CSCI 427 Quiz 1

Question 1

don’t run ? unless you want to get caught

Answer 1

nmap -a [target]

aggressive

Question 2

to start off, run ?

Answer 2

nmap -sn [target]

Question 3

nmap -sn [target] is a

Answer 3

simple ping

Question 4

how do you choose a range to scan?

Answer 4

nmap -p min-max [target]

ex: nmap -p 1-3000 [target]

Question 5

scanning a range of ports returns

Answer 5

all the open ports it found in that range

Question 6

what command would give you a good idea of where to start looking for vulnerabilities?

Answer 6

nmap -O -sV [target]

gives operating system, services, and versions

Question 7

why do we scan?

Answer 7

to find systems and services

Question 8

when we find systems, we are paying attention to things like

Answer 8

hostnames, OS versions

Question 9

when we find services, we are mainly looking for

Answer 9

open ports, standard services on a given port, and service versions

Question 10

if you just run nmap [target], what does it do

Answer 10

scans the first thousand or so ports

Question 11

the first thousand or so ports are the (least/most) likely to run standard services

Answer 11

most