Skip to content

Ping Sweep_ PowerShell Method

Jump to bottom
TheGetch edited this page Jan 5, 2021 · 1 revision

Ping Sweep: PowerShell Method

Ping Sweep: PowerShell Method

Using PowerShell as the method for ping sweeping is useful if you connect to an internal Windows box and are unable to transfer nmap or perform another form of ping sweep.

1..20 | % {"x.x.x.$($_): $(Test-Connection -count 1 -comp x.x.x.$($_) -quiet)"}

Again, this example is for a /24 network. Modification required for other network types.

_Sidebar

Home

1. Recon

Ping Sweep

CIDR to IP

2. Enumeration

Enumeration General Notes

Host/Port Scanning

Services

01. FTP (21)

02. SSH (22)

03. SMTP (25)

04. DNS (53)

05. HTTP (80,443,8080,8443,etc.)

06. POP3 (110)

07. SMB (139,445)

08. SNMP (161,162)

09. LDAP (389)

10. MS-SQL or MySQL (1433,3306)

11. RDP (3389)

12. Winrm (5985)

13. Memcache (11221)

3. Exploitation

Exploitation General Notes

4. Post Exploiation

Post Exploitation General Notes

Editable Service

Privilege Escalation

Scheduled Jobs/Tasks

5. High Value Information

Hashes

6. Reporting

7. Random Notes/Useful Tidbits

Clone this wiki locally