Re: Mapping Class A network ( any easy trick?)
From: Tim (tim-pentest_at_sentinelchicken.org)
Date: 02/10/05
- Previous message: Carey Heck: "Data Mining for PIX Firewall Logs"
- In reply to: Moonen, Ralph: "RE: Mapping Class A network ( any easy trick?)"
- Next in thread: Volker Tanger: "Fw: Re: Mapping Class A network ( any easy trick?)"
- Maybe reply: Volker Tanger: "Fw: Re: Mapping Class A network ( any easy trick?)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 9 Feb 2005 21:38:19 -0500 To: "Moonen, Ralph" <Moonen.Ralph@kpmg.nl>
> Apart from the timing issues (I agree totally) I still think that you
> cannot call nmap+nbtstat or nmap+nessus or whatever combinatioin
> 'penetration testing'. To me that is Vulnerability Analysis. VA on a
> class A is tricky enough. Pentesting (ie attempted exploitation of all
> discovered vulenrabilities) on a full class A is extremely difficult.
> Impossible for 1 man and his laptop, given average population of
> networks.
Of course not. I was merely trying to provide some information on what
it takes to actually scan that many IPs. Our scan only consisted of OS
fingerprinting, about 20 TCP and 20 UDP ports scanned, and a quick
nbtscan query. This would be enough information to map a network where
one truly doesn't know what is out there, but by no means is it a
"penetration test". Just the first step (in some situations).
tim
- Previous message: Carey Heck: "Data Mining for PIX Firewall Logs"
- In reply to: Moonen, Ralph: "RE: Mapping Class A network ( any easy trick?)"
- Next in thread: Volker Tanger: "Fw: Re: Mapping Class A network ( any easy trick?)"
- Maybe reply: Volker Tanger: "Fw: Re: Mapping Class A network ( any easy trick?)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
