- Lab
-
Libraries: If you want this lab, consider one of these libraries.
- Security
Reconnaissance with Shodan
In this lab you have been hired as a penetration tester to perform external reconnaissance for the small enterprise Globomantics. Your objective is to use Shodan to map the organization’s internet-facing attack surface, identify exposed services, collect banner and version information, and uncover potential vulnerabilities an attacker might target. Throughout the lab, you will compile your findings into a prioritized assessment report that Globomantics will use to guide remediation and hardening efforts. This lab simulates early-stage reconnaissance activities and aligns with real-world adversary techniques, including: - **T1590.005** – Gather Victim Network Information: IP Address - **T1592.002** – Gather Victim Host Information: Software Configuration > **Important**: This is an offline-lab. The information is a snapshot captured at a specific point in time. You'll be accessing the static webpage in order to gather information about the target organization.
Lab Info
Table of Contents
-
Challenge
Identify Exposed Services and Gather Technical Details
As a penetration tester hired by Globomantics, you will begin your engagement by performing external reconnaissance against the approved training host,
scanme.nmap.org. Using Shodan, your task is to identify all publicly exposed services, examine their banners, and collect technical details that an attacker would observe when profiling Globomantics’ internet-facing footprint. -
Challenge
Catalog Vulnerabilities and Create Prioritized Assessment Report
Continuing your role as a penetration tester for Globomantics, you will analyze the technical details collected from Shodan for
scanme.nmap.org. Your task is to extract software version information, identify any known vulnerabilities, and consolidate your findings into a prioritized assessment report. This report should rank services by risk and include actionable recommendations, simulating how a penetration tester presents external reconnaissance results to organizational leadership -
Challenge
The Last Objective
Welcome to the final objective! This is your last chance to experiment in the environment. Clicking End Lab will end this little world that flittered into existence just for you.
Real skill practice before real-world application
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Learn by doing
Engage hands-on with the tools and technologies you’re learning. You pick the skill, we provide the credentials and environment.
Follow your guide
All labs have detailed instructions and objectives, guiding you through the learning process and ensuring you understand every step.
Turn time into mastery
On average, you retain 75% more of your learning if you take time to practice. Hands-on labs set you up for success to make those skills stick.