You are tasked with the crucial enumeration stage of penetration testing. But what makes enumeration an essential phase in penetration testing? Select all that apply.
Added by Esther B.
Step 1
This information can include user accounts, network shares, services running, and more. It is essential because it helps the penetration tester identify potential vulnerabilities and attack vectors. Show more…
Show all steps
Your feedback will help us improve your experience
Shu Naito and 99 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
Phase 2. Identify Targets and Run Scans Goal: Identify the tools and techniques to be used to perform host discovery and enumeration. Procedure: List out the tools you plan on using to perform network scans, the purpose for using them, and how you will use them. For example:
Shu N.
Reconnaissance: Download and install the Nmap port scanner. Find tutorials for Nmap on their site, your book, and other resources on the web and keep them handy. Understand what you are about to do first! a. Run at least three different scans on your computer (set localhost as target). b. Run a scan on scanme.nmap.org as target. What key differences do you see in the results on your machine vs nmap.org? Research and explain the differences. Reconnaissance: Jane has an intent to penetrate the network in an organization. She has used passive reconnaissance to gather extensive information on the company. She finds out the model numbers of routers and other devices by reading discussions between system administrators in forums. She also has a list of all the IT staff and their phone numbers. She also has the services running on ports on some machines she ran a network scanner on. What reasonable steps should the company have taken to prevent Jane from finding this information? What steps should the company take to prevent or reduce the efficacy of port scans?
Supreeta N.
Automation Exercise Up to this point, you have done many activities in the area of Footprinting and Scanning yourself (manually). This exercise will have you put your BASH and/or Python skills to the test. Many penetration testers automate mundane tasks (i.e. NMAP). Using your Kali VM, write a BASH script that will scan your VMware NAT network via ARP, collect those "live" IPs, place the IPs into a file, then run the following scans based on those "Live" IPs: 1. Scan all "Live" IPs for the following ports: a. 80 b. 443 c. 445 d. 21 e. 22 f. 23 g. 139 h. 3389 2. Output the results from this to a separate file.
Akash M.
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
Transcript
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD