Re: Mapping Class A network ( any easy trick?)

From: Jordan Wiens (numatrix_at_ufl.edu)
Date: 02/08/05

  • Next message: Moonen, Ralph: "RE: Mapping Class A network ( any easy trick?)" 
    Date: Tue, 8 Feb 2005 12:54:44 -0500 (EST)
To: John Thomas <mjohn2000_99@yahoo.com>, pen-test@securityfocus.com

    On Tue, 8 Feb 2005, John Thomas wrote:

    > I am about to do a penetration testing on a “Class A
    > network” and wondering how I can map the network
    > without pinging 17 million IPs.(nmap -Sp 10.0.0.0/8)
    >
    > I did some research and the best information I got is
    > from one of the earlier post on this
    > list(http://seclists.org/lists/pen-test/2004/Jul/0067.html)
    > . It was to use broadcast IPs for pings. But it may miss some subnets.
    >
    > Is that the best way to it? If not, please advise

    Probably not. For very good reasons (smurf attacks, namely), broadcast
    pings are disabled in most networks. Besides which; you don't necessarily
    know where the broadcasts are on the network. Guessing isn't much use
    unless it's a very homogenous network of all convienant class Bs, and
    figuring out where the broadcasts are (ala the link above) is likely to be
    more work than just pinging all IPs with something very fast. You'd be
    surprised at how fast 17 million packets can get sent.

    I'd definitely recommend scanrand. It's a part of the Paketto Keiretsu
    package from Dan Kaminsky, and is much better than nmap for extremely
    large network probing.

    http://www.doxpara.com/read.php/code/paketto.html

    Poke around the site, there's some newer code that wasn't linked to from
    the main page if memory serves. 

    -- 
Jordan Wiens, CISSP
UF Network Security Engineer
(352)392-2061
  • Next message: Moonen, Ralph: "RE: Mapping Class A network ( any easy trick?)"

    Relevant Pages

    • Re: WB, UPN networks to merge!
      ... CBS Corporation and Warner Bros. ... Entertainment Form New 5th Broadcast ... Each Company to Hold 50% Interest In The CW Television Network ... New Television Network to Utilize the Best Programming from CBS ...
      (rec.arts.tv)
    • TNT wants to be the seventh (sixth? fifth?) network
      ... TNT takes on broadcasters ... Network aims for equal advertising prices ... push is on to get the same advertising prices that the broadcast webs ... "The Closer" has been a promotional platform for other TNT originals ...
      (rec.arts.tv)
    • Re: wireless router password security
      ... But please omit the step where disabling SSID broadcast. ... trying to connect to someone else's network. ... someone to connect to my wireless router. ...
      (alt.computer.security)
    • Re: Unsecured wireless network
      ... network to access it. ... Disable broadcast SSID feature. ... The SSID is used to assign an identifier to the wireless network ...
      (microsoft.public.security)
    • Re: Problem with ListAvailableSQLServers in vb 6
      ... UDP broadcast. ... Since this is a broadcast it normally only sees ... services should show up when no network is enabled. ... on which SQL Servers respond (Default protocol for SQL Server ...
      (microsoft.public.sqlserver.msde)