Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: TR: Mapping Class A network ( any easy trick?)

from [James Riden] Network Security [Permanent Link]
Subject: Re: TR: Mapping Class A network ( any easy trick?)
Date: Tue, 22 Feb 2005 16:05:00 +1300 
Vicente Feito <vicente.feito@gmail.com> writes:


I keep reading the same mistake over and over, not talking about this 
particular message, but about something most admins do, they start flooding 
the network with nmap and trying to do a broadcast scan, that's insane, they 
do nmap -sS -p1-65535 x.x.x.x/24 or something like that, I don't mean to 
critizice, but I'm my opinion, what I do if I need something like this, is 
first, just find out what hosts are up, something like nmap -sP <whatever>


I believe that nmap does ping before doing the SYN scan by default, so
it won't generate thousands of SYNs for hosts which aren't up.

-P0    Do not try to ping hosts at all before scanning them.  
       [snip]
       By default, Nmap sends an ICMP echo request and a TCP ACK packet to 
       port 80.

-- 
James Riden / j.riden@massey.ac.nz / Systems Security Engineer
GPG public key available at: http://www.massey.ac.nz/~jriden/
This post does not necessarily represent the views of my employer.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Bypassing NTFS ACL, Thomas Brennan
Next by Date:  RE: Bypassing NTFS ACL, Steve Fletcher
Previous by Thread:  Re: TR: Mapping Class A network ( any easy trick?), Vicente Feito
Next by Thread:  Bypassing NTFS ACL, chris
Indexes:  [Date] [Thread] [Top] [All Lists]