Nt1330 Unit 9 Final Essay

Final Essay Questions This essay answers two questions. Question one is to describe the methods and tools used in scanning and enumerating system and network targets and how one can use the results during the rest of the penetration test. The second question concerns what is the favorite tool that this student learned about in this class, how one uses it and an explanation of why and how it enhances one’s ability to conduct a penetration test. The first step in a penetration test would be reconnaissance, or footprinting, to find the websites to determine the IPs for an intended victim and glean all available information. Next is scanning. Assuming ICMP messages are not blocked and firewall and IDS systems don’t interfere, one would determine the network range by

This can give you the IP address, MAC address and vendor on machines. Then one runs the Nmap -A xxx.xxx.xxx.xxx* command with the same address range to obtain the operating systems on those same range of machines and what application version it is. This also gives the open ports and what services are running on them. Now the IP, MAC address, vendor, port information, services, Operating system and the version are known. After all this information is known, one can utilize a mapping tool such as Solar winds that can give an actual picture representation of the network to visualize things. Next is enumeration to discover more specifics such as user accounts, group settings and application settings. Depending on the OS, version and if NET Bios is enabled, one could use null sessions to find lists of machines, shares, users, groups, and users/host ids. Using the Windows command line, type: