WEBVTT

00:00.840 --> 00:03.240
TCB Singh, a scenic port.

00:04.500 --> 00:09.030
So the TCP Sea is a synchronization port scanner.

00:09.240 --> 00:19.350
Shorten is a main sports kind of regular model TCP services using a rousing scan, reducing the numbers

00:19.740 --> 00:26.790
a number of packers as it never completes a three way handshake to run the TCP is a synchronization

00:27.030 --> 00:35.710
kind of maxillary model within a specified the interface is so set, the port changed to the first thousand

00:35.820 --> 00:44.220
ports set to are host to the target range of our laboratory and set the number of concurrent threats

00:44.220 --> 00:49.290
to 250 256 to the US to speed up the scan.

00:49.880 --> 00:51.030
Here now I will.

00:52.020 --> 00:59.580
Um, I will start our Metasploit framework actually not Metasploit Metasploit BBL.

00:59.820 --> 01:07.290
So this is the vulnerable Linux machine that has a lot of what you can use Windows civil here.

01:07.630 --> 01:11.400
It doesn't matter because we will, uh, do just that.

01:11.400 --> 01:12.570
Uh, Port scan here.

01:13.410 --> 01:18.540
So starting up here, so now let's uh.

01:18.990 --> 01:24.600
So this Metasploit here is in our, um uh, local area network here.

01:24.600 --> 01:31.070
So they, uh, share the in lan, um, networking.

01:31.080 --> 01:37.500
So this uh, find out what what is our IP address starting?

01:37.950 --> 01:40.380
So as you can see it, netmask is, uh, here.

01:40.380 --> 01:46.890
So on a changeable part of our IP, this is, uh, last um, no.

01:47.220 --> 01:47.700
So.

01:48.900 --> 01:53.640
Now we will actually slugging immersive admin, massive admin.

01:54.000 --> 01:54.300
Yes.

01:54.810 --> 02:02.610
So we look then and here, uh, we will, uh, start Metasploit Framework immersive console.

02:03.890 --> 02:04.270
Here.

02:06.050 --> 02:07.820
And the Missile Council is starting.

02:13.310 --> 02:13.640
Here.

02:15.390 --> 02:23.130
And now, uh, we will, uh, search for, uh, search for port scan here, search.

02:27.040 --> 02:32.380
And this you can see here, we have Cinque Ports scanner here, so this is the tissue paper scanners,

02:33.340 --> 02:43.510
but it uses, uh, synchronization and uh, does not does not, um it, uh, the three way handshake.

02:43.960 --> 02:48.430
So this could completes its never completes three one three way handshake.

02:48.970 --> 02:51.580
So, uh, now let's use this.

02:53.170 --> 02:55.240
Scene scene scan here.

02:55.540 --> 02:58.270
So use auxiliary scanners.

02:59.230 --> 03:08.380
Port scan or scan, and it's around here, and uh, let's show options here, as you can see here,

03:08.380 --> 03:12.640
we have one thread sampling exercise delays to reports.

03:13.560 --> 03:15.430
So let's.

03:18.320 --> 03:24.080
Make ports one to one thousand not 10000 feet, as you can see, there's a 10000.

03:24.650 --> 03:31.730
So said ports, one to a 1000 here and a.

03:33.080 --> 03:37.340
We will use the target host who set.

03:39.120 --> 03:49.200
Host here and our IP address points zero and 24, because this is a uh, I still consider the netmask

03:49.200 --> 03:55.380
is one four and um, are these two, uh, with this month here?

03:55.680 --> 03:57.750
Uh, these are the four here.

03:58.110 --> 04:03.600
Uh, these the Metasploit actually will scan from zero to 255.

04:03.600 --> 04:06.360
So as you can see here, we have a threat here.

04:06.360 --> 04:08.950
The number of concrete threats marks one.

04:09.480 --> 04:11.850
So we will, uh, make threats.

04:12.110 --> 04:13.920
Uh, one per host here.

04:14.310 --> 04:25.440
So said it's, uh, two hundred fifty five here, for example, 155 actually not under 256 years under

04:25.440 --> 04:26.200
56.

04:27.060 --> 04:33.600
And after that, uh, we will run out, uh, runner scanning, uh, accelerator run.

04:35.410 --> 04:39.820
So as you can see our own time here, you don't have permission to capture on that device or that operation

04:39.820 --> 04:40.420
not permitted.

04:41.470 --> 04:44.950
Okay, so then uh.

04:49.070 --> 04:50.220
We have to run it.

04:50.260 --> 04:55.830
Um, you have to run it in with the command and support console here.

04:56.420 --> 04:59.240
Uh, so you enter the password.

05:00.710 --> 05:01.160
And.

05:02.610 --> 05:04.500
Immersive console is starting here.

05:08.600 --> 05:10.340
So search.

05:12.380 --> 05:25.580
Ports can scan and use auxiliary garnish boards, scan on is seen here and then so options will change

05:26.480 --> 05:30.380
are hosts ships that are hosts.

05:32.700 --> 05:45.110
It's from zero to actually from zero, 24 year, and then our ports here is that our ports are not our

05:45.140 --> 05:48.530
ports is ports, uh, one to one thousand.

05:50.460 --> 05:50.970
And.

05:53.720 --> 05:56.060
Let's set the threats here, threats.

06:00.610 --> 06:03.260
Mattresses 256 and run.

06:19.390 --> 06:23.020
They are actually running now and scanning.