added auxiliary/scanner/discovery/udp_sweep.md

vishalkg · vishalkg · commit 4de6b4f4fa93 · 2017-12-11T12:08:18.000-05:00
diff --git a/documentation/modules/auxiliary/scanner/discovery/udp_sweep.md b/documentation/modules/auxiliary/scanner/discovery/udp_sweep.md
@@ -0,0 +1,57 @@
+## Description
+
+The “udp_sweep” module scans across a given range of hosts to detect commonly available UDP services.
+
+## Verification Steps
+
+1. Do: ```use auxiliary/scanner/discovery/udp_sweep```
+2. Do: ```set RHOSTS [IP]```
+3. Do: ```set THREADS [number of threads]```
+4. Do: ```run```
+
+To configure this module, just set the RHOSTS and THREADS values and run it.
+
+## Scenarios
+
+**Running the scanner**
+```
+msf > use auxiliary/scanner/discovery/udp_sweep
+msf auxiliary(udp_sweep) > show options
+
+Module options (auxiliary/scanner/discovery/udp_sweep):
+
+   Name       Current Setting  Required  Description
+   ----       ---------------  --------  -----------
+   BATCHSIZE  256              yes       The number of hosts to probe in each set
+   RHOSTS                      yes       The target address range or CIDR identifier
+   THREADS    10               yes       The number of concurrent threads
+
+msf auxiliary(udp_sweep) > set RHOSTS 192.168.1.2-254
+RHOSTS => 192.168.1.2-254
+msf auxiliary(udp_sweep) > set THREADS 253
+THREADS => 253
+msf auxiliary(udp_sweep) > run
+
+[*] Sending 10 probes to 192.168.1.2->192.168.1.254 (253 hosts)
+[*] Discovered NetBIOS on 192.168.1.109:137 (SAMSUNG::U :SAMSUNG::U :00:15:99:3f:40:bd)
+[*] Discovered NetBIOS on 192.168.1.150:137 (XEN-WIN7-PROD::U :WORKGROUP::G :XEN-WIN7-PROD::U :WORKGROUP::G :aa:e3:27:6e:3b:a5)
+[*] Discovered NetBIOS on 192.168.1.203:137 (XEN-XP-SPLOIT::U :WORKGROUP::G :XEN-XP-SPLOIT::U :WORKGROUP::G :3e:ff:3c:4c:89:67)
+[*] Discovered NetBIOS on 192.168.1.201:137 (XEN-XP-SP2-BARE::U :HOTZONE::G :XEN-XP-SP2-BARE::U :HOTZONE::G :HOTZONE::U :__MSBROWSE__::G :c6:ce:4e:d9:c9:6e)
+[*] Discovered NetBIOS on 192.168.1.206:137 (XEN-XP-PATCHED::U :XEN-XP-PATCHED::U :HOTZONE::G :HOTZONE::G :12:fa:1a:75:b8:a5)
+[*] Discovered NetBIOS on 192.168.1.250:137 (FREENAS::U :FREENAS::U :FREENAS::U :__MSBROWSE__::G :WORKGROUP::U :WORKGROUP::G :WORKGROUP::G :00:00:00:00:00:00)
+[*] Discovered SNMP on 192.168.1.2:161 (GSM7224 L2 Managed Gigabit Switch)
+[*] Discovered SNMP on 192.168.1.109:161 (Samsung CLX-3160 Series; OS V1.01.01.16 02-25-2008;Engine 6.01.00;NIC V4.03.08(CLX-3160) 02-25-2008;S/N 8Y61B1GP400065Y.)
+[*] Discovered NTP on 192.168.1.69:123 (NTP v4)
+[*] Discovered NTP on 192.168.1.99:123 (NTP v4)
+[*] Discovered NTP on 192.168.1.201:123 (Microsoft NTP)
+[*] Discovered NTP on 192.168.1.203:123 (Microsoft NTP)
+[*] Discovered NTP on 192.168.1.206:123 (Microsoft NTP)
+[*] Discovered MSSQL on 192.168.1.206:1434 (ServerName=XEN-XP-PATCHED InstanceName=SQLEXPRESS IsClustered=No Version=9.00.4035.00 tcp=1050 np=\\XEN-XP-PATCHED\pipe\MSSQL$SQLEXPRESS\sql\query )
+[*] Discovered SNMP on 192.168.1.2:161 (GSM7224 L2 Managed Gigabit Switch)
+[*] Discovered SNMP on 192.168.1.109:161 (Samsung CLX-3160 Series; OS V1.01.01.16 02-25-2008;Engine 6.01.00;NIC V4.03.08(CLX-3160) 02-25-2008;S/N 8Y61B1GP400065Y.)
+[*] Scanned 253 of 253 hosts (100% complete)
+[*] Auxiliary module execution completed
+msf auxiliary(udp_sweep) >
+```
+
+With minimal effort, we have once again identified a wide range of services running on many different platforms within our network.
