RE: Scanning Class A network
From: Jarmon, Don R (Don.Jarmon_at_Intergraph.com)
Date: 10/24/05
- Previous message: David Eduardo Acosta Rodríguez: "Re: Scanning Class A network"
- Maybe in reply to: tarunthenut_at_gmail.com: "Scanning Class A network"
- Next in thread: Mike Thompson: "RE: Scanning Class A network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: tarunthenut@gmail.com Date: Mon, 24 Oct 2005 13:02:38 -0500
Not real sure what value this monthly exercise will provide but you could
use snmp to:
collect routing tables from core routers
collect arp tables from active routers
Then use arp table entries to create a listing of active hosts.
-----Original Message-----
From: tarunthenut@gmail.com [mailto:tarunthenut@gmail.com]
Sent: Monday, October 24, 2005 7:33 AM
To: pen-test@securityfocus.com
Subject: Scanning Class A network
Hello All,
Recently I was given a task to carry out a port scan of an entire valid
Class A range (Dont ask me what the huge pool of valid IP's was for :) ).
The scan needed to be carried out externally, and not from within the
network to identify hosts and ports exposed to the Internet.
The problem compounded cause of the following limitations :
1. ICMP was not allowed in the network
2. The IP range was to be scanned every month for the entire port range fro=
m
1-65535 for TCP & UDP
After searching for a suitable scanner which could scan such a large range
in reasonable time, I could think of only nmap, nessus, superscan and ISS.
But because of the limitations stated above,all the tools took a huge
amount of time (ran into month).
I have struggled with options within the tools, tried configurable
parameters (host time out, parallelism, RTT etc) and divided into smaller
class C networks and scanned.but still the scan seems to take ages even if
it is
Any advise would be welcome :)
Cheers
tarunthenut
----------------------------------------------------------------------------
-- Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 ---------------------------------------------------------------------------- --- ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
- Previous message: David Eduardo Acosta Rodríguez: "Re: Scanning Class A network"
- Maybe in reply to: tarunthenut_at_gmail.com: "Scanning Class A network"
- Next in thread: Mike Thompson: "RE: Scanning Class A network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
