Authentication hashes are stored and kept by operating systems. Really, they are just hashed values of passwords. It might be possible to brute force these, but oftentimes you would need some sort of privileged permissions in order to obtain them, so it is somewhat of a more difficult task.

Intro

Hashes

As an example, take my name  – acephale as an input string and pass it through a SHA256 algorithm, and we get the following string of characters:

Vicarius Unlocks Nmap for Vulnerability Remediation

Intro

Now that we have covered some of the more important features of Nmap, we would like to talk about one of the most, if not the most, important features: NSE, short for Nmap Scripting Engine. Firstly, let’s mention the fact that the set of NSE scripts is quite diverse and constantly growing. NSE was designed to be flexible, specifically for network discovery, more sophisticated version detection, backdoor detection, vulnerability detection and exploitation.

Intro

Today, firewalls are an essential part of almost every IT infrastructure and are being deployed in a myriad of shapes and forms. They usually focus on layers 3 and 4 of the OSI Model (occasionally layer 2). Next-generation Firewalls (NGFW) can also cover layers 5, 6, and 7. With more layers covered, we gain more control, but also spend more computing power.

As the saying goes, "no man is an island." This statement holds in today's cybersecurity landscape.

As vulnerabilities and threats become more sophisticated, having a reliable and automated Mac patch management solution for your organization's devices is essential. This is important if you are using a lot of custom applications that may be hard to update. 

Intro

In this article we will look further into some of the options that Nmap offers. Since we have looked into the Null, Xmas, and FIN scans, we will continue down this path of port scanning techniques, and for this article we will focus on ACK Scan (-sA),  Window Scan (-sW), and Maimon Scan (-sM).