Description
Nmap author Fyodor and Nmap training guru James Messer demonstrate advanced network reconnaissance with Nmap.
Attendees receive a zero-day (pre-release) copy of Fyodor's upcoming book, Nmap Network Scanning. Topics include:
Speed optimization for scanning large or heavily firewalled networks
Analyzing and circumventing firewalls
Subverting intrusion detection systems
Port scanning techniques and algorithms
Automating daily scans
Host Discovery
Version detection
Defending your network against Nmap
The 2nd Generation OS fingerprinting system
The new Nmap Scripting Engine
Rather than simply re-hash man pages and define each option flag, Fyodo and James show how practical problems are solved by combining several techniques with careful analysis. Complementary open source tools such as Hping2 and Netcat are also demonstrated. Real-life examples are given for the class to work through.
Prerequisites
Attendees must arrive with Nmap version 4.21ALPHA3 or later installed on their network-equipped laptop computers.
They should already be familiar with Nmap and its basic options.
A good test is to run the command:
nmap -A -T4 -PT53,80,113 scanme.nmap.orgto ensure that it works and that the output and command-line itself are well understood. Be sure to read theNmap Reference Guidebefore coming.
Fyodor
Fyodor authored the popular Nmap Security Scanner, which was named security tool of the year by Linux Journal, Info World, and the Codetalker Digest. It was also featured in the hit movie "Matrix Reloaded" as well as by the BBC, CNet, Wired, Slashdot, Securityfocus, and more. He also maintains the Insecure.Org and Seclists.Org security resource sites and has authored seminal papers detailing techniques for stealth port scanning, remote operating system detection via TCP/IP stack fingerprinting, version detection, and the IPID Idle Scan. He is a member of the Honeynet project and a co-author of the books "Know Your Enemy: Honeynets" and "Stealing the Network: How to Own a Continent".
James "Professor" Messer
James "Professor" Messer is the founder of ProfessorMesser.com and NetworkUptime.com, online resources for network and security professionals. His twenty years of experience in the computer and networking industry have taken him from liquid nitrogen-cooled supercomputers to enterprise network analysis and security solutions. His published works include articles on WorldVillage.com, Lockergnome.com, his own online "Nmap Secrets" training course and his book, "Secrets of Network Cartography: A Comprehensive Guide to Nmap." He also maintains the comp.dcom.lans.ethernet and comp.dcom.lans.token-ring Frequently Asked Questions (FAQ) files.
James holds a Bachelor's degree in Business Management from Florida State University, and his technology interests revolve around security, networking, and electronic privacy. James resides in Tallahassee, Florida, with his wife and three children.