Section 04: OS Discovery

Banner Grabbing

Banner grabbing is a technique used to gain information about a computer system on a network and the services running on its open ports. Administrators can use this to take inventory of the systems and services on their network. However, an intruder can use banner grabbing in order to find network hosts that are running versions of applications and operating systems with known exploits.

Links

https://en.wikipedia.org/wiki/Banner_grabbing

Definition

Identifying Target OS

Wireshark

Definition

Discovery using nmap

nmap -O 10.10.10.10

nmap script engine

The Nmap Scripting Engine (NSE) is one of Nmap's most powerful and flexible features. It allows users to write (and share) simple scripts to automate a wide variety of networking tasks. Those scripts are then executed in parallel with the speed and efficiency you expect from Nmap. Users can rely on the growing and diverse set of scripts distributed with Nmap, or write their own to meet custom needs.

nmap IPv6

nmap -6 -O 10.10.10.10

https://nmap.org/book/nse.html

PreviousSection 03: Port and Service Discovery NextSection 05: Scanning Beyond IDS and Firewall

Last updated 6 months ago