RE: Scan for "outsider" Pcs on network

Hi,

You could use RogueScanner to find all of the devices on your network
and then notify you when a new device is discovered.

http://www.networkchemistry.com/products/roguescanner.php

You would need to either write a script that would notice when the list
of devices on the network changes. The nice thing is that it is free.

Regards,

Chris.

-----Original Message-----
From: dhamm@xxxxxxxxxxxxxxxxxx [mailto:dhamm@xxxxxxxxxxxxxxxxxx]
Sent: Friday, March 03, 2006 7:48 AM
To: focus-ids@xxxxxxxxxxxxxxxxx
Subject: Scan for "outsider" Pcs on network

Is there a way to setup a scan and be notified of an
intruding pc that is physically plugged into the network?
When you have an enviroment with a large amount of network
jacks, it's hard to make sure the ones no longer in use are
turned off, and that no "visitors" have sat down to use your
network connections, esp. if you have a large amount of
contractors in and out. It got me to searching the net, and
so far I have found one cemmercial product that can do it,
but nothing else. Any suggestions?

--------------------------------------------------------------
----------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world
attacks from CORE IMPACT.
Go to
http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------
----------



--------------------------------------------------------------
----------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world
attacks from CORE IMPACT.
Go to
http://www.coresecurity.com/index.php5?module=Form&action=impa
ct&campaign=intro_sfw
to learn more.
--------------------------------------------------------------
----------



------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
to learn more.
------------------------------------------------------------------------

Relevant Pages

  • A Network IPS Proposal (was Definition of Zero Day Protection)
    ... I did a research on Network IPS a while back when the ... > api gating layers and are continuing to greatly ... > implementations have detection properties for zero ... > day attacks. ...
    (Focus-IDS)
  • RE: Need help from a group of experts. I am not a network expert but I play one on tv.
    ... preventing file attachments alone won't stop all email attacks. ... Sonicwall is a good firewall...but any firewall depends on how well you ... I am not a network expert ... - Precisely Define and Implement Network Security ...
    (Security-Basics)
  • RE: Pre-Scanning for Marketing
    ... The controlling interest of the network has to have a inclination to secure ... vulnerabilities are easily and efficiently identified. ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, ...
    (Pen-Test)
  • Re: Biometrics
    ... I'd feel safer on an OS designed as such, not as a network client - ... the Internet is a world of strangers. ... Compare this Windows Vista: if someone ... lot of information about attacks from this data. ...
    (microsoft.public.security)
  • Re: How secure is SSL emails?
    ... > - Your remailer generates no traffic eventually delivered to mailboxes ... > messages could subscribe to a remailer network, ... These attacks have long been known, ... Bob decides to work on the designs that can be built, ...
    (sci.crypt)