Re: Scanning Class A network
From: Satanic.Brain (Satanic.brain_at_gmail.com)
Date: 10/24/05
- Previous message: Kyle Starkey: "RE: Scanning Class A network"
- In reply to: tarunthenut_at_gmail.com: "Scanning Class A network"
- Next in thread: R. DuFresne: "Re: Scanning Class A network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 24 Oct 2005 16:37:31 -0300 To: pen-test@securityfocus.com
Well, if ICMP isnīt allowed in the network your best choice will be a
"TCP Ping" (-PT nmap argument. Send TCP ACK, and wait for RST).
About point 2, i recommend you Nmap... you can save the output and then,
with a little perl script, compare the results with a "diff" sentence...
Iīm suposing that you are working in a Linux environment, cause Nmap in
windows will be very slow (for that type of scans)
Sorry my poor english, but isnīt my first language..
Cheers
tarunthenut@gmail.com wrote:
>Hello All,
> Recently I was given a task to carry out a port scan of an entire valid
>Class A range (Dont ask me what the huge pool of valid IP's was for :) ).
>The scan needed to be carried out externally, and not from within the
>network to identify hosts and ports exposed to the Internet.
> The problem compounded cause of the following limitations :
>1. ICMP was not allowed in the network
>2. The IP range was to be scanned every month for the entire port range fro=
>m
>1-65535 for TCP & UDP
> After searching for a suitable scanner which could scan such a large range
>in reasonable time, I could think of only nmap, nessus, superscan and ISS.
> But because of the limitations stated above,all the tools took a huge
>amount of time (ran into month).
> I have struggled with options within the tools, tried configurable
>parameters (host time out, parallelism, RTT etc) and divided into smaller
>class C networks and scanned.but still the scan seems to take ages even if
>it is
> Any advise would be welcome :)
>
>Cheers
> tarunthenut
>
>------------------------------------------------------------------------------
>Audit your website security with Acunetix Web Vulnerability Scanner:
>
>Hackers are concentrating their efforts on attacking applications on your
>website. Up to 75% of cyber attacks are launched on shopping carts, forms,
>login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
>futile against web application hacking. Check your website for vulnerabilities
>to SQL injection, Cross site scripting and other web attacks before hackers do!
>Download Trial at:
>
>http://www.securityfocus.com/sponsor/pen-test_050831
>-------------------------------------------------------------------------------
>
>
>
>
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
- Previous message: Kyle Starkey: "RE: Scanning Class A network"
- In reply to: tarunthenut_at_gmail.com: "Scanning Class A network"
- Next in thread: R. DuFresne: "Re: Scanning Class A network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
