In: Computers and Technology

Submitted By monzter
Words 259
Pages 2
Assessment Worksheet
Performing Reconnaissance and Probing Using Common Tools
Course Name and Number: _____________________________________________________
Student Name: ________________________________________________________________
Instructor Name: ______________________________________________________________
Lab Due Date: ________________________________________________________________
In this lab, you explored the common tools available in the virtual lab environment. You used
Wireshark to capture and analyze network traffic and OpenVAS to scan the network. You
reviewed a sample collection of data using NetWitness Investigator, connected to a remote
Windows machine, and explored two file transfer applications, FileZilla and Tftpd64. You used
PuTTY to connect to a Linux machine and ran several Cisco commands to display statistics for
the network interfaces. Finally, you used Zenmap to perform a scan of the network and created a
network topology chart.
Lab Assessment Questions & Answers
1. Name at least five applications and tools used in the lab.

2. What is promiscuous mode?

3. How does Wireshark differ from NetWitness Investigator?

4. Why is it important to select the student interface in the Wireshark?

5. What is the command line syntax for running an Intense Scan with Zenmap on a target subnet of

6. Name at least five different scans that may be performed with Zenmap.

7. How many different tests (i.e., scripts) did your Intense Scan perform?

8. Based on your interpretation of the Intense Scan, describe the purpose/results of each tests script
performed during the report.

9. How many total IP hosts did Zenmap find on the network?

Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend Learning Company. All rights reserved.


Student Lab Manual…...

Similar Documents


...TESTING TAXATION & FIRM PERFORMANCE Normative theories attempt to tell what “people or constituencies should do”. A normative theory is not solely evaluated by predictive value, but is also evaluated by its logical consistency of how rational individuals should behave. Positive theories “attempt to make good predictions of real world events.” Positive Accounting Theory (PAT) is a positive theory that aims to predict actions such as which accounting policies firms will choose and how newly proposed accounting standards will cause firms to react. Its overall intention is to understand and predict the choice of accounting policies across differing firms. It recognizes that economic consequences exist. Under PAT, firms want to maximize their prospects for survival, so they organize themselves efficiently. Actual organization depends on firm specific factors, which are the determinants of their prospects. Examples include legal and institutional environment, technology, and competition. Firms are viewed as the accumulation of the contracts they have entered into. In relation to PAT, because there is a need to be efficient, the firm will want to minimize costs associated with contracts. Examples of contract costs are negotiation, renegotiation, and monitoring costs. Contract costs involve accounting variables as contracts can be stipulated in terms of accounting information such as net income, and financial ratios. The firm will choose the accounting......

Words: 275 - Pages: 2


...Importance of Non-Functional Testing and Security Testing in Mobile Application Development Abstract Smart-phones have become part of human life. As smartphones become more powerful and usage rises, Smartphone makers have a much wider range of innovation possibilities than their PC counterparts. The personal nature and pocket size of mobile phones and their potential offer a wide scope for developing distinctive handset models targeted at a specific segment of the smart-phone market. The mobile application market’s growth is driven by the widespread push of advanced handset capabilities by the mobile industry and the increasingly-connected global consumer base. Progress of network technologies, restructuring of revenue-sharing pattern, lowering of mobile data usage cost, growing adoption of smart phones, and increase in application usability have contributed to the growth of mobile application adoption globally. This trend has led to substantial surge in the dependence and usage of the mobile Internet, specifically mobile applications. Mobile Application Development is the method by which application software is produced for low power handling devices, mobile devices, and other small digital equipment. As this technological development continues to gain momentum, it's quickly turning into one of the most powerful industries in the world. Majority of the mobile application testers tend to focus more on testing the product against client requirements – Functional...

Words: 10078 - Pages: 41

Testing Basics

... not always be cost-effective for mid-size to small projects. - Training the team members on RUP tools is expensive and time consuming. What is Testing? Testing is a process of verifying the operation of a system or application under controlled conditions and evaluating the results. E.g., 'if the user is in interface A of the application while using hardware B, and does C, then D should happen'. The controlled conditions should include both normal and abnormal conditions. Testing should intentionally attempt to make things go wrong to determine if things happen when they shouldn't or things don't happen when they should. It is oriented to 'detection'. Describe the entire Testing process? Ideally Software Testing Process consists of three phases. 1. Pre-Testing Phase 2. Acceptance Testing Phase 3. Testing Phase Pre-testing Phase: Review the Requirement Document Set up the Testing Environment, MR Tool, Testing Tools, Database, Web Browser, Web Server etc. Writing the Test Plan Collecting the Test data Writing the Test Cases Acceptance Testing Phase: Check the product test entrance criteria Conducting the basic feature tests Testing Phase: Run the Test from Test plan Use MR Tool to report and track Modifications, enhancements, and Defects Resolve Defects Perform regression Tests Gather Test Metrics What is a Test Plan? A software project test plan is a document that describes the objectives...

