Re: Port Scanning.

From: Martin Mačok (martin.macok_at_underground.cz)
Date: 12/14/04

Next message: Lachniet, Mark: "RE: Port mirroring detection"

Previous message: L. Walker: "Re: Volunteer pen testing"
In reply to: rzaluski: "RE: Port Scanning."
Next in thread: robert_at_dyadsecurity.com: "Re: Port Scanning."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 14 Dec 2004 22:27:25 +0100
To: pen-test@securityfocus.com

On Mon, Dec 13, 2004 at 11:53:32PM -0500, rzaluski wrote:

> Nmap for instance blindly Accepts that port 22 is associated with
> SSH

This is not true. Since nmap-3.40+, it supports "version scan" which
does something similar to Amap. The main difference is that Amap is
more "protocol oriented" (and lists all matching protocols) and Nmap
version scan is "software version" oriented (and lists first match
only). I usually use Amap only when nmap -sV fails (for example, on
some UDP protocols).

Martin Mačok
IT Security Consultant

Next message: Lachniet, Mark: "RE: Port mirroring detection"

Previous message: L. Walker: "Re: Volunteer pen testing"
In reply to: rzaluski: "RE: Port Scanning."
Next in thread: robert_at_dyadsecurity.com: "Re: Port Scanning."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]