Electronic Books

The
ports of interest are:


21 (FTP)


25 (SMTP)


80 (HTTP)


139 (Windows Share)
*Note:
Notice that port 23 is not being scanned. According to Foundstone this was
an honest mistake by the author, who forgot to put it in.
154


Practical Hacking Techniques and Countermeasures
Lab 32: Passive Network Discovery
Passively Identify Target Information on the LAN: Passifist
Prerequisites:
Compile the Linux script
Countermeasures:
Host-based firewalls
Description:
The passifist application attempts to identify targets within
a Local Area Network (LAN) by listening in passive mode on the LAN
and from the results of the information identifies the target??™s IP address,
MAC address, hostname, and probable operating system used.
Procedure:
Uncompress, configure, and execute against target.
From the directory containing the compressed passifist file type
tar ??“zxvf
passifist_src_1.0.6.tgz
.


The contents will be extracted into a new directory named
passifist
.


Change to the new directory by typing
cd passifist
and pressing
Enter
.


From the passifist directory type
./configure
and press
Enter
.
Scanning


155
The script will compile to the specific machine it is installed on.
Type in
make
and press
Enter
.
156


Practical Hacking Techniques and Countermeasures
Initiate the passive discovery with the following syntax:
./passifist ??“I eth0 ??“U "provider=TXT:
filename=foobar.


Pages:
60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84