Network Enumeration

IP Config

C:\Users>ipconfig /all
ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : SERVER2019
Primary Dns Suffix . . . . . . . : pwnme.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : pwnme.com

Ethernet adapter Ethernet0:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) 82574L Gigabit Network Connection
Physical Address. . . . . . . . . : 00-0C-29-81-3A-D2
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::91a:eedb:46a6:1919%15(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.50(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 100666409
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-27-71-CF-67-00-0C-29-81-3A-D2
DNS Servers . . . . . . . . . . . : 127.0.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Display ARP Table

C:\Users>arp -a
arp -a

Interface: 192.168.1.50 --- 0xf
Internet Address Physical Address Type
192.168.1.1 1c-3b-f3-4d-ab-0a dynamic
192.168.1.240 00-0c-29-97-c7-a5 dynamic
192.168.1.250 b0-6e-bf-ab-d6-88 dynamic
192.168.1.255 ff-ff-ff-ff-ff-ff static
224.0.0.22 01-00-5e-00-00-16 static
224.0.0.251 01-00-5e-00-00-fb static
224.0.0.252 01-00-5e-00-00-fc static

Route Table

C:\Users>route print
route print
===========================================================================
Interface List
15...00 0c 29 81 3a d2 ......Intel(R) 82574L Gigabit Network Connection
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.50 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
192.168.1.0 255.255.255.0 On-link 192.168.1.50 281
192.168.1.50 255.255.255.255 On-link 192.168.1.50 281
192.168.1.255 255.255.255.255 On-link 192.168.1.50 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 192.168.1.50 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 192.168.1.50 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 331 ::1/128 On-link
15 281 fe80::/64 On-link
15 281 fe80::91a:eedb:46a6:1919/128
On-link
1 331 ff00::/8 On-link
15 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

Listening ports

C:\Users>netstat -ano
netstat -ano

Active Connections

Proto Local Address Foreign Address State PID

TCP 127.0.0.1:49688 127.0.0.1:49689 ESTABLISHED 552
TCP 127.0.0.1:49689 127.0.0.1:49688 ESTABLISHED 552
TCP 127.0.0.1:49690 127.0.0.1:49691 ESTABLISHED 552
TCP 127.0.0.1:49691 127.0.0.1:49690 ESTABLISHED 552
TCP 192.168.1.50:53 0.0.0.0:0 LISTENING 3416
TCP 192.168.1.50:139 0.0.0.0:0 LISTENING 4
TCP 192.168.1.50:52166 192.168.1.240:4444 ESTABLISHED 8088