RE: Different ways to portscan IPS

From: "Ward, Jon" <Jon_Ward@xxxxxxxxxxxxx>
Date: Fri, 4 Dec 2009 13:48:18 -0500

From a microsoft OS command line, you could try something like this:

FOR /L %i IN (1,1,254) DO nc.exe 192.168.1.%i >> result.txt

If you need another octet, you can nest for loops something like:
FOR /L %n IN (1,1,254) DO FOR /L %i IN (1,1,254) DO nc.exe
192.168.%n.%i >> result.txt

Check the help file (FOR /?) for details.

(There is also a "for" command on *nix systems with different syntax.
Check the man pages.)

Jon Ward, CEPT, CISA
Vulnerability Testing Technical Lead
Syntel, Inc.
Jon_Ward@xxxxxxxxxxxxx

-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx]
On Behalf Of AK
Sent: Tuesday, December 01, 2009 1:38 PM
To: Yiannis Koukouras
Cc: Vimal(tm); pen-test@xxxxxxxxxxxxxxxxx
Subject: Re: Different ways to portscan IPS

Can you please paste the code?
Cheers!

Yiannis Koukouras wrote:

Hi,

Scripting netcat to do a connect only scan worked for my team.

You can use time delays in your script as well ;)

Ioannis (Yiannis) Koukouras
CISSP, CISA, CISM
MSc in Computer Systems Security
BEng in Electronic Engineering
http://www.linkedin.com/in/ikoukouras
---
The information contained in this communication is intended solely for

the use of the individual or entity to whom it is addressed and
others authorized to receive it. It may contain confidential or
legally privileged information. If you are not the intended
recipient you are hereby notified that any disclosure, copying,
distribution or taking any action in reliance on the contents of
this information is strictly prohibited and may be unlawful.

If you have received this communication in error, please notify the
sender immediately by responding to this email and then delete it
from your system.

On Fri, Nov 20, 2009 at 1:02 PM, Vimal(tm) <avvimalkumar@xxxxxxxxx>

wrote:

What are the different ways of port scanning the target when an IPS

in placed.

Some of the methods I used are:

1. Delay the scan prob (nmap --scan-delay)

2. Integrating the scanner with TOR

Regards
Vimal

web : http://www.maestro-sec.com

---------------------------------------------------------------------
--- This list is sponsored by: Information Assurance Certification
Review Board

Prove to peers and potential employers without a doubt that you can

actually do a proper penetration test. IACRB CPT and CEPT certs require
a full practical examination in order to become certified.

http://www.iacertification.org
---------------------------------------------------------------------
---

----------------------------------------------------------------------
-- This list is sponsored by: Information Assurance Certification
Review Board

Prove to peers and potential employers without a doubt that you can

actually do a proper penetration test. IACRB CPT and CEPT certs require
a full practical examination in order to become certified.

http://www.iacertification.org
----------------------------------------------------------------------
--

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review
Board

Prove to peers and potential employers without a doubt that you can
actually do a proper penetration test. IACRB CPT and CEPT certs require
a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Follow-Ups:
- Re: Different ways to portscan IPS
  - From: chr1x
- Re: Different ways to portscan IPS
  - From: J. Oquendo

References:
- Re: Different ways to portscan IPS
  - From: Yiannis Koukouras
- Re: Different ways to portscan IPS
  - From: AK

Prev by Date: The Official Training Guide for New Superheroes
Next by Date: Re: Different ways to portscan IPS
Previous by thread: Re: Different ways to portscan IPS
Next by thread: Re: Different ways to portscan IPS
Index(es):
- Date
- Thread

Relevant Pages

Re: Different ways to portscan IPS
... Prove to peers and potential employers without a doubt that you can ... a full practical examination in order to become certified. ... Information Assurance Certification Review ...
(Pen-Test)
Exploiting IPC$
... Prove to peers and potential employers without a doubt that you can ... a full practical examination in order to become certified. ... Information Assurance Certification Review ...
(Pen-Test)
Re: Things to do before vulnerability disclosure
... yourself in legal trouble depending on your countries laws and you'd ... full practical examination in order to become certified. ... Information Assurance Certification Review Board ... Prove to peers and potential employers without a doubt that you can actually ...
(Pen-Test)
Re: Verify Your Security Provider -- The truth behind manual testing.
... Information Assurance Certification Review Board ... Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. ... IACRB CPT and CEPT certs require a full practical examination in order to become certified. ...
(Pen-Test)
Re: career advice
... Information Assurance Certification Review Board ... Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. ...
(Pen-Test)