◾  Ethical Hacking and Penetration Testing Guide Example

Target Enumeration and Port Scanning Techniques
◾ 
117
Example
nmap –badsum
Decoys
This is the last method that we will discuss in this section. It is very effective when you want to 
use stealth. The idea behind this scan is to send spoofed packets from other hosts, which would 
make it very difficult for network administrators to detect from which host the scan originated. 
Since the decoy has the potential to generate a very large number of packets, it could cause a 
possible DOS (denial of service).
Example
nmap –D RND:10
This command would generate a random number of decoys for the target iP.
ZENMAP
Zenmap is a GUI version of nmap. Personally I am not a big fan of this tool, but I thought it would 
be worth mentioning for all the GUI lovers. It does include some built-in profiles for scanning and 

118
◾ 
Ethical Hacking and Penetration Testing Guide
I guess I have talked about every parameter that they have used in their scanning profiles. So just 
take some time to understand the scanning profiles, their function, and most importantly what 
they are doing in background by inspecting the packets through wireshark.
The topology option inside zenmap will draw a picture of the network topology. In this way 
you can visualize where exactly the host is located.

Target Enumeration and Port Scanning Techniques
◾ 

Yüklə 22,44 Mb.

Dostları ilə paylaş: