Electronic Books

122
Practical Hacking Techniques and Countermeasures
Also, with the ??“D option the attacker can enter several decoy IP addresses
separated by a comma (24.24.24.24, 24.24.24.25, ??¦) but keep in mind the
real IP address will also traverse to the target as well. This supports using
more decoy IPs or spoofing your IP address altogether (spoofing is covered
in Chapter 6).
The scan results will be displayed.
The sniffer results (sniffers are covered in Chapter 5) validate that the decoy
packets were indeed sent to the target.
The results of this scan indicate that the target:

Is probably using Windows 2000 Professional, which is accurate for
the target.
Target Enumeration
123
Lab 20: IP/Hostname Enumeration
Enumerate IP or Hostname: Nslookup
Prerequisites: None
Countermeasures: Firewalls, Intrusion Detection Systems (IDS)
Description: The nslookup application will query the Domain Name
System (DNS) to obtain the hostname to IP match in the DNS records.
Procedure: From a DOS prompt or Linux shell type the following with
the syntax of
nslookup (Hostname or IP Address)
In this example the nslookup application returned the hostname of
www.dell.com for the IP address of 143.166.83.231.
Nslookup works well in Linux as this example resolved the hostname of
www.google.com to both 64.233.167.104 and 64.233.167.99.
*Note: According to the Linux lab above the nslookup command is not the preferred
choice in Linux as the Dig command is recommended.


Pages:
48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72