Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: nessus generated different results?!

from [Gareth Davies] Network Security [Permanent Link]
Subject: Re: nessus generated different results?!
Date: Mon, 27 Mar 2006 16:04:40 +0800
Doug Fox wrote:
Lately, I ran NESSUS 2.6 against a list of seven (7) Check Point VPN-1 on Windows hosts with different results:

The 1st run, the report showed 6 hosts instead of all 7, missing one host. ( I had triple checked the IP addresses were accurate.)
The 2nd run, right after the first run, against the same list of hosts, the report showed three (3) hosts *including* the one missing in the 1st run, five their disappeared, or not responded.
The 3rd run, on the second day, the report showed 2 hosts.

Appreciate any thought on these scenarios are appreciated.

Thanks,

DF

Quit likely your IP was blacklisted by the devices after the first run, this often happens between first and second runs with something noisy like nmap or Nessus.

Perhaps the one that didnt show up had already blocked you for some reason.

You can

a) Either take this into account and work with it (or around it) and note it.

b) Ask for the sys admin to whitelist your IP address so you can gain more consistent results

Cheers

--
Gareth Davies - BS7799 LA, OPST

Manager - Security Practice

Network Security Solutions MSC Sdn. Bhd.
Suite E-07-21, Block E, Plaza Mont' Kiara, No. 2 Jalan Kiara,
Mont’ Kiara, 50480
Kuala Lumpur, Malaysia Phone: +603-6203 5303 or +603-6203 5920

www.mynetsec.com


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request@cenzic.com
------------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  CodeBrws.asp, Miguel Gomez
Next by Date:  Re: Trust Relationship Analysis, Marco Ivaldi
Previous by Thread:  nessus generated different results?!, Doug Fox
Next by Thread:  New article on SecurityFocus: Learning an advanced skillset, Erin Carroll
Indexes:  [Date] [Thread] [Top] [All Lists]