Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: fast nmap scan of XP boxes?

from [ilaiy] Network Security [Permanent Link]
Subject: Re: fast nmap scan of XP boxes?
Date: Sat, 29 Oct 2005 14:35:41 -0500 
Scanrand is not as reliable as nmap ..

./thanks
ilaiy

On 10/29/05, Juan B <juanbabi@yahoo.com> wrote:


Scanrand is bettr for this task.

Juan
--- Daniel Miessler <daniel@dmiessler.com> wrote:



On Aug 12, 2005, at 1:58 PM, Michael Weber wrote:


I am using nmap to create a list of targets that I

will then use other

tools to test.  My problem is how can I do a fast

scan of a large

(class
B) network of systems running XP, most with

firewalling turned on?

Will
nmap -sP still find the systems if ping does not?


I have something just for you; I use it constantly
during assessments
just for this purpose:

nmap -vv -n -sP
-PS21,22,23,25,53,80,110,135,139,143,445,1433,1521
$target | grep appears | grep up | cut -d" " -f2 >
$outfile

What this does is "ping" the host via not just ICMP,
but also via TCP
connections on the ports listed. :) It makes great
lists and, as you
know, it saves tons of time when you import a list
of active hosts
instead of just feeding a network.

Hope you like it. :) Oh, and here's my Nmap "Primer"
which has a
couple other decent nuggets:

http://dmiessler.com/study/nmap

--
Daniel R. Miessler
M: daniel@dmiessler.com
W: http://dmiessler.com
G: 0x316BC712











__________________________________
Yahoo! Mail - PC Magazine Editors' Choice 2005
http://mail.yahoo.com

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers 
do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------




------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Sniffing on a switch, ilaiy
Next by Date:  RE: Vuln Scanner, Richard Zaluski
Previous by Thread:  Re: fast nmap scan of XP boxes?, Juan B
Next by Thread:  distributed scanning, Laing, Brian
Indexes:  [Date] [Thread] [Top] [All Lists]