Lab 12.1.7 Extract Web Server Information with Nmap [WLOs: 1, 2, 3, 4, 5] [CLOs: 1, 2, 3]

 Task Summary

Required Actions & Questions
PassedDisplay the HTTP server header
PassedQ1Which software is used by www.corpnet.com to offer the HTTP service?
Your answer: Apache 2.4.7
Correct answer: Apache 2.4.7
PassedMeasure the time a website takes to deliver a web page
PassedPerform a HEAD request for the root folder
PassedCrawl through the website and return any error pages
PassedQ2How many error pages were found?
Your answer: 0
Correct answer: 0
PassedLook for the malware signatures of known server compromises
PassedDisplay HTML and JavaScript comments
PassedQ3What is the last comment listed on line 20 of the web page at http://www.corpnet.xyz:80?
Your answer: <!--END Google Analytics Code-->
Correct answer: <!--END Google Analytics Code-->
Explanation

In this lab, your task is to run the following nmap scripts on port 80 of 198.28.1.1:

  • http-server-header.nse to display the HTTP server header.
  • http-chrono.nse to measure the time a website takes to deliver a web page.
  • http-headers.nse to perform a HEAD request for the root folder.
  • http-errors.nse to crawl through the website and return any error pages.
  • http-malware-host.nse to look for maleware signatures of known server compromises.
  • http-comments-displayer.nse to display HTML and JavaScript comments.

Complete this lab as follows:

  1. From the Favorites bar, open Terminal.
  2. At the prompt, type nmap --script=http-server-header -p80 198.28.1.1 and press Enter to run the http-server-header.nse script.
  3. In the top right, select Answer Questions.
  4. Answer question 1.
  5. Type nmap --script=http-chrono -p80 198.28.1.1 and press Enter to run the http-chrono.nse script.
  6. Type nmap --script=http-headers -p80 198.28.1.1 and press Enter to run the http-headers.nse script.
  7. Type nmap --script=http-errors -p80 198.28.1.1 and press Enter to run the http-errors.nse script.
  8. Under Lab Questions, answer question 2.
  9. Type nmap --script=http-malware-host -p80 198.28.1.1 and press Enter to run the http-malware-host.nse script.
  10. Type nmap --script=http-comments-displayer -p80 198.28.1.1 and press Enter to run the http-comments-displayer.nse script.
  11. Under Lab Questions, answer question 3.
  12. Click Score Lab.

Comments

Post a Comment