Re: Port Scanner Reports

From: Packet Man (packetman_at_altsec.info)
Date: 10/12/05

Next message: Chris Clymer: "Re: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""

Previous message: Rogan Dawes: "Re: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""
In reply to: Richard Farina: "Re: Port Scanner Reports"
Next in thread: Michael Gargiullo: "RE: Port Scanner Reports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 12 Oct 2005 12:33:23 -0500
To: pen-test@securityfocus.com

I have a humble submission to this discussion.

In port scanning, I have personally been tasked
with two related systems:

1. A routine schedule system that emails
results

2. Letting nagios do the scanning

I have been using a homemade script for both.

The original shell script provides for keeping
a baseline profile, or replacing it each scan,
and emails changes for each host scanned.

The latest script is a grossly unofficial plugin
to use with nagios.

What I've written is GPL and available for the
asking. It's not the best code in the world,
but it has worked fine for me and provides a
framework for anyone who desires to improve
it.

I haven't posted the email notification based
script yet, but the nagios plugin is at:

http://www.altsec.info/check_scan.html

Feel free to have a look, use as you wish,
etc.

-- 
Excellence in InfoSec and Linux
http://www.altsec.info
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Next message: Chris Clymer: "Re: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""

Previous message: Rogan Dawes: "Re: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""
In reply to: Richard Farina: "Re: Port Scanner Reports"
Next in thread: Michael Gargiullo: "RE: Port Scanner Reports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: OT: spammers are using my domain again
... our virtual hosting servers and boom 150 returned emails from the ... Server load wasn't jumping ... Its a simple script that is written in php and can use a DB to retrieve ... they do anything) and the other hosting company that the file was ...
(Fedora)
Re: Reading remote Session ID
... require that the IP that makes the request for the page be the same ... capability of the user, if it's a script the js will fail, so require ... I am using the free version of SPAMfighter for private users. ... It has removed 1384 spam emails to date. ...
(alt.php)
Re: [PHP] limiting the amount of emails sent at a time in a batch send
... I want to limit these script two send 100 email and then pause for a few ... all the emails that are dated for today. ... I am using swift ... used for many unique mails. ...
(php.general)
Re: Reading remote Session ID
... Perhaps you can just make it harder for the script by ... require that the IP that makes the request for the page be the same ... Using a session i nice here. ... It has removed 1384 spam emails to date. ...
(alt.php)