Port Scanning :-
Port scanning is carried out to determine a list of open ports on
the remote host that have certain services or daemons running. In
port scanning, the attacker connects to various TCP and UDP ports
and tries to determine which ports are in listening mode.
1) TCP Ports Scanning :- Almost all port scans are based on the client sending a packet containing a particular flag to the target port of the remote system to determine whether the port is open. Following table lists the type of flags a TCP packet header can contain.
A typical TCP/IP three way handshake can be described as follows :
1) The client sends a SYN packet to the server.
2) The server replies with a SYN packet and acknowledges the client's SYN packet by sending an ACK packet.
3) The client acknowledges the SYN sent by the server.
Different techniques of TCP port scanning are :-
1) TCP connect port scanning
2) TCP SYN scanning (half open scanning)
3) SYN/ACK scanning
4) TCP FIN scanning
5) TCP NULL scanning
6) TCP Xmas tree scanning
2) UDP Ports Scanning :- In UDP port scanning, aUDP packet is sent to each port on the target host one by one.
If the remote port is closed, then the server replies with a Port Unreachable ICMP error message. If the port is open then no such error message is generated.
3) FTP Bounce Port Scanning :- The FTP bounce port scanning technique was discovered by Hobbit. He revealed a very interesting loophole in the FTP protocol that allowed users connected to the FTP service of a particular system to connect to any port of another system. This loophole allows anonymous port scanning.
1) TCP Ports Scanning :- Almost all port scans are based on the client sending a packet containing a particular flag to the target port of the remote system to determine whether the port is open. Following table lists the type of flags a TCP packet header can contain.
Flag | Meaning |
---|---|
URG (urgent) | This flag tells the receiver that the data pointed at by the urgent pointer required urgently. |
ACK (acknowledgment) | This flag is turned on whenever sender wants to acknowledge the receipt of all data send by the receiving end. |
PSH (push) | The data must be passed on to the application as soon as possible. |
RST (reset) | There has been a problem with the connection and one wants to reset the connection with another. |
SYN (synchronize) | If system X wants to establish TCP connection with system Y, then it sends it's own sequence number to Y, requesting that a connection be established. Such apacket is known as synchronize sequence numbers or SYN packet. |
FIN (finish) | If system X has finished sending all data packets and wants to end the TCP/IP connection that it has established with Y, then it sends a packet with a FIN flag to system Y. |
A typical TCP/IP three way handshake can be described as follows :
1) The client sends a SYN packet to the server.
2) The server replies with a SYN packet and acknowledges the client's SYN packet by sending an ACK packet.
3) The client acknowledges the SYN sent by the server.
Different techniques of TCP port scanning are :-
1) TCP connect port scanning
2) TCP SYN scanning (half open scanning)
3) SYN/ACK scanning
4) TCP FIN scanning
5) TCP NULL scanning
6) TCP Xmas tree scanning
2) UDP Ports Scanning :- In UDP port scanning, aUDP packet is sent to each port on the target host one by one.
If the remote port is closed, then the server replies with a Port Unreachable ICMP error message. If the port is open then no such error message is generated.
3) FTP Bounce Port Scanning :- The FTP bounce port scanning technique was discovered by Hobbit. He revealed a very interesting loophole in the FTP protocol that allowed users connected to the FTP service of a particular system to connect to any port of another system. This loophole allows anonymous port scanning.
Recommended
Tools
|
|
Nmap
|
http://www.insecure.org/nmap
|
Superscan
|
http://www.foundstone.com
|
Thanks for your peгsonаl marvelous postіng!
ReplyDeleteI gеnuinely enjοуed reаԁing іt,
yοu hapρen to be a great author.
I ωill еnѕure that I booκmark уouг blog and
definіtely will come back in thе future.
I ωаnt tο encourage you to ԁefinitely
continue youг great woгk, hаvе a nice weekend!
My webpage ; skinbright vs meladerm
Ӏ'm extremely impressed with your writing skills as well as with the layout on your blog. Is this a paid theme or did you customize it yourself? Anyway keep up the nice quality writing, it's
ReplyDeleterаre to ѕee a great blog lіke this onе today.
My homepage :: http://www.musicnapavalley.org
Hmm it looks like your site ate my first comment (it
ReplyDeletewas super long) so I guess I'll just sum it up what I had written and say, I'm thoroughly enjoying your blog.
I as well am an aspiring blog writer but I'm still new to the whole thing. Do you have any suggestions for rookie blog writers? I'd really appreciate it.
My homepage; Golf gps devices
Hi there! This post couldn't be written any better! Reading through this post reminds me of my good old room mate! He always kept talking about this. I will forward this page to him. Fairly certain he will have a good read. Many thanks for sharing!
ReplyDeleteHere is my web site - Cheers Kissimmee
Hello to every single one, it's genuinely a pleasant for me to go to see this web page, it consists of precious Information.
ReplyDeletemy page :: las vegas golf schools
Hi there, just became aware of your blog through Google, and found
ReplyDeletethat it's really informative. I'm going to watch out for brussels.
I will appreciate if you continue this in future. A lot of people will be benefited from
your writing. Cheers!
my page :: best registry cleaners
I do not know whether it's just me or if perhaps everybody else encountering issues with your blog. It appears as if some of the written text in your posts are running off the screen. Can someone else please provide feedback and let me know if this is happening to them as well? This could be a problem with my internet browser because I've had this happen
ReplyDeletepreviously. Cheers
Feel free to surf to my web site; Golf Digest Lessons
i actuallу luv thеse e cigs
ReplyDeleteAlso visit my web site - www.mesatactical.com
Everyone loves what you guys are usually up too. Such clever work
ReplyDeleteand reporting! Keep up the wonderful works guys I've you guys to blogroll.
Have a look at my website Las vegas golf galaxy
Anybody who is prepared to get a properly-toned stomach can use this belt.
ReplyDeleteTake a look at my web blog Http://www.marsvenusatwork.com
Hello There. I found your weblog the usage of msn. That is a very smartly written article.
ReplyDeleteI will make sure to bookmark it and return to read extra of your helpful information.
Thanks for the post. I'll definitely return.
Visit my page: low back pain in early pregnancy
These are genuinely great ideas in about blogging.
ReplyDeleteYou have touched some nice things here. Any way keep up wrinting.
My website :: upper back and Neck pain and headache
Hey there! This post couldn't be written any better! Reading this post reminds me of my previous room mate! He always kept chatting about this. I will forward this page to him. Fairly certain he will have a good read. Thanks for sharing!
ReplyDeleteTake a look at my blog: Chiropractor