1、Zombie Scanning with Nmap
Zombie scans can also be performed with an option in Namp , we can findly viable zombie candidates by sweeping an entire address range and assessing the IpID sequence pattern with metasploit : we can use the metasploit with the auxiliary : the command as follows :
use the auxiliary : auxiliary/ scanner/ip/ipidseq
once an incremental idle host hab been identifited , we can perform the zombie scan in nmap using the -sI option an by passing it the ip address of the zombie host that needs to be used for scanning : nmap 192.168.142.182 -sI 192.168.142.183 -Pn -p 0-100
2、Scapy identification the remote system
i=IP()
i.dst="192.168.142.182"
t=TCP()
t.dport=22
t.flags='A'
request=(i/t)
response=sr1(request,timeout=1)
response.display()