Words: 2172 - Pages: 9

Psychological Testing

...Cochrane, R. E., Tett, R. P., & Vandecreek, L. (2003). Psychological Testing and the Selection of Police Officers: A National Survey. Criminal Justice and Behavior, (30)5, 500-537. In this article Cochrane et al. identify the selection and psychological assessment practices for potential police offers nowadays, which enable the police department to select police officers with good performance. The authors use data gained through a survey including personnel managers from municipal police agencies to identify selection practices and procedures. The research focuses on examine why police departments utilize different measuring devices to select officer, although psychological testing is widely used. The article is useful to my research as the authors provide some examples of personality testing to show that how psychological testing is valued to predict the job performance. The main limitation of the article is that the survey was restricted to police department personnel managers, psychologists and other persons are not directly participated in the survey completion. As a result, the authors indicate that more research will occur in the field with the assistance of psychologist. Carless, S. A. (2006). Applicant Reactions to Multiple Selection Procedures for the Police Force. Applied Psychology: an International Review , (55)2,145-167. In the article Carless examines the impact of selection procedure on the applicant perception of job relatedness. The author uses...

Words: 340 - Pages: 2

Penetration Testing

...Using penetration testing to enhance your company's security Based on the fundamental principle that prevention is better than cure, penetration testing (pen-testing) is essentially an information assurance activity to determine if information is appropriately secured. Conducted by penetration testers, sometimes referred to as ‘white hats’ or ethical hackers, these tests use the same tools and techniques as the bad guys (‘black hat hackers’), but do so in a controlled manner with the express permission of the target organization. Vulnerability scans versus pen-testing A common area of confusion is the relationship between vulnerability scanning (automated) and pen-testing (expert-driven manual testing). Both involve a proactive and concerted attempt to identify vulnerabilities that could expose the organization to a potential malevolent attack. Vulnerability scanners are great at identifying ‘low-hanging’ vulnerabilities, such as common configuration mistakes or unpatched systems that offer an easy target for attackers. What they are unable to determine is the context or nature of the asset or data at risk. They are also less able than humans to identify unknown-unknowns (things not already on the risk register, or which haven't been theorized by the organization as potential security issues). Good pen-testing teams, however, do this very well. For instance, pen-testers can give countless examples of engagements where an environment was previously scanned only for...

Words: 1752 - Pages: 8


... technologies and tools (e.g., modeling, development, infrastructure/middleware, management, and testing) have matured. * Understanding of business and business strategies has grown, shifting attention from technology to the people, cultural changes, and process that are key business success factors. 14.What is the most important skill you need to adopt SOA ? technical or cultural ?  Ans:Surely cultural. SOA does require people to think of business and technology differently. Instead of thinking of technology first (e.g., If we implement this system, what kinds of things can we do with it?), practitioners must first think in terms of business functions, or services (e.g., My company does these business functions, so how can I set up my IT system to do those things for me most efficiently?).It is expected that adoption of SOA will change business IT departments, creating service-oriented (instead of technology-oriented) IT organizations.  15.Is SOA really needed on your opinion?  Ans:SOA is not for everyone. While SOA delivers significant benefits and cost savings, SOA does require disciplined enforcement of centralized governance principals to be successful. For some organizations, the cost of developing and enforcing these principals may be higher than the benefits realized, and therefore not a sound initiative. http://www.tutorialspoint.com/listtutorial/REST-and-SOAP-web-service-Interview-Questions-for-prep/3827 REST Web Service Interview......

Words: 12773 - Pages: 52

Hypothesis Testing

...Hypothesis Testing Paper Hypothesis testing in statistics goes beyond the traditional acceptances of trying to prove a hypothesis correct. Hypothesis testing is matter of accepting what has already been proven until another hypothesis is verified to be true. In the essay, an overview of the hypothesis testing process is described using a fictional example and numerical values to detail the process. The idea formed by the hypothesis, “online students have more stress than traditional on campus students”, is to reject the hypothesis that online college students experience less stress than on campus college students. This is in no way true findings; it is a fictional example to help walk the reader through the steps of hypothesis testing. Hypothesis testing is a king of research used to say how a certain topic of interest will end or how researchers think it will end in the environment. The testing will show that just because one forms an answer it does not prove that the answer is correct for there are many factors that could change the outcome, which is why researchers use probability rates of five or one percent. The null hypothesis endeavors to show that there is no variation between variables, or a single variable is no different from zero. It is surmised to be true until statistical evidence nullifies it for an alternative hypothesis. Null hypothesis is a hypothesis that the researcher endeavors to confute, reject, or nullify. The research hypothesis is the...

