Infra-Estrutura de Redes de Computadores

Transcrição

1 Infra-Estrutura de Redes de Computadores Atividade realizada: Identificar endereços ethernet das estações de trabalho e servidores. Método de uso: O Nmap ( Network Mapper ) uma ferramenta de código aberto para exploração de rede e auditoria de segurança. Ela foi desenhada para escanear rapidamente redes amplas, embora também funcione muito bem contra hosts individuais. O Nmap utiliza pacotes IP em estado bruto (raw) de maneira inovadora para determinar quais hosts estão disponíveis na rede, quais serviços (nome da aplicação e versão) os hosts oferecem, quais sistemas operacionais (e versões de SO) eles estão executando, que tipos de filtro de pacotes/firewalls estão em uso, e dezenas de outras características. Embora o Nmap seja normalmente utilizado para auditorias de segurança, muitos administradores de sistemas e rede consideram-no útil para tarefas rotineiras tais como inventário de rede, gerenciamento de serviços de atualização agendados, e monitoramento de host ou disponibilidade de serviço. Comandos Usados para o escaneamento: Nmap- Ultiliza-se como Comando mestre para o inicio do Network Scan/Map. -ss- TCP SYN scan: Técnica também conhecida como half-open, pois não abre uma conexão TCP completa. É enviado um pacote SYN, como se ele fosse uma conexão real e aguarda uma resposta. Caso um pacote SYN-ACK seja recebido, a porta está aberta, enquanto um como resposta indica que a porta está fechada. A vantagem dessa abordagem é que poucos irão detectar esse scanning de portas. sv- Version detection: Após as portas TCP e/ou UDP serem descobertas por algum dos métodos, o nmap irá determinar qual o serviço está rodando atualmente. O arquivo nmapservice-probes é utilizado para determinar tipos de protocolos, nome da aplicação, número da versão e outros detalhes. -script oracle-sid-brute- Realiza auditoria senha de força bruta contra servidores Oracle.Executá-lo no modo padrão,ele realiza uma verificação com uma lista de nomes de usuários e senhas comuns Oracle. Segue abaixo os endereços mac: StartingNmap 6.47 ( ) at :51 BRST Nmap scan report for Host is up (0.027s latency). MAC Address: D0:67:E5:6F:7D:7A (Dell) Nmap scan report for MAC Address: 00:17:F2:D6:1D:97 (Apple)

2 Nmap scan report for MAC Address: 00:17:F2:D8:DC:F2 (Apple) Nmap scan report for Host is up (0.0012s latency). MAC Address: 00:17:F2:D6:16:25 (Apple) Nmap scan report for MAC Address: 00:17:F2:D6:BB:F8 (Apple) Nmap scan report for MAC Address: 00:17:F2:D6:19:C4 (Apple) Nmap scan report for Host is up (0.0013s latency). MAC Address: 00:17:F2:D8:44:01 (Apple) Nmap scan report for Host is up ( s latency). All 1000 scanned ports on are filtered MAC Address: 78:2B:CB:EE:08:B6 (Dell) Nmap scan report for Host is up (0.0012s latency). MAC Address: 00:17:F2:D6:19:F2 (Apple) Nmap scan report for Host is up ( s latency). MAC Address: 00:17:F2:D6:1B:50 (Apple) Abaixo segue-se o relatório da rede wi-fi. Nmap scan report for Host is up (0.0030s latency). MAC Address: B4:B5:2F:4F:BA:90 (Hewlett Packard) Nmap scan report for Host is up (0.0031s latency). MAC Address: B4:B5:2F:4F:BA:95 (Hewlett Packard) Nmap scan report for Host is up (0.0075s latency). MAC Address: B4:B5:2F:4F:BA:83 (Hewlett Packard)

3 Nmap scan report for Host is up (0.010s latency). All 1000 scanned ports on are closed MAC Address: 88:9B:39:A6:97:0D (Samsung Electronics Co.) Nmap scan report for Host is up (0.025s latency). MAC Address: D0:7E:28:C5:BE:85 (Hewlett Packard) Starting Nmap 6.40 ( ) at :26 BRST Nmap scan report for Host is up (0.083s latency). MAC Address: D0:67:E5:6F:7D:7A (Dell) Starting Nmap 6.40 ( ) at :26 BRST Nmap scan report for H3s latency). MAC Address: 44:1E:A1:C2:34:13 (Hewlett-Packard Company) Nmap scan report for Host is up (0.015s latency). MAC Address: E0:06:E6:DC:82:37 (Hon Hai Precision Ind. Co.) Nmap scan report for Host is up (0.0024s latency). MAC Address: B4:B5:2F:4F:BA:90 (Hewlett Packard) Nmap scan report for Host is up (0.0019s latency). MAC Address: B4:B5:2F:4F:BA:95 (Hewlett Packard) Nmap scan report for Host is up (0.011s latency). MAC Address: 88:9B:39:A6:97:0D (Samsung Electronics Co.) Nmap scan report for Host is up (0.018s latency). MAC Address: D0:7E:28:C5:BE:85 (Hewlett Packard) Nmap scan report for Host is up (0.011s latency). MAC Address: 84:38:38:76:2B:2E (Unknown)

4 Nmap scan report for Host is up (0.0048s latency). MAC Address: 78:6C:1C:A0:53:45 (Apple) Starting Nmap 6.40 ( ) at :29 BRST Nmap scan report for Host is up (0.049s latency). MAC Address: E0:75:7D:F7:36:FE (Motorola Mobility) Starting Nmap 6.40 ( ) at :29 BRST Nmap scan report for Host is up (0.050s latency). MAC Address: A4:C3:61:93:8E:59 (Apple) Nmap scan report for Host is up (0.052s latency). MAC Address: E0:75:7D:87:D8:30 (Motorola Mobility) Nmap scan report for Host is up (0.017s latency). MAC Address: 34:BB:26:87:59:8B (Unknown) Nmap scan report for Host is up (0.0044s latency). MAC Address: B4:B5:2F:4F:2B:A8 (Hewlett Packard) Starting Nmap 6.40 ( ) at :34 BRST Nmap scan report for Host is up (0.062s latency). MAC Address: 70:18:8B:FB:53:D3 (Hon Hai Precision Ind. Co.) Starting Nmap 6.40 ( ) at :35 BRST Nmap scan report for Host is up (0.062s latency). MAC Address: B4:B5:2F:4F:BA:92 (Hewlett Packard) Starting Nmap 6.40 ( ) at :39 BRST Nmap scan report for Host is up (0.030s latency). MAC Address: 70:18:8B:FD:F9:81 (Hon Hai Precision Ind. Co.) Starting Nmap 6.40 ( ) at :40 BRST Nmap scan report for Host is up (0.024s latency). MAC Address: EC:55:F9:AF:6D:5E (Hon Hai Precision Ind. Co.)

5 Starting Nmap 6.40 ( ) at :40 BRST Nmap scan report for Host is up (0.014s latency). MAC Address: E8:11:32:B4:DA:72 (Samsung Electronics CO.) ing) Nmap scan report for Host is up (0.051s latency). MAC Address: E8:11:32:B4:DA:72 (Samsung Electronics CO.) Starting Nmap 6.40 ( ) at :45 BRST Nmap scan report for Host is up (0.029s latency). MAC Address: 24:F5:AA:54:73:9C (Samsung Electronics Co.) Nmap scan report for Host is up (0.0062s latency). MAC Address: 78:6C:1C:A0:53:45 (Apple)