Assignment $4-2$: Footprinting and Nmap Scans

Objective: To conduct the Infrastructural Information Gathering phase of a penetration test on a target organization, which in this scenario is a University Campus.

Instructions:

$1.$ Detect Live Host:

o Your task is to identify live hosts within the target scope.

o Use methods such as ping sweeps or other techniques to identify live hosts in the certifiedhacker.com domain and its netblock. Remember to generate as little traffic as possible during some scans to remain discreet.

$2.$ Nmap Scans:

o Once you have identified live hosts, proceed to perform Nmap scans on these hosts to gather information about the services and open ports.

o Utilize different Nmap scan types and techniques to extract valuable information.

Task $1$: Host Discovery $-$ Ping Sweep

$$ Perform a ping sweep $($not a port scan$)$ on the entire netblock and write down the discovered hosts and all the open ports. Document the following:

Task $2$: Host Discovery $-$ No Ping

$$ Once you have found the live hosts, try again with other techniques. I.e$.$ this time use TCP packets, but don$$t scan the entire port range, use the most common ports.

Important: This is the first phase of information gathering, so we don$$t need to know services or OS$$s running on the remote hosts. Just list the live hosts.