Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Inconsistent port scans

from [Martin Macleod-Brown] Network Security [Permanent Link]
Subject: RE: Inconsistent port scans
Date: Wed, 24 Aug 2005 16:33:21 +0100 
Interesting..

I am using the Win based client, set up to ping remote host and nmap (NASL
wrapper) enabled and set to do a FIN scan. Configuring plugins I have set
the SMB credentials and watching the tests go through, I get 0% on port
scans, but 100% on tests with no results to view..

 

Running nmap from a console connection to the scanning server gives me the
following..

 

[root@morpheus ~]# nmap -v -n -oN file.out -P0 -sT -p 1-1024  -r
163.119.128.180

 

Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2005-08-24 16:26 BST

Initiating Connect() Scan against 163.119.128.180 [1024 ports] at 16:26

Discovered open port 139/tcp on 163.119.128.180

Discovered open port 135/tcp on 163.119.128.180

Discovered open port 427/tcp on 163.119.128.180

Discovered open port 445/tcp on 163.119.128.180

The Connect() Scan took 0.03s to scan 1024 total ports.

Host 163.119.128.180 appears to be up ... good.

Interesting ports on 163.119.128.180:

caught SIGSEGV signal, cleaning up

Aborted

 

I presume that the aborted connection means something is wrong???

Where can I check the nessus logs..

 

I can confirm that the machine is not behind a firewall, I am scanning from
within our company LAN, and Nessus has rights to read the remote registry.

 

Martin

 

  _____  

From: sanjeev sinha [mailto:san008@hotmail.com] 
Sent: 24 August 2005 15:37
To: Martin Macleod-Brown; nessus-gen
Subject: Re: Inconsistent port scans

 

 

Martin,

 

Please try to scan using the following command (nmap) to see what ports are
discovered:

 

nmap -v -n -oN file.out -P0 -sT -p 1-1024  -r <ip address>

A question:  is this ip address behind a firewall and if so, what is its
behavior with respect to syn scans that you are using?  Also, you could try
FIN scan technique and observe the results. 

 

Sanjeev

All work and no play makes Jack a dull boy --- Jack Torrance, The Shining


______________________________________________________________________

This email has been scanned by the MessageLabs Email Security System
on behalf of the London Business School community.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________


_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: plugin 19402, Chad I. Uretsky
Next by Date:  (no subject), Martin Macleod-Brown
Previous by Thread:  Re: Inconsistent port scans, sanjeev sinha
Next by Thread:  RE: Inconsistent port scans, Martin Macleod-Brown
Indexes:  [Date] [Thread] [Top] [All Lists]