a.2.1 ethical hacker

i hate this course

4.1.7 Perform Reconnaissance with Nmap

1. Find the name servers used by www.corpnet.xyz as follows:

   1. From the taskbar, open Chrome.

   2. In the URL field, type whois.org and press Enter.

   3. In the Search for a domain name filed, enter www.corpnet.xyz.

   4. Select Search.

   5. In the top right, select Answer Questions.

   6. Answer question 1. NS1.NETHOST.NET, NS2.NETHOST.NET

2. Find the IP address used by www.corpnet.xyz as follows:

   1. Right-click Start and select Windows PowerShell (Admin).

   2. At the prompt, type nslookup www.corpnet.xyz ns1.nethost.net and press Enter.

   3. Answer question 2. 198.28.1.1

   4. Minimize the question dialog.

3. Use Zenmap to run an nmap command to scan for open ports as follows:

   1. From the navigation tabs, select Buildings.

   2. Under Red Cell, select Consult-Lap2.

   3. From the Favorites bar, open Zenmap.

   4. Maximize Zenmap for easier viewing.

   5. In the Command field type nmap -p- 198.28.1.0/24.

   6. Select Scan to scan for open ports on all servers located on this network.

   7. In the top right, select Answer Questions.

   8. Answer question 3. 198.28.1.3, 198.28.1.4

   9. Select Score Lab.

8.1 Keylogger

1. Above the computer, select Back to view the back of the computer.

2. On the back of the computer, drag the USB Type A connector for the keyboard to another USB port on the computer.

3. On the Shelf, expand System Cases.

4. Drag the Laptop to the Workspace.

5. Above the laptop, select Back to view the back of the laptop.

6. From the computer, drag the keylogger to a USB port on the laptop.

7. Above the laptop, select Front to view the front of the laptop.

8. On the laptop, select Click to view Windows 10.

9. Press S + B + K to toggle from the keylogger mode to the flash drive mode.

10. Select Tap to choose what happens with removable drives.

11. Select Open folder to view files.

12. Double-click LOG.txt to open the file.

13. In the top right, select Answer Questions.
    Q1/ P@ssw0rd
    Q2/ 4Lm87Qde

14. Answer the questions.

15. Select Score Lab.

8.1.5 Analyze a USB Keylogger Attack 2

1. On the Shelf, expand Storage Devices.

2. From the shelf, drag the USB Keylogger to a USB port on ITAdmin.

3. On the monitor, select Click to view Windows 10.

4. Press S + B + K to toggle from the keylogger mode to the flash drive mode.

5. Select Tap to choose what happens with removable drives.

6. Select Open folder to view files.

7. Double-click LOG.txt to open the file.

8. Maximize the window for easier viewing.

9. In the top right, select Answer Questions.
   Q1/ amazon.com, email.com
   Q2/ 4556358591800117

10. In the file, find which account passwords were captured.

11. In the file, find any compromised financial information.

12. Select Score Lab.

5.1.5 Perform an Internal Scan

1. From the Favorites bar, open Terminal.

2. At the prompt, type nmap -p- 192.168.0.45.

3. Press Enter.

5.1.6 Perform an External Scan Using Zenmap

1. From the Favorites bar, open Zenmap.

2. At the prompt, type nmap 73.44.216.0/24.

3. Select Scan.

4. Find the network vulnerabilities in the output.

5. In the top right, select Answer Questions.

6. Answer the questions.
   Q1 Yes
   Q2 telnet

7. Select Score Lab.

6.1.9 Perform Enumeration with Nmap

1. Scan for operating systems on the network as follows:

   1. From the Favorites bar, open Zenmap.

   2. In the Command field, type nmap -O 192.168.0.0/24.

   3. Select Scan to scan the local subnet.

   4. In the nmap scan, find the identified operating systems.

   5. In the top right, select Answer Questions.

   6. Answer question 1. 192.168.0.45, 192.168.0.46

2. View the shared folders on CorpFiles12 and CorpFiles16 as follows:

   1. From top navigation tabs, select IT Administration.

   2. On the ITAdmin monitor, select Click to view Windows 10.

   3. Right-click Start and select Windows PowerShell (Admin).

   4. At the prompt, type net view corpfiles12 and press Enter.

   5. Type net view corpfiles16 and press Enter.

3. Map the H: drive to the Confidential folder on CorpFiles16 as follows:

   1. Type net use h: \\corpfiles16\confidential and press Enter.

   2. Type h: and press Enter to change to the H: drive.

4. View the files in the Employee Records folder as follows:

   1. Type dir and press Enter to view the folders available on the drive.

   2. Type cd Employee Records and press Enter.

   3. Type dir and press Enter to view the employee records.

   4. Answer question 2. Ben Bispo, Beth Bondo, Ralph Debourne

   5. Select Score Lab.

6.1.11 Perform Enumeration with Metasploit

1. From the Favorites bar, open Metasploit Framework.

2. At the prompt, type use post/windows/gather/enum_patches and press Enter to use the enumerate patches exploit.

3. Type show options and press Enter to show the exploit options.
   Notice that the session option is absent.

4. Type set session 1 and press Enter to specify the session.

5. Type show options and press Enter.
   Notice that the session option has been set.

6. Type run and press Enter to begin the exploit.

7. In the top right, select Answer Questions.

8. Answer the question. KB2871997, KB2928120

9. Select Score Lab.

6.1.12 Perform Enumeration of MSSQL with Metasploit

1. From the Favorites bar, open Metasploit Framework.

2. At the prompt, type use auxiliary/scanner/mssql/mssql_ping and press Enter to use the MSSQL Ping Utility exploit.

3. Type show options and press Enter to show the exploit options.
   Notice that the RHOSTS setting is absent.

4. Type set RHOSTS 198.28.1.3 and press Enter to specify the remote host.

5. Type show options and press Enter to show the exploit options.
   Notice that RHOSTS has been set.

6. Type exploit and press Enter to begin the exploit.

7. In the top right, select Answer Questions.

8. Answer the question. 1511

9. Select Score Lab.