Targeted Scanning

When you are conducting a penetration test, there is no shame in looking for an easy win. A targeted scan looks for specific operating systems, services, program versions, or configurations that are known to be exploitable and that provide an easy door into a target network. For example, it is common to scan a target network quickly for the vulnerability MS08-067, as this is (still) an extremely common hole that will give you SYSTEM access much more quickly than scanning an entire target network for vulnerabilities.

Server Message Block Scanning

Metasploit can scour a network and attempt to identify versions of Microsoft Windows using its smb_version module.

Note

If you are not familiar with Server Message Block (SMB, a common file-sharing ...

Get Metasploit now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Metasploit by David Kennedy, Jim O'Gorman, Devon Kearns, Mati Aharoni

Targeted Scanning

Server Message Block Scanning

Note

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly