Penetration Testing with Kali Linux – Netdiscover for Wardriving

By -

Any Penetration Testing project is heavily dependent on its first phase i.e.INFORMATION Gathering . Even during the war driving phase we need to discover the Addresses of the live hosts . In a case where your penetration testing requires you to scan for the wireless network addresses without connected to the network ,Netdiscover is of assistance .

Netdiscover for Ip Address Enumeration

Netdiscover is used for the active or passive scanning of those wireless networkswithout the DHCP server , specially when you are wardriving . However the tool can also be used for scanning hub/switched networks . This tool helps in the quick discovery of the IP addresses on a given network , even if we dont have any DHCP server .
In Kali Linux , the Tool is under the following path :
Application →Kali Linux → Information gathering → Live Host Identification → netdiscover

OR just simply type netdiscover on the terminal to start the tool in the Default mode .

To view the Help menu Type  : netdiscover -h and you will get a list of commandline options .
netdicover-penetration-testing

Netdiscover 0.3-beta6 [Active/passive arp reconnaissance tool]
Written by: Jaime Penalba <jpenalbae@gmail.com>

Usage: netdiscover [-i device] [-r range | -p] [-s time] [-n node] [-c count] [-f] [-S]
  -i device: your network device
  -r range: scan a given range instead of auto scan. 192.168.6.0/24,/16,/8
  -p passive mode do not send anything, only sniff
  -s time: time to sleep between each arp request (miliseconds)
  -c count: number of times to send each arp reques (for nets with packet loss)
  -n node: last ip octet used for scanning (from 2 to 253)
  -S enable sleep time supression betwen each request (hardcore mode)
  -f enable fastmode scan, saves a lot of time, recommended for auto

If -p or -r aren't enabled, netdiscover will scan for common lan addresses
If you simply type netdicover on the terminal then the Auto Scan is started .
Syntax : netdiscover
This will auto detect online hosts , IP addresses , Mac addresses , Mac Vendors etc . At any point if you want to stop the scan simply type Ctrl+C  .
In case you want Netdiscover only to scan for a range of IP addresses use the following syntax :
netdiscover -I eth0 -r 192.168.100.0/24
netdiscover-penetration-testing
Where -I specifies the interface used for Scanning and 192.168.100.0 is the IP range (-r)to be scanned for  .
Netdiscover comes as a network scanner checking for live hosts but what gives it power is to scan a network even when we dont have a DHCP server to access . In such a case where we need a quick network scan , Netdiscover is the best tool to use .

Comments

Post a Comment

Popular posts from this blog

HACK EMAIL-ID,USERNAME AND PASSWORD OR ANY USER DETAILS BY USING KALI LINUX.

By -
Image
HACK EMAIL-ID,USERNAME AND PASSWORD OR ANY USER DETAILS BY USING  KALI LINUX . Today,i am going to show you how you can get email-id,username and password or any user details you want by using  KALI LINUX . STEPS FOR SETTING UP YOUR SYSTEM. Download Kali Linux from   here . Extract the contents of Kali Linux iso file which you  downloaded in step and copy it to pendrive or instead of pendrive burn the iso file in cd if you want to make a cd of it. After copying all contents to pendrive or burning the iso file in cd,reboot you system,press F8 on boot-time and select boot from pendrive if you have copied all the files in pendrive,else boot from cd-rom if you burn the iso file in cd. After selecting the boot from device,the kali installation window will open,install accordingly as per your requirement. NOTE:During installation,in mount point of selected installation drive,set mount point to  "/" . Remember the username and password while installation as this will
Read more

Port Fail Vulnerability : Critical VPN Vulnerability

By -
Image
Port Fail Vulnerability : Critical VPN Vulnerability How Port Fail Vulnerability Exposes your REAL IP on SKYPE Using Port Fail Vulnerability it’s possible to disclose the real IP of a Skype accounts you’re interested in. There are a bunch of Skype IP resolvers which can give you the VPN IP address and port number of a Skype user using only their Skype login. Then you need to use the same thing a copyright monitoring company would use — send some UDP packets to the whole internet on the exact port. It’s remarkable but Skype will send you a reply for almost any data! The nping utility from  nmap  package suits our needs very well: # nping --udp -p 13318 --data-string 'hellothere!' -c 1 serv.valdikss.org.ru Starting Nping 0.7.00 ( https://nmap.org/nping ) at 2015-12-20 19:54 MSK SENT (0.0157s) UDP 195.154.127.59:53 > 92.42.31.8:13318 ttl=64 id=10802 iplen=39  RCVD (0.0859s) UDP 185.61.149.121:4272 > 195.154.127.59:53 ttl=54 id=1534 iplen=32    Max rtt: N/A | M
Read more