Penetration Testing: Re: Disovering hosts using UDP services

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Penetration Testing mailing list archives

Re: Disovering hosts using UDP services

From: "Nikhil Wagholikar" <visitnikhil () gmail com>
Date: Mon, 8 Sep 2008 09:02:43 +0530

Hello Gleb,

I guess the best tool that suit all your needs is Superscan from Foundstone.

Superscan: http://www.foundstone.com/us/resources/proddesc/superscan4.htm

Enjoy !!

---
Nikhil Wagholikar
Practice Lead | Security Assessment & Digital Forensics
NII Consulting
Web: http://www.niiconsulting.com/
Security Products: http://www.niiconsulting.com/products.html



On Fri, Sep 5, 2008 at 12:49 PM, TURPIN Marc IT&L () bs <marc.turpin () aql fr> wrote:


For windows detection you can use DFind

http://heapoverflow.com/f0rums/projects/tools/20-dfind-port-scanner/

Tiny multi-threaded port scanner.


Marc TURPIN
Security Consultant / Consultant Sécurité
Consulting Services, rue de la chataigneraie, BP51766, 35513 CESSON SEVIGNE,
FRANCE
www.orange-business.com



-----Message d'origine-----
De : listbounce () securityfocus com [mailto:listbounce () securityfocus com] De
la part de Gleb Paharenko
Envoyé : jeudi 4 septembre 2008 21:33
À : pen-test () securityfocus com
Objet : Disovering hosts using UDP services

Dear list.

Often udp port scanning say with nmap -sU -pPort1,Port2,.. does not
give results as UDP services tends do not respond to malformed
packets. At the same time utilities which send good packets getting
results and allows to enumerate hosts on the net.  For example
ike-scan usually give you the VPN endpoints, while nmap will not be
able to do this. Another example - dns server, it will not respond to
nmap UDP packet, but will respond for good dns query.

I'm looking for tools which will allow enumerate
 - dns  53
 - snmp discover 161
 - windows discovery (135,139,138,445,137)
 - ntp discovery 123
 - ms sql 1434


I'm interested on your thoughts about advanced discovery techniques as well.

--
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com
http://www.linkedin.com/in/gpaharenko

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

By Date By Thread

Current thread:

RE: Disovering hosts using UDP services, (continued)
- RE: Disovering hosts using UDP services Alex Eden (Sep 04)
- Re: Disovering hosts using UDP services lister (Sep 04)
  - RE: Disovering hosts using UDP services Alex Eden (Sep 06)
- Re: Disovering hosts using UDP services Anders Thulin (Sep 06)
- RE: Disovering hosts using UDP services TURPIN Marc IT&L () bs (Sep 06)
  - Re: Disovering hosts using UDP services Nikhil Wagholikar (Sep 08)
- Re: Disovering hosts using UDP services Martin Zember (Sep 07)
- Re: RE: Disovering hosts using UDP services publists (Sep 04)