Scanning with hping3 and XMAS Scan

00:01

everyone Welcome back to the core. So in the last video, we just ran a quick acknowledge my skin with H Ping three again. We were just looking at the percentage of packet loss

00:08

in this video. We're gonna run a Christmas scan. So again, we have to run this against Kelly Olynyk. So we're actually gonna run it here in the terminal, will run the command, and then we have a couple of questions in the world Run one additional command on and then in the next video is actually the last component of this particular lab where we'll just do some more windows firewall

00:27

changes, and then we'll run another scan against that.

00:30

So let's go ahead and get started here. So we've got a terminal window here. I'm just gonna go ahead and type and clear like I normally do, just to clear things up with his hit enter just to make it where we're starting fresh.

00:40

And then we're gonna type in this command here, so it's pretty long and we'll go step by step through it. So we're gonna type in H paying three space dash lower case C space the number one space dash Capital V as in Victor Space dash lowercase P Space 80. To specify port 80

00:59

space natural or case s

01:00

space 5555 To specify that we want the initiating port is going to be the port. Sending packets is gonna be port number 5555.

01:11

We're gonna put another space and then a dash the dash capital am Excuse me to set the TCP sequence number would put a space in the number zero. We'll put another space a dash capital U P F to set the urgent push and finish legs and that would put a space. And then finally our i p address again the same I p address we've been using for most of the slap.

01:30

All right, So as I mentioned, we're gonna do this step by step so everyone can type in the correct command here. So we'll start off this by typing in h paying three space dash kept. Excuse me. Space dash, Lower case C.

01:42

So Paige, paying three space national case. See,

01:47

we'll put another space there. Now we're gonna type in the one and then a space dash. Capital V.

01:53

So put a one space Dash Capital V.

01:57

We're gonna put another space here, and we're gonna put Dash Lower Case p to specify port number 80 and they will put a space, and then we'll actually put the 84 Port Haiti.

02:07

Next, we're gonna put a space, we're gonna put a dash lower case s. So if you remember, we want to specify that we're sending it from port number 5555

02:17

and then we're gonna put a space in. There are actual port number that we want to use the 5555

02:23

We'll put another space.

02:24

Then we're gonna add in the dash capital M and space in the number zero.

02:30

So Dad will put another space,

02:34

and then we're gonna put in dash u p f. And then finally our I p address. We're gonna put all that into one shot,

02:39

So dash u p f

02:43

space 102.168 dot 0.1

02:47

And again, you could just double check yourself if you want to make sure that you're running that correctly, but you should get an air message. If you're not well, go ahead and run this command by pressing internal keyboard here, you'll see it comes back pretty quickly.

02:59

We have a few questions here.

03:00

So question number one How many? Pakistan's A show it sent successfully. And then how many packets were received successfully. So questions one into there.

03:09

All right, so at least on my end, and you should actually have the exact same results. We see that one packet was transmitted and one packers received, so we were basically 100% successful on that one.

03:20

You are so going back to our lab document. Here we have one more command. We're gonna run, and we're basically running a sin scan again. So again, the TCP three way handshake. We're talking about that first portion where I say, Hey, I want to talk to you on then nothing else happens, right? I just keep continues to saying, Hey, I want to talk to you. So kind of like the creepy guy at the club or something. That's like, Hey, hey, hey,

03:38

I kind of like that, but we're not gonna be creepy on this. We're just gonna run a command. So let's go ahead here

03:43

and we're gonna run this command and then we want to find out is Port 80 showing as open when we run this particular command, Let's go and do that. Now we're gonna type in h Ping three.

03:53

We'll put a space,

03:54

we're gonna put a dash eight and then a space and the number 80

04:00

for dash eight space the number 80.

04:03

We'll put another space there, and then we're to put a dash capital V and then a space in the dash Capital s

04:11

so gas capital V space, Dash Capital s and then finally water. And with our same I p address the same one we've been using that 1 92.168 dot 0.1. So one attitude on 168.0 dot one and then just press enter into keyboard on that, I'll go ahead and run the command for us.

04:28

So again, what we want to find out is Port 80 showing as open.

04:32

So let's take a look here.

04:36

So are we getting our response? It's kind of kind of the main question that right, and that will help you decide if the ports actually open. So if we get a response in, the answer would be Really? Yes. Right. But if we don't get a response than the answer will be No.

04:48

So we see here that Yes, we did get a response from Port 80. So the answer to the question would be, Yes, we did, you know. Yes, it is showing us open. Yes, we did get a response from it. So we're good to go.

05:00

So this lab we just ran a couple of quick commands with H being three again. We ran our sins can just a moment ago. And then we also went ahead and ran our Christmas can. Now, in the next video, what we're gonna do is do some more. As I mentioned Windows, uh,