Scribd
Upload
91 views

Lab - Detecting Threats and Vulnerabilities: Objectives

This document discusses using Nmap to detect threats and vulnerabilities on a system. It describes running basic Nmap scans against localhost to detect open TCP and UDP ports, using administrative privileges and version detection to research vulnerabilities, and capturing SSH keys by running Nmap scripts.

Uploaded by

Obaid Anwer
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
91 views

Lab - Detecting Threats and Vulnerabilities: Objectives

This document discusses using Nmap to detect threats and vulnerabilities on a system. It describes running basic Nmap scans against localhost to detect open TCP and UDP ports, using administrative privileges and version detection to research vulnerabilities, and capturing SSH keys by running Nmap scripts.

Uploaded by

Obaid Anwer
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

Lab – Detecting Threats and Vulnerabilities

Objectives
Use Nmap, a port scanner and network mapping tool to detect threats and vulnerabilities on a system.

Background / Scenario
Network Mapper, or Nmap, is an open source utility used for network discovery and security auditing.
Administrators also use Nmap for monitoring hosts or managing service upgrade schedules. Nmap
determines what hosts are available on a network, what services are running, what operating systems are
running, and what packet filters or firewalls are running.

Required Resources
 PC with Ubuntu 16.0.4 LTS installed in a virtual machine - you can use the VM from labs completed in
chapter 2.

Step 1: Open a terminal window in Ubuntu.


a. Log in to Ubuntu using the following credentials:
User: cisco
Password: password

b. Click on the terminal icon to open a terminal.

Step 2: Run Nmap.


At the command prompt, enter the following command to run a basic scan against this Ubuntu system:

© 2017 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 3
Lab – Detecting Threats and Vulnerabilities

cisco@ubuntu:~$ nmap localhost

The results are a scan of the first 1024 TCP ports.


What TCP ports are open?
____________________________________________________________________________________

Step 3: Use administrative privileges with Nmap.


a. Type the following command in the terminal to scan the computer’s UDP ports (remember, Ubuntu is
case sensitive) and enter the password password when prompted:
cisco@ubuntu:~$ sudo nmap –sU localhost

What UDP ports are open?


____________________________________________________________________________________

© 2017 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 2 of 3
Lab – Detecting Threats and Vulnerabilities

b. Type the following command in the terminal:


cisco@ubuntu:~$ nmap –sV localhost

Using the –sV switch with the nmap command performs a version detection which you can use to
research vulnerabilities.

Step 4: Capture SSH keys.


Type the following command in the terminal to initiate a script scan:
cisco@ubuntu:~$ nmap –A localhost

You captured the SSH keys for the host system. The command runs a set of scripts built into Nmap to test
specific vulnerabilities.
References
Nmap: https://nmap.org/

© 2017 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 3 of 3

You might also like