CSS Experiment-6

Experiment-6
Aim: Study the use of network reconnaissance tools like WHOIS, dig,traceroute,
nslookup to gather information about networks and domain registrars.
Theory:
1. Ping:
1. Ping is probably the one almost everyone knows about and has used before.
2. The Ping command allows you to test the reachability of a device on a network.
3. Pinging a host should return four data packets, if the data packets are not returned
you know there is a problem with your network connection.
ping -aResolves the hostname of an IP address target.
1
ping -t Ping command option that will ping the target until you stop it by
pressing Ctrl-C.
ping -n count This option lets you choose between 1 and 4294967295 ICMP
Echo Requests to send. The ping command will return 4 by default if -n is not supplied.
2. IPConfig
The IPConfig command is one of the more useful basic Windows network commands everyone
should know and use to troubleshoot problems. The IPConfig command displays basic IP
address configuration information for the Windows device you are working on. In fact, the
command will display information for every network adapter that has ever been installed on
your Windows 10 computer.
2
ipconifg /all: Displays all IP address information for all adapters.
ipconfig /release:Releases the DHCP lease
3
ipconfig /renew: Renews the DHCP lease
3.Getmac
Every network capable device on the internet has a unique identifying number called its MAC
address. The number is assigned during manufacture and is established in the hardware of the
device. Using the Getmac command, a user can determine the MAC address of their various
network devices. Some administrators will use the unique MAC addresses of devices to limit
what can and cannot connect to a network.
4
4. HostName
The Windows 10 HostName network command will simply display the current name of your
Windows 10 computer. This is the name your computer uses to identify itself to the other
devices and servers on your local network. You can find this name in the System information
screen in the GUI, but this command is quicker.
5. NSLookUp
The NSLookUp Windows 10 network command displays information that you can use to
diagnose Domain Name System (DNS) infrastructure. Using NSLookUp without a parameter will
show the DNS server your PC is currently using to resolve domain names into IP addresses. As
you can see in Figure C, I am using Google’s DNS service because the server provided by my ISP
is slow and prone to crashes.
6. Tracert
Another handy tool for troubleshooting network connections in Windows 10 is the Tracert
command. This command will trace the route a data packet takes before reaching its
destination, displaying information on each hop along the route. Each hop of the route will
display the latency between your device and that particular hop and the IP address of the hop.
5
7. Netstat
The Netstat command displays active TCP connections, ports on which the computer is
listening, Ethernet statistics, the IP routing table, IPv4 statistics, and IPv6 statistics. When used
without parameters, this command displays active TCP connections. The information this
command provides can be useful in pinpointing problems in your network connections.
6
netstat -a Displays all connection and ports
netstat -e This will combine with the -sand display the ethernet statistics
7
netstat -n Displays the address and the port number in the form of numerical
8. Arp
The Windows 10 network command Arp displays entries in the Address Resolution Protocol
(ARP) cache, which contains one or more tables that are used to store IP addresses and their
resolved Ethernet physical addresses. To get useful information from the Arp command you
must provide a parameter. The most general parameter is /a, which displays current Arp cache
tables for all interfaces.
8
9. PathPing
Generally speaking, the Windows 10 network command PathPing combines the ping command
with the tracert command, providing information about network latency and network loss at
intermediate hops between a source and destination. As you can see in , the PathPing
command provides more detail than either ping or tracert can provide, such as latency reports
and statistics on packet loss.
9
10. Route
The route command allows you to make manual entries into the network routing tables. The
route command distinguishes between routes to hosts and routes to networks by interpreting
the network address of the Destination variable, which can be specified either by symbolic
name or numeric address. The route command resolves all symbolic names into addresses,
using either the /etc/hosts file or the network name server.
10
CONCLUSION
Through this experiment, participants have gained practical insights into the use of WHOIS, dig,
traceroute, and nslookup for network reconnaissance.
11
12

CSS Experiment-6

Uploaded by

Copyright:

Available Formats

CSS Experiment-6

Uploaded by

Copyright:

Available Formats

Experiment-6

ping -aResolves the hostname of an IP address target.

ipconfig /release:Releases the DHCP lease

You might also like