Official Student Lab Guide

               Lab 4 – Detecting Live Systems

                       Server 2016 is Victim (target)

                          d.  Press ctrl + c to stop the scan
                   7.  Another type of scan is the Half Open Scan:
                          a.  sudo hping3 -S <target-IP> -p <port> -c 1












                   8.  UDP Scan:
                          a.  sudo hping3 -2 <target-IP> -p <port> -c 1
















                   9.  FIN Scan:
                          a.  sudo hping3 -F <target-IP> -p <port> -c 1

          Report piracy if the fingerprint in this box is of poor resolution!











               Section 6 – Make use of the telnet utility to perform banner grabbing
                   1.  Open a Terminal shell in the Ghost Virtual Machine:
                   2.  Type:
                          a.  telnet <ip address of Metasploitable> 80
                          a.  Hit enter once
                          b.  At the prompt, Type:  GET / HTTP/1.0 (Note: if this is done from the Windows
                              command prompt, you will not see what you are typing)
                          c.  Then hit enter 2 or 3 times and your banner will appear



               P a g e  | 90                                    Certified Penetration Testing Engineer – v06.3.1.4
                                                                                   ©Mile2 – All Rights Reserved