CDC Course 2

1. CDC Day 1: Network Vulnerability Scanning
2.  
3.  
4. ########################
5. # Scanning Methodology #
6. ########################
7.  
8. - Ping Sweep
9. What's alive?
10. ------------
11. sudo nmap -sP 157.166.226.*
12. strategicsec
13.  
14. -if -SP yields no results try:
15. sudo nmap -sL 157.166.226.*
16. strategicsec
17.  
18. -Look for hostnames:
19. sudo nmap -sL 157.166.226.* | grep com
20. strategicsec
21.  
22. - Port Scan
23. What's where?
24. ------------
25. sudo nmap -sS 162.243.126.247
26. strategicsec
27.  
28.  
29. - Bannergrab/Version Query
30. What versions of software are running
31. -------------------------------------
32. sudo nmap -sV 162.243.126.247
33. strategicsec
34.  
35.  
36. - Vulnerability Research
37. Lookup the banner versions for public exploits
38. ----------------------------------------------
39. http://exploit-db.com
40. http://securityfocus.com/bid
41. https://packetstormsecurity.com/files/tags/exploit/
42.  
43.  
44. ##########################
45. # Introduction to Nessus #
46. ##########################
47. https://34.209.124.21:8834
48. username: userX (user1, user2, user3, user4, user5 and so on...)
49. password: Passw0rd!
50.  
51.  
52.  
53. Target Hosts
54. ------------
55. 172.31.6.2
56. 172.31.6.157
57. 172.31.6.1
58. 172.31.6.138
59. 172.31.6.54
60.  
61.  
62.  
63. ##############
64. # AWS Basics #
65. ##############
66.  
67. https://910199321440.signin.aws.amazon.com/console
68.  
69. Peter_CDC
70. Arivey_CDC
71. Miguel_CDC
72. Mark_CDCF
73. Bill_CDC
74. Terry_CDC
75. Naiwang_CDC
76. Matt_CDC