Penetration Testing mailing list archives
Re: Automated Nmap Scans / Front End
From: pkc_mls <pkc_mls () yahoo fr>
Date: Fri, 19 Jan 2007 11:44:02 +0100
tom jones a écrit :
You can also consider using hping to check for the netbios port rather than a basic icmp.Hello, I am responsible for monitoring hundreds of machines over thousands of external IP addresses. I currently run nmap manually once a week and import the results into Excel to compare them with the previous week to find hosts that are new and also take note of those that have been taken off the Internet. I am looking for a web front end, batch process, or similar that would meet the following requirements. -Input file of external IP ranges I am responsible for -Have the tool scan all ranges to determine responding IPs -Compare results to previous week and note exceptions -Scheduling capability to have this take place weekly >From a quick search, I found these two tools that I might try out if I have time. I have not heard of them before and have not had a chance to read up on their capabilities: http://sourceforge.net/projects/gwmos/ http://sourceforge.net/projects/cancerbero/ I am also interested to hear thoughts on the best way to do host discovery. Many of our firewalls will block ICMP requests which is fast and not complete. Scanning for every TCP and UDP port can take days. I'm looking for a good middle ground that would be fairly complete but not take an excessive amount of time. I currently scan for about 15 common TCP ports which takes about half of a day.
This could go through the firewall if your rules allow it.You can then run an nmap to check which ports are open if the netbios responds on hping.
I have the ability to run these on either a Windows XP machine or a webserver (php, etc.).
hping works better on Unix/Linux.
Thanks in advance.
___________________________________________________________________________
Yahoo! Mail réinvente le mail ! Découvrez le nouveau Yahoo! Mail et son interface révolutionnaire.
http://fr.mail.yahoo.com ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
Current thread:
- Automated Nmap Scans / Front End tom jones (Jan 18)
- Re: Automated Nmap Scans / Front End jasper . o . waale (Jan 19)
- Re: Automated Nmap Scans / Front End Marco Ramilli (Jan 19)
- RE: Automated Nmap Scans / Front End MARTIN Benoni (Jan 26)
- RE: Automated Nmap Scans / Front End Soi, Dhruv (Jan 27)
- Re: Automated Nmap Scans / Front End crazy frog crazy frog (Jan 28)
- RE: Automated Nmap Scans / Front End MARTIN Benoni (Jan 26)
- Re: Automated Nmap Scans / Front End pkc_mls (Jan 19)
- Re: [?? Probable Spam] Automated Nmap Scans / Front End sami ghourabi (Jan 19)
- Re: Automated Nmap Scans / Front End David M. Zendzian (Jan 19)
- Re: Automated Nmap Scans / Front End dajackman (Jan 22)
- Re: Automated Nmap Scans / Front End John Mason Jr (Jan 19)
- Re: Automated Nmap Scans / Front End joe henderson (Jan 19)
- Re: Automated Nmap Scans / Front End Ian (Jan 19)
- Re: Automated Nmap Scans / Front End Renaud Leroy (Jan 22)