Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Port Scanning Issues

from [ebk_lists] Network Security [Permanent Link]
Subject: Re: Port Scanning Issues
Date: 26 Jun 2007 13:20:56 -0000 
Since you mention Superscan, I am going to assume that you are doing this on a 
windows system. Most likely a windows XP SP2 system. SP2 drastically changed 
the way the TCP/IP stack works in XP and thus created numerous problems with 
port scanning tools. I can't speak for the other tools you mention, having 
never run them from a windows XP box, but I know for a fact that Superscan 
results are unpredictable after installing SP2. You may want to try making your 
scan smaller, and running 'net stop shared services' before launching your 
scan. Sometimes, running Superscan twice will yield accurate results the second 
time. One last thing you may want to try is to use a full connect scan with 
superscan. This is very noisy, but the syn scan is flaky at best with SP2. 

I've reached the point where I no longer use superscan for these reasons, which 
is unfortunate, because it used to work really well. 

I'm sure others on the list can speak about running the other tools and getting 
better results from them.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Port Scanning Issues, Steinar Watne
Next by Date:  Re: Port Scanning Issues, sherwyn . williams
Previous by Thread:  Re: Port Scanning Issues, Lee Lawson
Next by Thread:  [ISR] :: Infobyte Security Research :: release (ISR-sqlget.pl) v1.0.0, Francisco Amato
Indexes:  [Date] [Thread] [Top] [All Lists]