Finding IP addresses

Let's assume you must work in a network but they forgot to tell you the ip address range.

Passive sniffing

  • Simply use tcpdump, wireshark or any sniffer that displays the IP addresses of existing packets.

DHCP discovery

  • If DHCP is enabled on the network, use a dhcp client or a fast discovery tool like DHD.

Active scan

  • Use a fast ARP scanner like netdiscover, or a multipurpose one like nmap, ettercap, etc.
