Lab 2.1 ‐ Port Scanning 1 - skyleroriordan/my-tech-journal GitHub Wiki

Lab 2.1 - Port Scanning 1

  1. screenshot of a wireshark capture of a TCP handshake after executing the bash echo

image

image

  1. a bash script that provides CSV output with the enhancement of showing whether the port is open or closed.

image

Script

output

image

  1. I could not find the file in Kali as the directory /dev/tcp does not exist. However, after researching I discovered that it's not a physical file but a feature in Bash that tells the shell to open a TCP connection to the specified host and port.

  2. Screenshot of the output of a default Nmap scan ran against 10.0.5.31

image

  1. Screenshot of a Wireshark capture of a default Nmap scan with a syn/ack of the open TCP port 22

image

Wireshark capture of the start of the Nmap scan

image

  1. Wireshark capture of a Nmap scan of 10.0.5.31 with port 3389 specified

image

The same scan ran without sudo

image

When run without sudo the icmp ping request and the timestamp request are not captured.

  1. Wireshark capture of the Nmap scan with the -Pn flag added

image