Nmap - Try Hack Me Room Walk-through

  ROOM NAME : Nmap ( A network scanning tool )




Task 1: (Deploy)

Deploy Attached Virtual Machine using Attack Box. 


Task 2: (Introduction) 

Nmap is a tool which connects to any target’s port inorder to classify a port as open, closed or filtered (by firewall). Using this port scanning technique, we can analyze which are the vulnerable ports to be attacked on. 


Q1)What networking constructs are used to direct traffic to the right application on a server?

A) PORTS


Q2)How many of these are available on any network-enabled computer?

A) 65535


Q3)How many of these are considered "well-known"? 

A) 1024




Task 3: (Nmap Switches) 

Using command ( nmap -h ) all the answers can be fetched in this task.




















Task 5: (TCP Connect Scans) 


Q1) Which RFC defines the appropriate behavior for the TCP protocol?

A) RFC 9293


Q2) If a port is closed, which flag should the server send back to indicate this ?

A) RST



Task 6 : ( SYN Scans)


Q1) There are two other names for a SYN scan, what are they?

A) Half-Open, Stealth


Q2) Can Nmap use a SYN scan without Sudo permissions (Y/N)?

A) N










Task 7 : ( UDP Scans)


Task 8 : ( Xmas,NULL and FIN)

Null scan (-sN) does not set any bits. For instance, TCP flag header is 0

Fin scan (-sF) sets just the TCP FIN bit.

Xmas scan (-sX) sets the FIN, PSH/Push , and URG flags lighting up the packet like a Christmas tree.


Task 9 : ( ICMP Network Scanning )

Task 10 : (Overview)


Task 11: ( Working with the NSE )


Task 12 : (Searching for Scripts)























Task 13 : ( Firewall Evasion )




Task 14 : (Practical)


Perform an Xmas scan on the first 999 ports of the target -- how many ports are shown to be open or filtered?


There is a reason given for this -- what is it?

Note: The answer will be in your scan results. Think carefully about which switches to use -- and read the hint before asking for help!






















Perform a TCP SYN scan on the first 5000 ports of the target -- how many ports are shown to be open?



Deploy the ftp-anon script against the box. Can Nmap login successfully to the FTP server on port 21? (Y/N)




Thank you for referring to my blog. 

Comments

Post a Comment