Words: 1158 - Pages: 5


...your reference in testing services Test Coördinatie Introductie 1 Gent, 4 april 2011 Wat denken jullie? Inleiding Kick off Teststrategie Testaanpak Testbegroting Organisatie Beheren Rapporteren Evaluatie Ondersteuning Wat verstaan jullie onder testen? En testcoördinatie? Hoe zien jullie het? 2 Wat is testen? Inleiding Testen bestaat uit activiteiten die uitgevoerd worden om één of meerdere kenmerken van een product, proces of dienst vast te stellen volgens een gespecifieerde methode Testen is een proces dat inzicht geeft in- en adviseert over de kwaliteit en de daaraan gerelateerde risico‟s Kick off Teststrategie Testaanpak Testbegroting Organisatie Beheren Rapporteren Evaluatie Ondersteuning 3 Definities volgens TMAP Next® Wat is een test level? Inleiding Kick off Teststrategie Testaanpak Testbegroting Organisatie Beheren Rapporteren Evaluatie Ondersteuning Een test level is een groep van testactiviteiten die gezamenlijk worden uitgevoerd en aangestuurd 4 Definities volgens TMAP Next® Wat is coördinatie? Johan Symons, “Introductie tot de psychomotoriek” coördinatie = het harmonisch en economisch samenwerken van spieren, zenuwen en zintuigen om doelgerichte, stabiele bewegingsakties en snelle situatie - aangepaste reacties (reflex) tot stand te brengen. Voor een optimale samenwerking dienen volgende aspecten in acht te worden genomen : ‣ ‣ ‣ een juiste krachtmaat (bewegingsomvang en snelheid) een juiste...

Words: 3788 - Pages: 16


.... Though the DASS can be used in an occupational setting, it can be detrimental to an individuals career path due to an employer having record of an individuals mental health on file which could cause an individual to lose their job due to an employer viewing an individual as being a risk. Though the DASS can have negative impact on an individual career, it can also be beneficial as well especially if the profession that it is being used in is a high stress job. Jobs such as those found in the various branches of the military or other government positions may require an individual to go through testing of their mental health so as to assess whether or not the individual would be capable of effectively performing their duties since an individual whom has high levels of depression, anxiety, and/or stress can prove to be hazards on the job. In an academic setting, the DASS can be effective when used with children so as to be able to see if a child is capable of handling the requirements of their educational course or if they should be given extra attention so as to better absorb the materials in which they are to learn....

Words: 452 - Pages: 2

Software Testing

...International Journal of Electronic and Electrical Engineering. ISSN 0974-2174, Volume 7, Number 5 (2014), pp. 463-474 © International Research Publication House http://www.irphouse.com A Review of Software Testing Techniques Manpreet Kaur1 and Rupinder Singh2 1 Department of CSE CGC, Gharuan Mohali, India 2 CSE CGC, Gharuan Mohali, India Abstract Software testing is important to reduce errors, maintenance and overall software costs. One of the major problems in software testing area is how to get a suitable set of test cases to test a software system. We identify a number of concepts that every software engineering student and faculty should have learned. There are now many testing techniques available for generating test cases. This set should ensure maximum effectiveness with the least possible number of test cases. The main goal of this paper is to analysed and compare the testing technique to find out the best one to find out the error from the software. Keywords: Software testing; process model; testing techniques; 1. Introduction Software testing is a process or a series of processes designed to verify computer code does what it was designed to do. According to ANSI/IEEE 1059 standard [1, 2], Testing can be defined as ―A process of analyzing a software item to detect the differences between existing and required conditions (that is defects/errors/bugs) and to evaluate the features of the software item. Another more appropriate definition is this: [3] Testing is...

Words: 4928 - Pages: 20

Dna Testing

...This summer, my co-counsel and I filed a cert petition in a pro bono case on behalf of a criminal defendant named Manuel Arzola. The case, Arzola v. Massachusetts, raises this question: Whether a Fourth Amendment “search” occurs when government agents remove blood from a person’s lawfully-seized clothing and conduct a DNA test that generates a DNA identity profile. The petition explains: When the police lawfully seize a bloody article of clothing during a criminal investigation, they may wish to run a DNA test on the blood. DNA testing can reveal the DNA profile of the person whose blood was found on the clothing. The police can then try to match that DNA profile with profiles from other samples to prove identity. Lower courts have divided on whether the practice of removing blood from lawfully-seized clothing and testing it to obtain a DNA profile is a Fourth Amendment “search” of the owner’s effects. The Fourth Circuit has held that it is a search. The Maryland Court of Appeals (the state’s highest court) has disagreed. In the case below, the Massachusetts Supreme Judicial Court agreed with the Maryland Court of Appeals and disagreed with the Fourth Circuit. Shortly after we filed our cert petition, the Maryland Public Defender filed an amicus brief in support of the petition. The respondent, the commonwealth of Massachusetts, initially waived its right to file a response. The Supreme Court requested a response, however, and the commonwealth filed its brief in...

