management 2 School of Business Eastern Illinois University © Abdou Illia, Spring 2007 (Week 16, Thursday 4/19/2007)
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 8 Introduction to Printers in a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 8 Introduction to Printers in a Windows Server 2008 Network.
Network Security With nmap By *** *****. Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all.

Network Security With nmap By *** *****. Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all.
TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.

TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.
Penetration Testing.

Penetration Testing.
Ana Chanaba Robert Huylo

Ana Chanaba Robert Huylo
Kirby Kuehl Honeynet Project Member 05/08/2002 Intrusion Deception.

Kirby Kuehl Honeynet Project Member 05/08/2002 Intrusion Deception.
CPMT 1451 IT Essentials: PC Hardware and Software ITCC 1301 Cisco Exploration 1: Network Fundamentals ITCC 1304 Cisco Exploration 2: Routing Protocols.

CPMT 1451 IT Essentials: PC Hardware and Software ITCC 1301 Cisco Exploration 1: Network Fundamentals ITCC 1304 Cisco Exploration 2: Routing Protocols.
This courseware is copyrighted © 2015 gtslearning. No part of this courseware or any training material supplied by gtslearning International Limited to.

This courseware is copyrighted © 2015 gtslearning. No part of this courseware or any training material supplied by gtslearning International Limited to.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 23 How Web Host Servers Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 23 How Web Host Servers Work.
CIS 450 – Network Security Chapter 3 – Information Gathering.

CIS 450 – Network Security Chapter 3 – Information Gathering.
A Virtual Honeypot Framework Author: Niels Provos Published in: CITI Report 03-1 Presenter: Tao Li.

A Virtual Honeypot Framework Author: Niels Provos Published in: CITI Report 03-1 Presenter: Tao Li.

Similar presentations

Ads by Google