Skip to content

NetDiscover (ARP Scanning)

Jump to bottom
TheGetch edited this page May 14, 2021 · 2 revisions

NetDiscover (ARP Scanning)

NetDiscover (ARP Scanning)

netdiscover -i eth0

or

netdiscover -r x.x.x.0/24

Dsniff Arpspoof

First enable Linux box to act as a router:

echo 1 > /proc/sys/net/ipv4/ip_forward

Then tun arpspoof:

arpspoof -i <interface> -t <target> -r <host>

For example, to intercept traffic between targets, use:

arpspoof -i eth0 -t 192.168.4.11 -r 192.168.4.16

_Sidebar

Home

1. Recon

Ping Sweep

CIDR to IP

2. Enumeration

Enumeration General Notes

Host/Port Scanning

Services

01. FTP (21)

02. SSH (22)

03. SMTP (25)

04. DNS (53)

05. HTTP (80,443,8080,8443,etc.)

06. POP3 (110)

07. SMB (139,445)

08. SNMP (161,162)

09. LDAP (389)

10. MS-SQL or MySQL (1433,3306)

11. RDP (3389)

12. Winrm (5985)

13. Memcache (11221)

3. Exploitation

Exploitation General Notes

4. Post Exploiation

Post Exploitation General Notes

Editable Service

Privilege Escalation

Scheduled Jobs/Tasks

5. High Value Information

Hashes

6. Reporting

7. Random Notes/Useful Tidbits

Clone this wiki locally