find_ip
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
find_ip [2008/02/17 13:42] – latinsud | find_ip [2008/02/17 13:58] (current) – comment example latinsud | ||
---|---|---|---|
Line 2: | Line 2: | ||
Let's assume you must work in a network but they forgot to tell you the ip address range. | Let's assume you must work in a network but they forgot to tell you the ip address range. | ||
+ | |||
===== Passive sniffing ===== | ===== Passive sniffing ===== | ||
* Simply use tcpdump, wireshark or any sniffer that displays the IP addresses of existing packets. | * Simply use tcpdump, wireshark or any sniffer that displays the IP addresses of existing packets. | ||
+ | |||
+ | * Eg: | ||
+ | |||
+ | # tcpdump -nnei eth1 | ||
+ | 13: | ||
+ | 13: | ||
+ | In this example, '' | ||
+ | |||
===== DHCP discovery ===== | ===== DHCP discovery ===== | ||
* If DHCP is enabled on the network, use a dhcp client or a fast discovery tool like [[http:// | * If DHCP is enabled on the network, use a dhcp client or a fast discovery tool like [[http:// | ||
+ | |||
+ | * Eg: | ||
+ | < | ||
+ | # dhd | ||
+ | Sniffing on any | ||
+ | Injecting on eth1 (00: | ||
+ | |||
+ | #0: | ||
+ | SERVER-MAC: 00: | ||
+ | IP: 192.168.0.1 | ||
+ | CLIENT-MAC: 00: | ||
+ | IP: 192.168.0.195 | ||
+ | MASK: 255.255.255.0 | ||
+ | GW: 192.168.0.1 | ||
+ | DNS: 192.168.0.1 | ||
+ | |||
+ | >> | ||
+ | </ | ||
+ | In this example, '' | ||
===== Active scan ===== | ===== Active scan ===== | ||
Line 15: | Line 43: | ||
* Use a fast ARP scanner like [[http:// | * Use a fast ARP scanner like [[http:// | ||
+ | * Eg: | ||
+ | |||
+ | < | ||
+ | # netdiscover -i eth1 | ||
+ | Currently scanning: 192.168.1.0/ | ||
+ | |||
+ | 2 Captured ARP Req/Rep packets, from 2 hosts. | ||
+ | _____________________________________________________________________________ | ||
+ | | ||
+ | ----------------------------------------------------------------------------- | ||
+ | 192.168.0.1 | ||
+ | 192.168.0.194 | ||
+ | </ | ||
+ | In this example, there are 2 hosts from which '' |
find_ip.1203252139.txt.gz · Last modified: 2008/02/17 13:42 by latinsud