Topic 3: Assess w/ Net Recon tools

Question 1

Network reconnaissance

Answer 1

Mapping the attack surface

Question 2

Topology discovery

Answer 2

Scanning for hosts, IP ranges, and routes of a target network

Question 3

Footprinting

Answer 3

Gathering information about the target before attacking it

Question 4

ipconfig

Answer 4

Shows config assigned to networks w/in Windows

Question 5

ifconfig

Answer 5

Shows network config w/in Linux

Question 6

ping

Answer 6

Probe a host on an IP address using ICMP

Question 7

arp

Answer 7

Display the machine’s Address Resolution Protocol, which includes MAC addresses associated with each IP

Question 8

route

Answer 8

View host machine’s routing table

Question 9

tracert

Answer 9

ICMP probes which report round trip time hops between local host and host on a remote network

Question 10

traceroute

Answer 10

Route discovery from a Linux host. Uses UDP rather than ICMP by default

Question 11

pathping

Answer 11

provides latency and packet loss statistics over a measured time frame

Question 12

Pathping Linux equivalent

Answer 12

MTR

Question 13

SNMP

Answer 13

Simple Network Management Protocol. Works over UDP ports 161 and 162 by default

Question 14

Nmap

Answer 14

An open source IP scanner which operates with little notification

Question 15

Service Discovery

Answer 15

Using network scans to discover open TCP/UDP activity, and services running them

Question 16

Fingerprinting

Answer 16

Identifying the type and version of an OS based on its network scan responses

Question 17

netstat

Answer 17

a Win/Linux command to show state of TCP and UDP ports

Question 18

nslookup/dig

Answer 18

Tool for querying DNS records