Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: nmap udp scan time

from [jpecou] Network Security [Permanent Link]
Subject: Re: nmap udp scan time
Date: 26 Oct 2007 19:24:43 -0000 
Kevin,
    I believe UDP scans can take such a long time because UNLIKE TCP scans UDP 
does not rely on a handshake and therefore their is no STATE assigned to a 
connection.  If your scanning a firewalled machine that is not replying to the 
UDP packets that are sent to CLOSED ports then I believe your scan will take 
quite sometime to complete. With TCP you will be sending out a SYN packet that 
will only wait a short time frame before determining that that port is either 
Open, Closed, or Filtered.  UDP is a less reliable scan which I believe is 
based on correlating results. It is hard for a UDP scan to determine if a port 
is Open|Filtered unless it discovers a true Closed port. So your scanner may be 
sitting around waiting for responses from ports that will never respond. Next 
time you scan try using a protocol analyzer like Wireshark/Ethereal to see if 
you are getting responses from the majority of ports you have scanned.  This is 
just my understanding of differences in scan types an
 d I apologize if any of my statements are incorrect.


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  fgdump 1.7.0 Released!, fizzgig
Next by Date:  RE: nmap udp scan time, Strykar
Previous by Thread:  Re: nmap udp scan time, Fyodor
Next by Thread:  Re: nmap udp scan time, jason_jones98
Indexes:  [Date] [Thread] [Top] [All Lists]