Friday, August 28, 2020

CEH: Gathering Network And Host Information, Types Of Scan


In Hacking the main focus is over gathering the information about victim or victim's machine. Which will help to find out which type of exploit will works according to the given circumstances. Gathering the network and host information means to find out by which network, the which victim's machine is connected and communicating over the network. Moreover, scanning is also performed for gathering information about open and closed ports. After that they'll able to find the vulnerabilities in the target system and try to get access to the system.

Types Of Scan

As a CEH you should know the scan types and uses:

SYN

SYN scan doesn't complete the TCP three way handshake that is why it is known as a half-open scan. An attacker send a SYN packet to the victim machine if SYN/ACK packet is received back to attacker, then it clarify that the port is listening due to the acknowledgment by the victim that it has completed the connection. While if the attacker is received the RST/ACK packet then it assumed that the port is closed or open.


XMAS

XMAS scan works only on target system that has the RFC 793 development of TCP/IP and it doesn't works against any version of windows.
XMAS scan send a packet with by setting up the FIN, URG and PSH flags of the TCP header. The function of this scan is if the port is active there will be no response but if the port is closed the target responds with a RST/ACK packet.


FIN

A FIN scan send a packet by setting up only the FIN flag of the TCP. This scan is similar to XMAS scan. FIN scan receives no response if the port is active while if the port is closed it receives the RST/ACK packet.


NULL 

NULL scan is also similar to the XMAS scan. But the only difference is that it sends a packet without setting up the any flag of TCP header. NULL scan receives no response if the port is open but if the port is closed it receives the RST/ACK packet.


IDLE

It is just like spoofing an IP address by sending a SYN packet to the victim's machine to find out which services are available over the system. This scan is completed with the help of another system called as "Zombie" (that is not receiving or transmitting any information).


More articles
  1. Hack Tools For Mac
  2. World No 1 Hacker Software
  3. Hackers Toolbox
  4. Hacking Tools Name
  5. Hacking Tools Name
  6. What Is Hacking Tools
  7. Pentest Tools Port Scanner
  8. How To Install Pentest Tools In Ubuntu
  9. Hacking Tools Download
  10. Hacking Tools 2019
  11. Hacking Tools For Kali Linux
  12. Hack Tools
  13. Pentest Tools Nmap
  14. Hacking Tools For Windows 7
  15. Pentest Tools
  16. Hacker Tools Software
  17. What Is Hacking Tools
  18. Hacking Tools 2019
  19. Hacking Apps
  20. Pentest Tools Android
  21. Hack Tools For Games
  22. Wifi Hacker Tools For Windows
  23. Hack Tool Apk No Root
  24. Pentest Tools For Ubuntu
  25. Hackrf Tools
  26. Hacking Tools Hardware
  27. Hacker Search Tools
  28. Hack Tools For Mac
  29. What Is Hacking Tools
  30. Hacker Tools For Mac
  31. Game Hacking
  32. Hacker Techniques Tools And Incident Handling
  33. Hacker Tools 2019
  34. Android Hack Tools Github
  35. Hacker Tools Windows
  36. Hacking Tools Mac
  37. Hacker Tools Hardware
  38. Hack Tool Apk
  39. Hacker Tools Free Download
  40. Hacking Tools For Windows
  41. Hacker Tools Linux
  42. Termux Hacking Tools 2019
  43. New Hacker Tools
  44. Hacking App
  45. Wifi Hacker Tools For Windows
  46. Hacking Tools For Pc
  47. Wifi Hacker Tools For Windows
  48. Hacker Tools
  49. Hacks And Tools
  50. Physical Pentest Tools
  51. Game Hacking
  52. Pentest Tools Framework
  53. Hacking Tools For Mac
  54. What Are Hacking Tools
  55. Pentest Tools Bluekeep
  56. Pentest Tools Android
  57. Hacking Tools For Windows 7
  58. Pentest Tools Alternative
  59. Hacker Tools For Ios
  60. Wifi Hacker Tools For Windows
  61. Hack And Tools
  62. Hack Tool Apk No Root
  63. Hack Tools Online
  64. Hacking Tools For Pc
  65. How To Install Pentest Tools In Ubuntu
  66. How To Hack
  67. Pentest Tools Linux
  68. Pentest Tools Tcp Port Scanner
  69. Hacking Tools For Windows
  70. Hacker Tools Github
  71. Hacker Tools Free
  72. Hacking Tools For Pc
  73. Hacker Tools For Mac
  74. Hacking Tools For Windows

Posted by Tushar Surekha at 1:41 PM

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Bloomberg - UTV

Must Watch...Ad may come initially.. wait for video.Also keep volume on

Disclaimer



This Document is subject to changes without prior notice and is intended only for the person or entity to which it is addressed to and may contain confidential and/or privileged material and is not for any type of circulation. Any review, retransmission, or any other use is prohibited. Kindly note that this document does not constitute an offer or solicitation for the purchase or sale of any financial instrument or as an official confirmation of any transaction.


The information contained herein is from publicly available data or other sources believed to be reliable. While I would endeavour to update the information herein on reasonable basis, I am under no obligation to update or keep the information current. Also, there may be regulatory, compliance, or other reasons that may prevent me from doing so. I do not represent that information contained herein is accurate or complete and it should not be relied upon as such. This document is prepared for assistance only and is not intended to be and must not alone betaken as the basis for an investment decision. The user assumes the entire risk of any use made of this information. Each recipient of this document should make such investigations as it deems necessary to arrive at an independent evaluation of an investment in the securities of companies referred to in this document (including the merits and risks involved), and should consult its own advisors to determine the merits and risks of such an investment. The investment discussed or views expressed may not be suitable for all investors. I do not undertake to advise you as to any change of my views. I may have issued other reports that are inconsistent with and reach different conclusion from the information presented in this report. This report is not directed or intended for distribution to, or use by, any person or entity who is a citizen or resident of or located in any locality, state, country or other jurisdiction, where such distribution, publication, availability or use would be contrary to law, regulation or which would subject me to any registration or licensing requirement within such jurisdiction. The securities described herein may or may not be eligible for sale in all jurisdictions or to certain category of investors. Persons in whose possession this document may come are required to inform themselves of and to observe such restriction. I may have used the information set forth herein before publication and may have positions in, may from time to time purchase or sell or may be materially interested in any of the securities mentioned or related securities. I may from time to time solicit from, or perform investment banking, or other services for, any company mentioned herein. Without limiting any of the foregoing, in no event shall I or any third party involved in, or related to, computing or compiling the information have any liability for any damages of any kind.