Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: How to use Nessus 3.0.3 (Linux) with Nmap port scanning

from [Douglas Nordwall] Network Security [Permanent Link]
Subject: Re: How to use Nessus 3.0.3 (Linux) with Nmap port scanning
Date: Wed, 20 Sep 2006 09:33:06 -0700 

On Sep 19, 2006, at 12:25 AM, Michel Arboi wrote:

On Mon Sep 18 2006 at 14:46, Kostadin Kostadinov wrote:

> I am planning to scan with Nessus 3.0.3 from command line using Nmap
> port scan results but not portscanner of Nessus itself.

I'd like to know why so many people still prefer Nmap to the embedded
scanners.


Well, for me, the sheer configurability of it is the best part. Speed isn't always what you are after, and just this morning, speed was the enemy. We had a box that had countermeasures on it, and we had to move slow to not trigger them. I didn't see an option for this on the built in scanner.

It's not an everyday thing, by any means, but it is really good to have when you need it. I also like the ability to control port scan randomization and very fine grained control of the timing. Yes, I know, most tech guys say "more knobs is better", but after using the software for most of a decade, you might actually know what you are doing with it on occasion ;)

Part of it, I imagine is because we really like nmap and there is a mental "this is the best port scanner, because we've used this forever and trust what it gives". I know I do not think of Nessus as a port scanner.. I think of it as a vulnerability scanner. It's what you run after nmap to get in there and see what the target really presenting. After that, I'd go talk to folks in charge and start running around in the boxes with Metasploit/Core imPact/Canvas.

So, the short of it is, that like some of the other features that used to be in nessus (individual plugin upload directories, scheduled/ detached scans), we don't use it every day, but we do use it.

That a clear enough answer?

Doug Nordwall
Unix Administrator
EMSL Computer and Network Support
Unclassified Computer Security
Phone: (509)372-6776; Fax: (509)376-0420
The best book on programming for the layman is "Alice in Wonderland"; but that's because it's the best book on anything for the layman.


_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Unable to update plugins, George A. Theall
Next by Date:  Command-line in linux, Gonzalez, Matthew
Previous by Thread:  Re: How to use Nessus 3.0.3 (Linux) with Nmap port scanning, A User
Next by Thread:  Re: How to use Nessus 3.0.3 (Linux) with Nmap port scanning, Michel Arboi
Indexes:  [Date] [Thread] [Top] [All Lists]