In this lab, a systems administrator for the securelabsondemand.com network has reported odd behavior on two servers that support legacy applications you first conducted internal penetration tests (also called a vulnerability scan) on each system and then helped secure those systems by configuring firewalls and removing vulnerable open ports. Lab Assessment Questions & Answers 1.What is the first Nmap command you ran in this lab? Explain the switches used. The first Nmap command I ran was nmap -O -v 10.20.100.50. The switches used are represented with -O AND v this allows to detect the operating system used on 10.20.100.50 and also shows the detail of open ports. 2. What are the open ports when scanning 192.168.3.25 and their service names? Open Ports that were open are as follows: PORT SERVICE 80/tcp http 135/tcp msrpc 139/tcp netbios-ssn 445/tcp Microsoft-ds 3389/tcp ms-wbt-server Remote Desktop Protocol 5357/tcp wsdapi Web Services for Devices And other 49152, 49153, 49154, 49155, 49156 and 49157 are DCOM or ephemeral ports. 3. What is the command line syntax for running an SMB vulnerability scan with Nmap against 10.20.100.50? Type nmap script=smb-check-vulns p445 10.20.100.50 4.Explain why SMBv2 DoS (CVE-2009-3103) is bad. SMBv2 Dos (CVE-2009-3103) is bad because port 455 exposes the operating system to remote execution of arbitrary code if it is lacking sufficient service pack level or a key security hotfix. 5. What is the operating system of IP address 192.168.40.238? 6. What are the reverse IP addresses for the three remote computers scanned in this lab?

I'm not sure about my answered. also, I do not know the answer of number 5 &6