Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Incidents: Re: How to read port scans

Re: How to read port scans

From: Mark Kovach <mark.kovach_at_AVENUEA.COM>
Date: Thu, 8 Jun 2000 13:48:12 -0700

My favorite book for those new to reading scans is Stephen Northcutt's
Network Intrusion Detection, An Analyst's Handbook. And no, I don't get a
kick-back (although Stephen can send one to the address below if he'd like)
:-) Also, I advise that you become intimately familiar with the IANA
Well-Known Port list
http://www.isi.edu/in-notes/iana/assignments/port-numbers and watch the
advisories and news groups.

Regards.

> Mark Kovach, CISSP
> Manager, Information Security Services
>
> avenue a
> voice: 206.436.8483
> fax: 206.816.8909
> cell: 206.618.7320
>
> mailto:mark.kovach_at_avenuea.com
> http://www.avenuea.com

-----Original Message-----
From: Phil Curran [mailto:phil_curran_at_CAMPBELLSOUP.COM]
Sent: Thursday, June 08, 2000 9:45 AM
To: INCIDENTS_at_SECURITYFOCUS.COM
Subject: How to read port scans

I am new to auditing/reading port scanning documents. Are there any
documents/books/urls that would be able to help me in understanding what I
am
reading/trying to analyze? Any help is greatly appreciated.

Phil Curran
phil_curran_at_campbellsoup.com
Received on Jun 10 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos