Â·This lab is to apply your theoretical knowledge learned thus far regarding networking technologies, and see observe it in application. This lab will allow you to audit what ports are open on a server/system to help understand possible vulnerabilities, network topology, and network auditing.
Lab Procedures – Create and submit your answers within a word document and upload.
1. Visit www.nmap.org. Review the site documentation and understand the capability called: NMAP. Write a BRIEF (brief defined as using few words, succinct, and concise) to summarize the capability, NMAP.
2. Download the appropriate NMAP package for your respective Operating System (OS). This package also includes ZenMap, which is a Graphical User Interface (GUI). Install.
3. Either via the terminal window or DOS prompt, locate nmap and investigate the capability by scanning your home network. Please list all systems that you may have found on your home network within the word document. NOTE: most likely you will be using RFC1918 address (private addresses); however, if you are using a public address, please mask the addresses.
4. Either via the terminal window or DOS prompt, perform a SYN scan of one of the IP addresses on your network. List the results. Additionally, perform a Christmas Tree Scan of a system on your network and list the results.
5. Briefly describe why the results of #4 are what they are? Did you find port 443 open? If not, why? How about 80? If not, why? And ask yourself and document like questions/answers of why some ports are open and some closed.
6. Now, open up Zenmap and perform #3 and #4.
7. Is port scanning illegal? Provide a brief summary of your findings.
EXTRA CREDIT: Using the byte 00000101 (or the number ‘5’ in decimal notation), please utilize the simple XOR cipher 11111111 to encrypt this byte. Provide the answer to me, via e-mail in decimal format.
HINT!: The exclusive disjunction operation states that 1 + 1 = 0, 1 + 0 = 1, 0 + 1 = 0, 0 + 0 = 0. This is also called modulus 2 addition. And do not forget that we are using the Base 2 number system!!! You must perform the conversion between Base2 and Base10.