Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Port Scanning.

from [infosecgod] Network Security [Permanent Link]
Subject: Re: Port Scanning.
Date: 14 Dec 2004 20:57:09 -0000 
In-Reply-To: <200412140446.iBE4kpsP012373@ivolution.ca>


Port scanning is only part of it.  If you are using >manual or automated tools 
you still need to VERIFY that >the port number associated with the protocol is 
indeed >what it advertises to be.  Nmap for instance blindly >accepts that 
port 22 is associated with SSH but it this >fact?  You should always verify 
the port protocol to >ensure that this is the case.  


This is true  however nmap offers the sV flag which does a fairly good job of 
service enumeration

J/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Penetration Testing Methodologies, rzaluski
Next by Date:  RE: delving deeper, David Taylor
Previous by Thread:  RE: Port Scanning., Faisal Khan
Next by Thread:  Password Audit tools, Jeffrey M.Miller CISSP
Indexes:  [Date] [Thread] [Top] [All Lists]