Network+ Practice Labs: Common Network Vulnerabilities

source: cybrary.it

Vendor

Lab

Lab Learning Outcomes

CompTIA Network+ N10–007 Exam Objectives

What are we doing?

Why would we want to do this?

Who would use this?

Thoughts?

source: practice labs

Exercise 1

Learning Objective

Task 1 — Add IIS on a Device

Task 1 Complete!

Task 2 — Verify Name Resolution on the Network

Task 2 Complete!

Task 3 — Send Continuous Pings

ping plabdc01 -t
arp -a

Task 3 Complete!

Task 4 — Verify Apache Server is running on the PLABRTR01 device

Task 4 Complete!

Task 5 — Install Ettercap on the Attacking Device

sudo apt-get update
Passw0rd
sudo apt-get install ettercap-graphical

Task 5 Complete!

Task 6 — Manage ARP Poisoning using Ettercap

Passw0rd
ipconfig /flushdns
ping 192.168.0.1
ping 192.168.0.2
arp -a
arp -a
ping 192.168.0.2

Task 6 Complete!

Task 7 — Edit Ettercap Name Resolution Files

cd /etc/ettercap
sudo nano etter.conf
Passw0rd
sudo nano etter.dns
173.194.34.147

Task 7 Complete!

Task 8 — Activate DNS Spoofing Plug-in

about:blank

Exercise 1 Complete!

Bonus

Detecting and Preventing ARP poisoning

arp -a
ARP poisoning example

Detecting and Preventing DNS spoofing/poisoning

ipconfig /flshdns
#Enter
ipconfig /registerdns
#Enter
ipconfig /release
#Enter
ipconfig /renew
#Enter
netsh winsock reset
#Enter

Other methods to use when preventing MiTM attacks:

Bonus Complete!

Exercise 2 — Exploring DNS Server Vulnerabilities

Task 1 — Add DNS Resource Records

mail
192.168.0.5
mail.practicelabs.com
dig @192.168.0.2 practicelabs.com mx
dig @192.168.0.2 practicelabs.com axfr
dig @192.168.0.2 practicelabs.com axfr

So…

Exercise 2 Complete!

Exercise 3 — Safeguarding Against Phishing

Task 1 — Turn on the SmartScreen Filter

Task 1 Complete!

Task 2 — Verify the Phishing Filter is Working

Exercise 3 Complete!

Anxious Buddhist | Hobby Eater | Maze Master

Anxious Buddhist | Hobby Eater | Maze Master