Time
9 hours 47 minutes
Difficulty
Intermediate
CEU/CPE
10

Video Transcription

00:01
Hi. Welcome back to the course. And the last video. We went ahead and ran an acknowledgment scan after we turned on Windows firewall.
00:09
In this video, we're gonna talk about using H paying three. We're gonna run a Christmas scan,
00:14
so let's go ahead and get started. So you should already have the Cali terminal window open. If you don't go ahead and launch it, and then we're gonna type in and step number two here, Run a type in this command here.
00:23
So the dash lower Casey is we seem to four is specifying the PAC account dash capital V mix of verbose dash P. Lower case P allows us to specify the port number.
00:35
The dash rumor case s allows us to specify the base port. So which which port is sending the packet?
00:41
The dash capital M sets a TCP sequence number and then finally the dash capital U p f sets the urgent push in the Finnish flag's. So let's go ahead and type that command in there.
00:53
So we're gonna type in age ping three all over. Case space, dash capital, C space the number one
01:00
space dash capital V
01:03
space dash, Lower case p
01:06
Space 80
01:07
Space dash lower case s space 55552 Again for that sending port
01:15
space dash capital M space the number zero
01:19
space dash U P F all capital. And then finally, our I p address over Target Machine's the 1 92.168 dot zero doubt one and they just hit the enter key there.
01:30
All right, so we're gonna give that a second to run there.
01:33
So what we're going to see here is that it shows us one package transmitted and zero packets received. So
01:38
question number one. How many Pakistan's the show were sent successfully, So one packet transmitted. So that's the number one there.
01:45
Question number two. How many Pakistan's A show were received successfully, so zero packets recedes in 100% packet loss were to say, zero there.
01:53
Now, one thing to keep in mind here is that even though it's basically showing us that hey, port eighties closed,
01:59
it's actually open because windows machines. If you remember Windows machines don't follow RFC 793 So the way they do t c p i p so basically right Windows machine is not going to respond from Port 80 even though port eighties actually open on this particular server.
02:15
So let's move on to step number three here. We're gonna type of sin flag scan. So we're gonna do a TSH ping thrilling
02:23
a space,
02:24
and then we're gonna spend do Dash eight, and then we're gonna specify airport. So h paying three
02:31
space, Dash eight, space 80 and then a space And where to do capital. As for our sins can a space. And then finally, our target i p address. So let's go and run that. Want to see what kind of results we get back.
02:45
All right, so you see that it's starting to kick back some results there, and we're gonna give it a second or so they're so we want to see is Port 80 showing open when we run this since can
02:54
So let's see here, Port 80 and we're not really seeing a reply there, So it's yet shown us that it's not responding at all, even though we know, actually, that poor teddy is open on this particular device.
03:07
So why do you think that is? Well, because we're pinging. Ah, Windows machine. Basically, we're doing a scan on a Windows machine and that doesn't recognize the Christmas scans at all.
03:15
So in this video, we talked about HP thrilling and using Christmas scans and the next lab We're gonna go over operating system fingerprinting.

Up Next

Penetration Testing and Ethical Hacking

If the idea of hacking as a career excites you, you will benefit greatly from completing this training here on Cybrary. You will learn how to exploit networks in the manner of an attacker, in order to find out how protect the system from them. Those interested in earning their Certified Ethical Hacker (CEH) will want to start by taking this course

Instructed By

Instructor Profile Image
Ken Underhill
Master Instructor at Cybrary
Master Instructor