Nmap TryHackMe Room Walkthrough [level 7— level 15]

One of my previous blog I did my Nmap room level 1 to level 7 click here to get to the blog. So now lets do the rest of the room..!!!!

Task 8 →NULL, FIN, Xmas

Xmas

Firewall Evasion

Microsoft Windows

Task 9 → ICMP Network Scanning

nmap -sn 172.16.0.0/16

Task 10 → Working With The NSE

Lua

intrusive

Task 11 → Overview

in this DOC you can see it take arg call maxlist

maxlist

Task 12 → Searching for script

If you run the above command you will get a list like this and highlighted one is the OS discovery.

smb-os-discovery.nse

This is how you can see the scorce code of smb-os-discovery.nse
first you need to type locate smb-os-discovery.nse and copy that location and use cat <file_location> the you will be able to get this

So answer is smb-brute

Task 13 →Firewall Evasion

ICMP

— data-length

To find this you can type man nmap and go to Firewall evasion tab and you can see this to your self.

Task 14 → Practical

N

you can see 999 are open and filtered

no response

If you run this above command you will be able see there are 5 ports are open

Y

this is how you have to use scripts in Nmap so in the result you can see anonymous login is allowed now lets try to login

This is how you have to log in to the FTP session

so I hope you learned how to do these task see you in another blog see you………………

SLIIT cyber security undergraduate