Join Malcolm Shore for an in-depth discussion in this video Remote enumeration using PowerShell, part of Ethical Hacking: Enumeration.
- [Instructor] When testing a target network,…you may gain access to a Windows target inside the network.…At this point, you'll likely want…to scan the internal network.…To do this, we can use the target's…own PowerShell capability to scan for additional hosts…or to do port scanning.…This way we don't need to increase the risk of detection…by loading additional tools.…Let's see how we do this.…I'm at the PowerShell prompt…and can use IP configures we normally would…to get our IP address.…
We can see our address is 192.168.1.100.…Let's scan this subnet.…To do this, I'll use the PowerShell for loop,…checking IP addresses ending with .1 to .254,…checking whether the ping succeeds.…Inside the for loop we use the system net function for ping…and send a ping request with 100 milliseconds timer…to reach host.…The variable hosty is output if the ping is a success.…
And that's it, we're scanning the subnet.…And we found five hosts active.…Now let's do a scan of the first host on 19216811.…To do this, I'll again use the PowerShell for loop.…
An overview of the CEH exam, blueprint, and eligibility criteria can be found at https://www.eccouncil.org/programs/certified-ethical-hacker-ceh/.
- What is enumeration?
- Understanding NetBIOS, SMB, SAMBA, and RPC
- Profiling hosts
- Investigating interfaces
- Enumerating SMB
- Enumerating SNMP and RPC
- Enumerating the Internet
- Working with other enumeration tools
Skill Level Intermediate
1. Basics of Enumeration
2. Local Host Enumeration
3. Remote Hosts
4. Enumerating Web Apps
5. Enumerating the Internet
6. Other Enumeration Tools
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.