Words: 561 - Pages: 3

Animal Testing

...Running head: George Marcus Student Summary of Animal Testing Is Not Essential for Medical Research Much of today’s medical progress such as; magnetic resonance imaging, computer-aided tomography, vaccines and other medical techniques have not come from animal testing (Greek & Greek, 2004). Test tube research combined with the study of why diseases occur in different people and more funding for medical research is proven methods (Greek & Greek). The week of July 30, 2009, the Food and Drug Administration announced, that 37 experts that the FDA assembled have recommended lowering the recommended dosage of Tylenol. The panel also recommended eradicating Vicodin and Percocet. The recommendation came as a way to battle accidental overdoses of acetaminophen. Acetaminophen overdoses is the principal cause of liver failure in our country which results in about 200 deaths annually (Perrone, 2009). Over 51% of the latest drugs released between the years of 1976 and 1985 were eliminated or had a revised label to show harsh side effects unforeseen from animal testing (Greek & Greek, 2004). Physically humans and animals differ and our bodies process chemicals differently. The sustenance that humans and animals use can be dissimilar, reproductive systems are different along with the average life expectancy (Fano, 2004). With the physical and environmental differences between the species, research can give diverse outcomes in the testing process (Fano). The...

Words: 410 - Pages: 2


... time zones. Effective channels 95 for collaboration include the use of Wikis, blogs, text messages, occasional emails and reports. 96 Teleconferences and videoconferences are options but bandwidth may hinder videoconferences. 97 The blogs and wikis permit asynchronous discussions. Student Work Sample: IT-520-001 Communication framework 98 7 The writing process will call for prewriting, writing, and rewriting. The process should be 99 considered when setting deadlines for completion. Usability testing after the writing phase will 100 help identify areas needing a rewrite. Failure to meet the users’ needs with the final version of 101 the installation instructions will result in ill will and poor word of mouth and possibly poor 102 reviews posted to the Internet. Success in writing installation instructions that meet the needs of 103 the audience and enable installation of the software is determined by a drop in calls to Technical 104 Support, good reviews posted online and through the use of surveys and questionnaires. 105 The collaborative team should determine the division’s goals prior to creating the 106 installation instructions to meet the needs of the audience. Goals should include directing the 107 audience to successfully installing the software, inform the audience of features of the storage 108 device, build goodwill by letting the audience know that support is available...

Words: 2355 - Pages: 10

Psychological Testing

...Psychological Testing PSY/475 Psychological Testing In this paper the subject is to summarize the major assumptions and fundamental questions associated with psychological testing. The author begins by defining the term test. Next, the author describes the major categories of tests and identifies the major uses and users of these tests. Last the paper compares and contrasts the concepts of reliability and validity and discusses how they affect the field of psychological testing. The Standards for Education and Psychological Testing defines test as, “An evaluative device or procedure in which a sample of an examinee’s behavior (is) evaluated and scored using a standardized process” (Hogan, 2007, pg. 38). Anastasi and Cronbach, both traditional textbook authors, define the term test as, “an objective and standardized measure of a sample of behavior” and “a systematic procedure for observing behavior and describing it with the aid of numerical scales or fixed categories” (Hogan, 2007, pg. 38). In psychology, tests are used to make important decisions about an individual. Testing samples a person’s behavior, creates a standardized measure, and contributes in making important decisions about the individual taking the test. Testing is used in many different areas and is used to sample a person behavior, create a standardize measure, and contribute in making important decisions. For example, college admissions officers consult test score before admitting or...

Words: 853 - Pages: 4

Usability Testing

...Usability testing is a technique used in user-centered interaction design to evaluate a product by testing it on users. This can be seen as an irreplaceable usability practice, since it gives direct input on how real users use the system.[1] This is in contrast with usability inspection methods where experts use different methods to evaluate a user interface without involving users. Usability testing focuses on measuring a human-made product's capacity to meet its intended purpose. Examples of products that commonly benefit from usability testing are foods, consumer products, web sites or web applications, computer interfaces, documents, and devices. Usability testing measures the usability, or ease of use, of a specific object or set of objects, whereas general human-computer interaction studies attempt to formulate universal principles. History of usability testing Henry Dreyfuss in the late 1940s contracted to design the state rooms for the twin ocean liners "Independence" and "Constitution." He built eight prototype staterooms and installed them in a warehouse. He then brought in a series of travelers to "live" in the rooms for a short time, bringing with them all items they would normally take when cruising. His people were able to discover over time, for example, if there was space for large steamer trunks, if light switches needed to be added beside the beds to prevent injury, etc., before hundreds of state rooms had been built into the ship.[2] A Xerox...

Words: 1504 - Pages: 7