LAB 1 NMAP Exercise Answers

3208 words 13 pages
Nmap LAB EXERCISE
CSEC 640 LAB-1
University of Maryland University College
B-McDerm
February 16, 2014

ASSIGNMENT PART A-NMAP
3.3 Lab Questions: Part A
1. What are the services that are running on each host?
Some of the hosts include the following services below, but not all “3” include the same services.
Domain: Host “3” only
FTP: All Host’s
HTTP: All Host’s
Microsoft-DS: All Host’s
Microsoft-RDP: All Host’s
MSRPC: All Host’s
MYSQL: All Host’s
Netbios-SSN: All Host’s
SSH: Host “3” only
Talent: All Host’s
The three diagrams below show the results from the OS Fingerprinting scan.
Figure 1: Host 1 (192.168.100.103)

Figure 2: Host 2 (192.168.100.105)

Figure 3: Host 3
…show more content…

This was my first time using a system like this and struggled with all the features at first. Thus, after performing significant research I have come to the conclusion that using (osscan-guess) can arise significant problems and red flags and this command as described is giving a guess that near-matches aggressively. This command relays back possibilities, and the match has to be very close for Nmap to do this by default. The only positive to this command is that Nmap will tell you when an imperfect match is printed and will display is confidence level by percentage for each guess.
7. Research a command or feature that you consider important but not covered in the lab. Describe its usage and report your findings when running the command against the host in the lab.
The one command of interest is the “sV” command which enables version detection, with attributes of (intensity, light, all, and trace). When performing a version scan, Nmap sends a series of probes each of which is assigned a rarity value between one and nine. The lower-numbered probes are effective against a wide variety of common services, as the higher numbered probes are rarely useful. The intensity level specifies which probes should be applied, and the default is (7). Version light is a convenience for (version-intensity 2) which makes the scanning much faster, but less likely to identify services. Command (all) in “sV” is an alias for (version-intensity 9) ensures that every single

Related