Footprinting, Scanning, Enumeration

• Footprinting: Similar to Windows but using different tools:

  • Network enumeration: using whois and finding authoritative name server.
  • DNS interrogation: using nslookup for zone transfer , host to find e-mail server, and traceroute for network reconnaissance. Also dig.
  • Ubuntu: use System, Administration, Network Tools for ping, whois, traceroute, etc.

• Scanning: again similar to Windows with different tools :

  • Nmap and Nmapfe: use sudo apt-get install nmap and sudo apt-get install nmapfe to setup. Use sudo nmapfe for graphical interface.
    • ping sweeps, port scanning: tcp and udp, OS detection.
  • Countermeasures: Snort and Psionic Port Sentry: documentation. (seen later in IPS/IDS)

• Enumeration: UNIX enumeration.

  • UNIX Users and group enumeration: finger (see this example) and tftp should be disabled and killed.
  • Basic daemons: sendmail, rpc, NFS, NIS -- all have known vulnerabilities, setup and latest security patches should be applied carefully.

Previous slide

Next slide

Back to first slide

View graphic version