Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Problem with NMap Scans

from [whitehat] Network Security [Permanent Link]
Subject: Re: Problem with NMap Scans
Date: Tue, 29 Jan 2008 22:13:59 +0530 
Hi list,

I'm using the following options:

nmap -sS -P0  -p1-65535 -T4 x.y.x.z
nmap -sU -P0  -p1-65535 -T4 x.y.x.z

Normally the scan statistics should be like the following:

with '-T4' without '-T4'

SYN Scan 1.50hrs(apprx.) 3.40hrs(apprx.)
UDP Scan 1.50hrs(apprx.) 3.40hrs(apprx.)

I could able to complete these scans with other port scanning tools like 'Unicornscan', superscan etc.,

I'm not able to understand one thing!!!
why nmap is failing to complete the scans in less time!!!!

Let us assume that there is a 'Firewall'.
Then how the other tools were able to complete those scans in less time, even though the strategy that is being used by nmap is different


cheers!!!!!!!!


Regards,
whitehaat.





Shaon Diwakar wrote:
Hi whitehat, 

What other options are you using? Are you performing a full port scan (i.e. all 
65535 ports) - UDP scan normally take a long, long time - but this is because 
UDP is connectionless. The docs have a very good explanation of why this 
technique takes a long time:
http://nmap.org/man/man-port-scanning-techniques.html

There may also be other non-nmap related issues going on here, for example a FW in between is doing something funny. Do you have problems using any other portscanner? 

Cheers,
sHz

----- Original Message ----
From: whitehat <whitehaat@gmail.com>
To: pen-test <pen-test@securityfocus.com>
Sent: Tuesday, 29 January, 2008 4:22:38 AM
Subject: Problem with NMap Scans

Hi List,

I'm using NMap for port scanning and I never faced any problems.
But in recent times when I scanned some systems it was showing nearly 8.00 hrs for SYN Scan and 19.00 hrs for UDP Scan to complete.
I tried with '-T4' option which is aggressive in nature but it is of no use.

Can anybody help what is going on there?????
Because we cannot wait up to 8.00 or 19.00 hrs if the Green Zone timings are on.



Thanks in advance!!!!!!!!!!!!!!


Cheers.......... :-)












------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------



------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: brute force ColdFusion MX7 admin page, me
Next by Date:  Re: ESX Vmware Physically connected to different segments, Dave Howe
Previous by Thread:  Re: Problem with NMap Scans, Shaon Diwakar
Next by Thread:  Uninformed Journal Release Announcement: Volume 9, Uninformed Journal
Indexes:  [Date] [Thread] [Top] [All Lists]