You're reading from Certified Ethical Hacker (CEH) v12 312-50 Exam Guide Keep up to date with ethical hacking trends and hone your skills with hands-on activities

Product type Paperback

Published in Jul 2022

Publisher Packt

ISBN-13 9781801813099

Length 664 pages

Edition 1st Edition

Tools

CloudFormation

Concepts

Ethical Hacking

Author (1):

Dale Meredith

View More author details

Table of Contents (23) Chapters

Preface

1. Section 1: Where Every Hacker Starts

2. Chapter 1: Understanding Ethical Hacking FREE CHAPTER

3. Chapter 2: Introduction to Reconnaissance

4. Chapter 3: Reconnaissance – A Deeper Dive

5. Chapter 4: Scanning Networks

6. Chapter 5: Enumeration

7. Chapter 6: Vulnerability Analysis

8. Chapter 7: System Hacking

9. Chapter 8: Social Engineering

10. Section 2: A Plethora of Attack Vectors

11. Chapter 9: Malware and Other Digital Attacks

12. Chapter 10: Sniffing and Evading IDS, Firewalls, and Honeypots

13. Chapter 11: Hacking Wireless Networks

14. Chapter 12: Hacking Mobile Platforms

15. Section 3: Cloud, Apps, and IoT Attacks

16. Chapter 13: Hacking Web Servers and Web Apps

17. Chapter 14: Hacking IoT and OT

18. Chapter 15: Cloud Computing

19. Chapter 16: Using Cryptography

20. Chapter 17: CEH Exam Practice Questions

21. Assessments

22. Other Books You May Enjoy

Checking for live systems and their ports

Scanning for live systems can be very loud or noisy on the network, but if you can do it strategically, the target might never see we're going through their network looking for targets.

Now, let's look at different ways to check for live systems.

ICMP sweep/ping sweep

This is the most common way to check for live systems. Like a sonar ping in a submarine, we ping and hope we get a return, which tells us how far away the target is or where the target is located. A standard ping uses the ICMP protocol, which is not only well known but also very noisy on the network – so much so that most IT professionals will block ICMP traffic as a deterrent.

Port scanning

Just because a machine does not respond to a ping sweep or an ICMP sweep doesn't mean it's not there. So, we can perform port scans in various ways and specify IP addresses. We can still try to check if it responds. We'll show you how to do...