Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Scanning XP SP2

from [Nelson, C.M.] Network Security [Permanent Link]
Subject: RE: Scanning XP SP2
Date: Wed, 25 Jan 2006 12:23:10 -0000 
Thanks for everyone's ideas so far about finding live XP SP2 hosts (that
are not on the same subnet as the scanner). Apologies if I'm going over
old-ground and of course this is not necessarily such a problem for
everyone. 

I was quite encouraged by the idea that TCP ping to the UPnP port should
detect a live XP SP2 host. Unfortunately it seems that with XP SP2
firewall the UPnP ports will only be unblocked if the local admin has
done it deliberately or installed UPnP framework optional UI components
(in which case the UPnP f/w exception is automatically enabled). I think
in most cases the UPnP ports will stay blocked.

http://support.microsoft.com/?kbid=886257&SD=tech
  
It seems there is no "magic bullet" for this problem; it looks as if
using dumps of recent router ARP data etc. to shortlist possible live
hosts and/or speculative probing of ports without any certainty that the
target device is currently up is the best that can be done. The
challenge is perhaps simply to decide how to trade-off thoroughness,
time and resources, 

--
Carl Nelson
Distributed Systems Support Section, Computer Centre, University of
Leicester, Leicester, LE1 7RH, U.K.
Tel: +44 (0)116 252 2060, Fax: +44 (0)116 252 5027 
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Upgrade 3, Jose Domingos
Next by Date:  Newbie need help with NessusWX, brodrick . j . tyndle
Previous by Thread:  Re: Scanning XP SP2, Michel Arboi
Next by Thread:  NessusClient in Swedish, Daniel Nylander
Indexes:  [Date] [Thread] [Top] [All Lists]