Scan for open ports from a remote computer (credit to MindTap)

 You are the security analyst for a small corporate network. You have decided to test how secure the company's network would be if a rogue wireless access point was introduced.

To do this, you have connected a small computer to the switch in the Networking Closet. This computer also functions as a rogue wireless access point. You are now sitting in your van in the parking lot of your company, where you are connected to the internal network through the rogue wireless access point. Using the small computer you left behind, you want to test running remote exploits against the company.

In this lab, your task is to:

• Use ssh -X to connect to your rogue computer (192.168.0.251).
• Use 1worm4b8 as the root password.
• Use Zenmap on the remote computer to scan all the ports on the internal network and look for computers vulnerable to attack.
• Answer the questions.

EXPLANATION

Complete this lab as follows:

1. Connect to the network using the rouge system.
   1. From the Favorites bar, select Terminal.
   2. At the prompt, type ssh -X 192.168.0.251 and press Enter.
   3. For the root password, type 1worm4b8 and press Enter.
      You are now connected to Rogue1.
2. Scan the network using Zenmap.
   1. Type zenmap and press Enter to launch Zenmap remotely.
      Zenmap is running on the remote computer, but you see the screen locally.
   2. In the Command field, type nmap -p- 192.168.0.0/24.
   3. Select Scan.
3. Analyze the scan results and answer the questions.
   1. From the results, find the computers with ports open that make them vulnerable to attack.
   2. In the top right, select Answer Questions.
   3. Answer the questions.
   4. Select Score Lab.