RE: Fast UDP scan

Read here:

http://blog.tenablesecurity.com/2007/02/udp_service_and.html

This should help you understand why if you do a generic UDP portscan you
should not exceed 1 port per second. If the server OS rate limits the
ICMP code3 type 3 messages, your scanner may think the port is open.



Dennis
 

> -----Original Message-----
> From: listbounce@securityfocus.com 
> [mailto:listbounce@securityfocus.com] On Behalf Of Strykar
> Sent: Sunday, August 26, 2007 3:05 AM
> To: pen-test@securityfocus.com
> Cc: 'Attari Attari'
> Subject: RE: Fast UDP scan
>
> Read the documentation.
> You can also join #Unicornscan on EFnet.
>
>
>
> -----Original Message-----
> From: listbounce@securityfocus.com 
> [mailto:listbounce@securityfocus.com] On Behalf Of Attari Attari
> Sent: Saturday, August 25, 2007 11:37 AM
> To: pen-test@securityfocus.com
> Subject: Re: Fast UDP scan
>
> Thanks everyone for inputs...
>
> I'm excited about unicornscan however I get this
> error:
> /usr/bin/ld: cannot find -lnet
>
> when doing make...
>
> I'm running Fedora Core 5 so am not able to install the Linux 
> RPM too..
>
> Any idea what's going wrong?
>
> --- Jan Heisterkamp <janheisterkamp@web.de> wrote:
>
> > Yes he's looking for Unicornscan, but
> > unicornscan.org is down.
> > You can find it here:
> > Linux rpm: 
> http://rpmfind.net/linux/RPM/sourceforge/o/os/osace/unicornsca
> n-0.4.2-0.i386
> .html
> > or integrated in the OSSTMM Security Audit Correlation Engine there:
> > http://sourceforge.net/projects/osace
> > FreeBSD:
> http://www.freebsd.org/cgi/cvsweb.cgi/ports/security/unicornscan/
> > Regards,
> > Jan
> >
> > Pete Herzog schrieb:
> > > You're looking for Unicornscan:
> > http://www.unicornscan.org/
> > > Fastest scanner EVER.
> > >
> > > -pete.
> > > www-isecom.org
> > >
> > >
> > > Attari Attari wrote:
> > > > Hi Group:
> > > >
> > > > Is there a way to increase speed of UDP scan?
> > > >
> > > > I'm running a full UDP scan since 3 days on 3 IP 
> addresses and it 
> > > > is still not complete.
> > > > I gave following command:
> > > >
> > > > nmap -sU -p1-65535 -P0 xxx.yyy.zzz.aaa
> > > >
> > > > One way I can think of is is running parallel
> > nmap
> > > > scans by dividing ports like:
> > > >
> > > > nmap -sU -p1-30000 -P0 xxx.yyy.zzz.aaa nmap -sU 
> -p30000-65535 -P0 
> > > > xxx.yyy.zzz.aaa
> > > >
> > > > Would appreciate some inputs on this.
> > > >
> > > > Regards
> > > >
> > > >
> > > >
> > > >
> > > >
> > > >       Once upon a time there was 1 GB storage in
> > your inbox. To know
> > > > the happy ending go to
> http://help.yahoo.com/l/in/yahoo/mail/yahoomail/tools/tools-08.html
> > > >
> --------------------------------------------------------------
> ----------
> > > > This list is sponsored by: Cenzic
> > > >
> > > > Need to secure your web apps NOW?
> > > > Cenzic finds more, "real" vulnerabilities fast.
> > > > Click to try it, buy it or download a solution
> > FREE today!
> > > > http://www.cenzic.com/downloads
> --------------------------------------------------------------
> ----------
> > > >
> --------------------------------------------------------------
> ----------
> > > This list is sponsored by: Cenzic
> > >
> > > Need to secure your web apps NOW?
> > > Cenzic finds more, "real" vulnerabilities fast.
> > > Click to try it, buy it or download a solution
> > FREE today!
> > > http://www.cenzic.com/downloads
> --------------------------------------------------------------
> ----------
> > >
> --------------------------------------------------------------
> ----------
> > This list is sponsored by: Cenzic
> >
> > Need to secure your web apps NOW?
> > Cenzic finds more, "real" vulnerabilities fast.
> > Click to try it, buy it or download a solution FREE today!
> >
> > http://www.cenzic.com/downloads
> --------------------------------------------------------------
> ----------
> >
>
>
>
>       Once upon a time there was 1 GB storage in your inbox. 
> To know the happy ending go to 
> http://help.yahoo.com/l/in/yahoo/mail/yahoomail/tools/tools-08.html
>
>
>       5, 50, 500, 5000 - Store N number of mails in your 
> inbox. Go to 
> http://help.yahoo.com/l/in/yahoo/mail/yahoomail/tools/tools-08.html
>
> --------------------------------------------------------------
> ----------
> This list is sponsored by: Cenzic
>
> Need to secure your web apps NOW?
> Cenzic finds more, "real" vulnerabilities fast.
> Click to try it, buy it or download a solution FREE today!
>
> http://www.cenzic.com/downloads
> --------------------------------------------------------------
> ----------
>
>
> --------------------------------------------------------------
> ----------
> This list is sponsored by: Cenzic
>
> Need to secure your web apps NOW?
> Cenzic finds more, "real" vulnerabilities fast.
> Click to try it, buy it or download a solution FREE today!
>
> http://www.cenzic.com/downloads
> --------------------------------------------------------------
> ----------

------------------------------------------------------------------------------
NOTICE:  This electronic mail message and any attached files are confidential.  
The information is exclusively for the use of the individual or entity intended 
as the recipient.  If you are not the intended recipient, any use, copying, 
printing, reviewing, retention, disclosure, distribution or forwarding of the 
message or any attached file is not authorized and is strictly prohibited.  If 
you have received this electronic mail message in error, please advise the 
sender by reply electronic mail immediately and permanently delete the original 
transmission, any attachments and any copies of this message from your computer 
system. Thank you.

==============================================================================


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------