Task 2: Perform OS Discovery using Nmap Script Engine (NSE)

 

Task 2: Perform OS Discovery using Nmap Script Engine (NSE)



Module 03: Scanning Networks
Lab 3: Perform OS Discovery

Task 2: Perform OS Discovery using Nmap Script Engine (NSE)


open zenmap
nmap -A [Target IP Address]   = -A: to perform an aggressive scan.
nmap -O [Target IP Address]   = -O: performs the OS discovery.
nmap --script smb-os-discovery.nse [Target IP Address]   = --script: specifies the customized script and smb-os-discovery.nse: attempts to determine the OS, computer name, domain, workgroup, and current time over the SMB protocol (ports 445 or 139).

end






Nmap, along with Nmap Script Engine (NSE), can extract considerable valuable information from the target system. In addition to Nmap commands, NSE provides scripts that reveal all sorts of useful information from the target system. Using NSE, you may obtain information such as OS, computer name, domain name, forest name, NetBIOS computer name, NetBIOS domain name, workgroup, system time of a target system, etc.

Here, we will use Nmap to perform OS discovery using -A parameter, -O parameter, and NSE.

  1. In the Windows 10, navigate to the Desktop and double-click Nmap - Zenmap GUI shortcut.

    Screenshot

  2. The Zenmap GUI appears. In the Command field, type the command nmap -A [Target IP Address] (here, the target machine is Windows Server 2016 [10.10.10.16]) and click Scan.

    -A: to perform an aggressive scan.

    The scan takes aprroximately 10 minutes to complete.

  3. The scan results appear, displaying the open ports and running services along with their versions and target details such as OS, computer name, NetBIOS computer name, etc. under the Host script results section.

    Screenshot

  4. In the Command field, type the command nmap -O [Target IP Address] (here, the target machine is Windows Server 2016 [10.10.10.16]) and click Scan.

    -O: performs the OS discovery.

  5. The scan results appear, displaying information about open ports, respective services running on the open ports, and the name of the OS running on the target system.

    Screenshot

  6. In the Command field, type the command nmap --script smb-os-discovery.nse [Target IP Address] (here, the target machine is Windows Server 2016 [10.10.10.16]) and click Scan.

    --script: specifies the customized script and smb-os-discovery.nse: attempts to determine the OS, computer name, domain, workgroup, and current time over the SMB protocol (ports 445 or 139).

  7. The scan results appear, displaying the target OS, computer name, NetBIOS computer name, etc. details under the Host script results section.

    Screenshot

  8. This concludes the demonstration of discovering the OS running on the target system using Nmap.

  9. Close all open windows and document all the acquired information.

Comments

Post a Comment

Popular posts from this blog

Lab 1: Gain Access to the Target System using Trojans

Image
  Lab 1: Gain Access to the Target System using Trojans Module 07: Malware Threats Lab 1: Gain Access to the Target System using Trojans Task 1: Gain Control over a Victim Machine using the njRAT RAT Trojan Attackers use Remote Access Trojans (RATs) to infect the target machine to gain administrative access. RATs help an attacker to  remotely access the complete GUI and control the victim’s computer without his/her awareness. They can perform screening and  camera capture, code execution, keylogging, file access, password sniffing, registry management, and other tasks. The virus  infects victims via phishing attacks and drive-by downloads and propagates through infected USB keys or networked drives. It  can download and execute additional malware, execute shell commands, read and write registry keys, capture screenshots, log  keystrokes, and spy on webcams. njRAT is a RAT with powerful data-stealing capabilities. In addition to logging keystrokes, it is cap...
Read more

Lab 5: Perform Cryptanalysis using Various Cryptanalysis Tools

Image
Lab 5: Perform Cryptanalysis using Various Cryptanalysis Tools Module 20: Cryptography Lab 5: Perform Cryptanalysis using Various Cryptanalysis Tools Task 1: Perform Cryptanalysis using CrypTool CrypTool is a freeware program that enables you to apply and analyze cryptographic mechanisms, and has the typical look and  feel of a modern Windows application. CrypTool includes a multitude of state-of-the-art cryptographic functions and allows you  to both learn and use cryptography within the same environment. CrypTool is a free, open-source e-learning application used in  the implementation and analysis of cryptographic algorithms. Here, we will use the CrypTool tool to perform cryptanalysis. refer to blog  little long --------------------------------------------------------------------------------------------------------------------------------------- Module 20: Cryptography Lab 5: Perform Cryptanalysis using Various Cryptanalysis Tools Task 2: Perform Cryptanalysis us...
Read more