PLEASE DO NOT COPY FROM OTHER WEBSITES!!! 1. Attack Preparation: Search the web

Question

PLEASE DO NOT COPY FROM OTHER WEBSITES!!!

1. Attack Preparation:

Search the web for two (2) local business websites (not national chains). Run a port scan on each of them. For each, determine which ones have HTTP, HTTPS, FTP, SMTP, SMTPS running. List these and any other interesting things you find in a few sentences for each web site. Use the web-based free port scanning software available at https://pentest-tools.com/network-vulnerability-scanning/tcp-port-scanner-online-nmap (Note: If the link doesn’t work for some reason, be resourceful. That is, search Google for “Pentest port scan” and it should come right up)

Once you have gathered this information, suggest potential security flaws that may be present on the server you scanned.

PLEASE NOTE: You should use either Google Chrome or Mozilla Firefox as a browser for these tests. If it doesn’t work from your computer, try another computer.

Explanation / Answer

A port scanner is a program that is utilized as a part of system security testing and investigating. An online port scanner is an output that can remotely test your system firewall and open ports since it is sourced from an outer IP address. It is controlled by a straightforward port scanner program that is facilitated on another framework more often than not with a simple to utilize web interface.

To comprehend what a port scanner does we have to first comprehend the nuts and bolts of how the system "functions". In referencing the system this could be a neighborhood in your home or office or it could be the Internet.

A system is traded off of frameworks with addresses and on those frameworks you have administrations.

The address is called an "IP Address" and the Service could be numerous things yet is fundamentally programming that is running on the framework and available over the system on a port number. It could be a web server, email server or gaming server.

An IP Address resembles this: 192.168.1.3

An administration will keep running on 192.168.1.3 and tune in on a port. Illustration Ports;

web server : port 80

mail server (smtp) : port 25

mail server (pop3) : port 110

diversion server : port 49001

There are numerous assets that cover the more specialized points of interest of port filtering and the diverse sorts of port examining. In this guide we will adhere to the rudiments.

The missing piece of this prologue to arrange essentials is the hostname, DNS record or space name. It is a reference to the IP deliver utilizing a less demanding to recollect name. For instance what is less demanding to recollect: 74.125.237.17 or www.google.com ?

When you compose www.google.com into your program you are guided through the space name framework to 74.125.237.17 on port 80. The port 80 is finished by the program consequently. On the off chance that you compose https://into the program you go to an alternate port 443. As this is the standard port for the scrambled SSL convention.

Here are some normal ports that you will discover when utilizing a port scanner:

25 Email (SMTP)

53 Domain Name Server

80 Web Server (HTTP)

110 Email Server (POP3)

143 Email Server (IMAP)

443 Web Server (HTTPS)

445 Windows Communication Protocol (File Sharing and so on)

8080 Proxy Server

A more total rundown of ports can be found at Wikipedia.

Testing a Home Router or Small Business for Open Ports

In the chart beneath we have various gadgets behind a regular broadband switch. It is essential to comprehend if any ports are open on the Internet confronting interface. As these are open by anybody on the Internet. Open ports on a broadband switch could be administration ports on the switch that enable a remote client to change the arrangement of the switch. Another type of open port on the broadband switch would be ports that are sent to inside frameworks.

Port sending enables interior hosts to give benefits on the Internet confronting gadget. Port sending is regularly utilized as a part of gaming or to have something, for example, a web server or email server on the broadband Internet association.

Home Network Port Scanner

The Nmap port scanner is the universes driving port scanner. It is extremely precise, stable and has a bigger number of choices than we will get into here, for more data and establishment directions make a beeline for the nmap page

What can be gathered from Port Scanner Results?

An open port is one that has permitted an entire three way TCP association with be built up. The port scanner for this situation has discovered a port that reacted as accessible to the output and the association was set up. Optional information from an open port is known as a standard, this is a content reaction that incorporates the sort and some of the time adaptation of the server tuning in.

A Closed Port shows that the port sweep on that port was permitted through the firewall (or NAT gadget) however no port was tuning in. Rather the gadget reacted with a TCP RST or RESET.

Sifted Ports are those that did not react at all and these are run of the mill of the reaction from a firewall. The genuine firewall basically drops the port sweep parcel and does not react in at any rate.

From outside the firewall, a Port Scanner can test each port on the servers IP address. There are 65535 aggregate TCP ports on each IP address. There are likewise 65535 ports on the UDP convention.

Since you have a comprehension of what a port scanner is you can bounce over to our Online Nmap Scan testing page and run a Free port output. The upside of utilizing our server is that it is outside looking to your system and will perceive what some other outer assailant on the Internet will see. You can likewise introduce Nmap yourself and run it against your system, you will probably observe an alternate outcome to that of the outer confronting check.

A port scan is a progression of messages sent by somebody endeavoring to break into a PC to realize which PC arrange administrations, each related with a "notable" port number, the PC gives. Port examining, a most loved approach of PC saltine, gives the attacker a thought where to test for shortcomings. Basically, a port sweep comprises of making an impression on each port, each one in turn. The sort of reaction got shows whether the port is utilized and can along these lines be examined for shortcoming.

Kinds of port outputs include:

Vanilla - An endeavor to associate with all ports (there are 65,536)

Strobe - An endeavor to associate with just chose ports (normally, under 20)

Stealth check - Several methods for examining that endeavor to keep the demand for association being logged

FTP Bounce Scan - Attempts that are coordinated through a File Transfer Protocol server to camouflage the saltine's area

Divided Packets - Scans by sending bundle pieces that can get past basic parcel channels in a firewall

UDP - Scans for open User Datagram Protocol ports

Breadth - Scans a similar port on various PCs

Free online website to run a free port scan is "t1shopper"

Related Questions

Navigate

• Browse (All)
• Browse P
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.