Book Image

Learning zANTI2 for Android Pentesting

By : Miroslav Vitula
Book Image

Learning zANTI2 for Android Pentesting

By: Miroslav Vitula

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Learning zANTI2 for Android Pentesting
Miroslav Vitula
Aug, 2015 | 134 pages
No titles found
Table of Contents (12 chapters)
Learning zANTI2 for Android Pentesting
Learning zANTI2 for Android Pentesting
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introducing Android Pentesting with zANTI2
Introducing Android Pentesting with zANTI2
Penetration testing
zANTI2
Zetasploit
Summary
2
Scanning for Your Victim
Scanning for Your Victim
Network discovery
Open or closed?
Scan types
Run script
Intense scan
Device type
Running
OS CPE
OS Details
Network distance
Uptime guess
TCP sequence prediction
IP ID sequence generation
Ping scan
Quick scan and OS detection
Quick traceroute
Slow comprehensive scan
IP/ICMP scan
Script execution
Brute-force scripts
Summary
3
Connecting to Open Ports
Connecting to Open Ports
Open ports
Connecting to open ports
Cracking passwords
Microsoft-DS port connection
A remote desktop connection
Summary
4
Vulnerabilities
Vulnerabilities
A vulnerability
Reverse engineering
Shellshock
SSL Poodle
Zetasploit exploits
Summary
5
Attacking – MITM Style
Attacking – MITM Style
Man in the middle?
MITM attacks through zANTI2
Summary
Index
Index

Open or closed?

I've mentioned open ports. I guess I'll explain this a bit more because this is something you should probably know before getting into the game.

Although Nmap is now one of the best scanning software out here, it started as a port scanner. It's a simple but efficient port scanner. The simple command nmap on target scans 1000 TCP ports on it. You've probably heard of open or closed ports, but in fact Nmap divides ports into six states:

  • Open

  • Closed

  • Filtered

  • Unfiltered

  • Open|filtered

  • Closed|filtered

First, let's explain open and closed ports. If a host is accepting Transmission Control Protocol (TCP) connections, User Datagram Protocol (UDP) datagrams, or Stream Control Transmission Protocol (SCTP) associations, we call this port opened.

Finding open ports is often the main goal of port scanning, considering that each open port is vulnerable to attacks. Hackers are attacking these, while system administrators are trying to protect them from unwanted connections using known security tools...

Previous Section
End of Section 3
Next Section