Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Incidents: Re: How to read port scans

Re: How to read port scans

From: Renato Murilo Langona <renato_at_LINUX.REDEBRASIL.ORG.BR>
Date: Thu, 8 Jun 2000 16:52:29 -0300

Hi,

Phil Curran wrote:
>
> I am new to auditing/reading port scanning documents. Are there any
> documents/books/urls that would be able to help me in understanding what I am
> reading/trying to analyze? Any help is greatly appreciated.
>
> Phil Curran
> phil_curran_at_campbellsoup.com

I have links for good ones I've read (most linux):

"Interpreting Network Traffic:
A Network Intrusion Detector's Look
      at Suspicious Events
      by Richard Bejtlich
     bejtlich_at_altavista.net"

http://www.linuxsecurity.com.br/info/IDS/interpret.ids.txt

"FAQ: Network Intrusion Detection Systems"

http://www.linuxsecurity.com.br/info/IDS/network-intrusion-detection.htm

"Focus On Linux: Intrusion Detection on Linux" (SecurityFocus)

http://www.linuxsecurity.com.br/info/IDS/linux-focus.ids.html

I think I don't have to mention the great Lance Spitzner Publications,
but:

http://www.enteract.com/~lspitz/pubs.html (read em' all)

Have a good readin',
Best regards, 

--
[Renato Murilo Langona]
Network/System Administrator/Consultant
Site: http://www.linuxsecurity.com.br/renato
Contact mail: renato_at_unix.barroco.com.br
Contact Phone: (+5511) 9115 0606 (BR/SP)
http://pgp5.ai.mit.edu:11371/pks/lookup?op=get&search=0x4DBD311A
Received on Jun 10 2000
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos