Back to Recording

Summary

Overview

This session is a hands-on cybersecurity training session focused on practical penetration testing using NMAP, Wireshark, and Kali Linux. The trainer guides a student through troubleshooting Zoom screen-sharing issues, interpreting NMAP scan outputs, and navigating virtual environments. The core educational focus is on understanding network scanning techniques, reading tool outputs, and building operational confidence in real-world cyber lab scenarios.

Topic (Timeline)

1. Troubleshooting Zoom Screen Sharing [00:00:01 - 00:07:23]

  • The participant is unable to see other users’ video feeds and struggles to locate Zoom controls on their desktop.
  • The trainer guides the participant through enabling “Speaker View” in Zoom to restore visibility of participants.
  • The participant’s desktop interface is blocking Zoom UI elements; the trainer advises unpinning or repositioning the Zoom bar to avoid overlap.

2. NMAP Scan Fundamentals and Use Cases [00:09:55 - 00:11:34]

  • The participant asks about the purpose of different NMAP scan types, specifically the -A (aggressive) scan.
  • The trainer explains that NMAP is used as a reconnaissance tool in penetration testing, analogous to “minesweeping” before advancing into a network.
  • Emphasis is placed on using scans only after initial reconnaissance to avoid unnecessary network disruption.

3. Running and Interpreting NMAP Scans in Kali Linux [00:15:19 - 00:18:36]

  • The participant is instructed to run an NMAP scan (nmap -A) against their own Kali Linux machine (IP: 10.0.0.3.15).
  • The trainer asks the participant to identify open ports and services (e.g., VNC on port 5900) from the scan output.
  • The participant is encouraged to develop muscle memory for Linux commands like ip a and nmap.

4. Navigating Terminal and File Management Challenges [00:18:46 - 00:20:48]

  • The participant struggles to close terminal windows and manage overlapping desktop elements in the virtual environment.
  • The trainer instructs the participant to use the blue “X” button to close windows and to avoid accidental interactions with annotation tools.
  • The session highlights the importance of interface familiarity in real-world penetration testing environments.

5. Using OneNote to Review Past Scan Output [00:33:29 - 00:35:34]

  • The trainer directs the participant to locate and copy NMAP scan results from a OneNote note created in a prior session.
  • The participant pastes scan output into Copilot (Microsoft’s AI assistant) to request a simplified explanation of the results.
  • The trainer uses AI as a pedagogical tool to help the participant interpret technical output in plain language.

6. Downloading and Extracting Vulnerable Lab Environment [00:42:35 - 00:43:31]

  • The participant is instructed to download a vulnerable lab image (vulnhub.com/basic-pen-testing-2) as a .tar.gz file.
  • The trainer guides the participant to use the terminal command tar -xvzf to extract the archive in Kali Linux.
  • The goal is to deploy the extracted VM in VirtualBox for subsequent penetration testing exercises.

7. Introducing PicoCTF and Practical Packet Analysis [00:45:36 - 00:50:42]

  • The trainer introduces PicoCTF as a platform for hands-on cybersecurity challenges, including Wireshark-based packet analysis.
  • The participant is asked to engage with a PicoCTF challenge involving network traffic analysis, but struggles to access it from their Kali machine.
  • The trainer attempts to share their screen to demonstrate the challenge, but connectivity issues prevent seamless collaboration.

Appendix

Key Concepts

  • NMAP as a reconnaissance tool in penetration testing.
  • Aggressive scan (-A) for OS detection, version detection, and script scanning.
  • Speaker View vs. Gallery View in Zoom for optimal screen sharing.
  • Use of ip a and nmap commands in Kali Linux for network enumeration.
  • Extracting .tar.gz archives using tar -xvzf in Linux.
  • PicoCTF as a platform for practicing real-world cybersecurity tasks.

Tools & Commands

  • nmap -A <IP> — Aggressive network scan.
  • ip a — Display network interface configuration in Linux.
  • tar -xvzf <filename>.tar.gz — Extract compressed archive in Kali Linux.
  • Zoom: “View” → “Speaker View” — To see active speaker during screen share.
  • VirtualBox — To run vulnerable lab VMs.
  • PicoCTF — Web-based CTF platform for packet analysis and exploit challenges.