February 2020
Beginner
544 pages
12h 40m
English
Content preview from Hunting Cyber Criminals
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
CHAPTER 4Looking for Network Activity (Advanced NMAP Techniques)
This chapter focuses on identifying active hosts and ports using advanced NMAP scanning techniques. For almost every engagement, NMAP is the holy grail of “which tool to use first” to look for active hosts.
Because NMAP is such an unavoidable tool in every hacker’s and investigator's arsenal, I feel it has already been covered to death in a multitude of other books. Rather than rehash the basics of performing NMAP scans, this chapter will focus on several advanced use cases and techniques that I have used to discover host activity, even through the most challenging firewalls.
Getting Started
A significant amount of critical data can be derived from performing NMAP scans, which can really set the tone for the rest of your engagement. Before we get started, this book assumes you have a basic understanding of NMAP—what it is, how it works, and how to use it. If you are new to NMAP, you might want to check out some free online tutorials; or if you're like me, just play around with it.
Preparing a List of Active Hosts
This is typically the first scan I run. It is designed to scan all of the local IP space and come back with a nicely formatted list of which hosts are active. I use this for internal penetration tests, but it can easily be adapted to find which external addresses are live.
I use the following command to get a list of all active hosts on an internal network:
root@OSINT: nmap -n -sn 10.0.0.0/8 172.16.0.0/12 ...Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.