Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

nasl scripts / reliance / port-scanners

from [Stuart Kendrick] Network Security [Permanent Link]
Subject: nasl scripts / reliance / port-scanners
Date: Tue, 21 Dec 2004 13:16:50 -0800 (PST) 
hi,

i'm trying to understand the relationship between port-scanners and the 
various attack NASLs ...

when i disable all port scanners ... i haven't detected any change in the 
number of attack NASLs which run ... [right now, i'm selecting all plugins 
... except for scanners).

so .... do all/most/some NASLs ignore the port scanner output ... and just
run anyway?  or do they run against default ports only, if port scanner 
output is unavailable?  [and if port scanner output is available ... then 
do NASLs run against *all* open ports ... this approach would allow an 
Apache-vulnerability NASL, for example, to run against a copy of Apache 
listening on some port other than 80 ... at the price of running against 
things like sendmail listening on port 25 ...]

what does port scanning buy me, in terms of which NASLs get launched?

--sk

stuart kendrick
fhcrc
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Problem using 'nessus-fetch', Nicolas Gregoire
Next by Date:  Re: nasl scripts / reliance / port-scanners, Michel Arboi
Previous by Thread:  Ted Estes/BTL/MS/PHILIPS is out of the office., ted . estes
Next by Thread:  Re: nasl scripts / reliance / port-scanners, Michel Arboi
Indexes:  [Date] [Thread] [Top] [All Lists]