Penetration Testing
Nmap Sep 30 2011 09:17PM
Ukpong (ukpong ukpong gmail com) (3 replies)
Re: Nmap Oct 02 2011 02:37AM
Jeffory Atkinson (jatkinson zelvin com) (1 replies)
Re: Nmap Oct 02 2011 09:35PM
John M. Martinelli (john martinelli redlevel org) (2 replies)
Re: Nmap Jan 02 2012 05:03PM
Juan Pablo (juan quine gmail com) (1 replies)
RE: Nmap Jan 02 2012 08:59PM
S Walker (walker_s hotmail co uk)
Opinions on Burp Suite Web App Scanner Oct 12 2011 03:31PM
Derrenbacker, L. Jonathan (JDerrenbacker KSHGS com) (5 replies)
Re: Opinions on Burp Suite Web App Scanner Oct 12 2011 05:14PM
Robin Wood (robin digininja org)
RE: Opinions on Burp Suite Web App Scanner Oct 12 2011 04:41PM
Ben de Bont (bendebont gmail com) (1 replies)
Re: Opinions on Burp Suite Web App Scanner Oct 19 2011 05:15AM
Meenal Mukadam (meenal mukadam gmail com) (1 replies)
Re: Opinions on Burp Suite Web App Scanner Oct 21 2011 01:24PM
Yiannis Koukouras (ikoukouras gmail com)
Re: Opinions on Burp Suite Web App Scanner Oct 12 2011 04:38PM
Fabio Cerullo (fcerullo gmail com)
Re: Opinions on Burp Suite Web App Scanner Oct 12 2011 04:37PM
Matt Gardenghi (mtgarden gmail com)
Re: Opinions on Burp Suite Web App Scanner Oct 12 2011 04:29PM
pand0ra (pand0ra usa gmail com)
Re: Nmap Oct 01 2011 06:40PM
Mel Chandler (mel chandler gmail com) (2 replies)
Re: Nmap Oct 03 2011 01:49PM
Marco Ivaldi (raptor mediaservice net)
Re: Nmap Oct 01 2011 06:48PM
james zero-internet org uk
Most of the time using nmap to tell if a host is up is the wrong thing to do.

What's the background? What's the host? Why not try an ssh/rdp port, or looking for a webserver?

Port scanning is messy and noisy, you're better testing thing one by one like that.

Sent from my BlackBerry® wireless device

-----Original Message-----

From: Mel Chandler <mel.chandler (at) gmail (dot) com [email concealed]>

Sender: listbounce (at) securityfocus (dot) com [email concealed]

Date: Sat, 1 Oct 2011 11:40:19

To: Ukpong<ukpong.ukpong (at) gmail (dot) com [email concealed]>

Cc: <pen-test (at) securityfocus (dot) com [email concealed]>

Subject: Re: Nmap

The best way I can think of off the top of my head is to do two

similar scans, one with a ping scan and the other looking for open

ports but without pinging (-Pn) dumping them to two different files

and do a diff between them. Granted if you have a host out there

without any ports open (or you just didn't scan for the port it had

open) you'll miss it. Maybe someone else has a better idea?

Chandler Bing

On Fri, Sep 30, 2011 at 2:17 PM, Ukpong <ukpong.ukpong (at) gmail (dot) com [email concealed]> wrote:

>

> Can somebody suggest the best NMAP commands for identifying hosts that

> are not responding to ICMP ping requests ?

>

> ------------------------------------------------------------------------

> This list is sponsored by: Information Assurance Certification Review Board

>

> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

>

> http://www.iacertification.org

> ------------------------------------------------------------------------

>

------------------------------------------------------------------------

This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org

------------------------------------------------------------------------

[ reply ]
Re: Nmap Oct 01 2011 06:33PM
Tim Gonzales (tim gonzales gmail com) (1 replies)
Re: Nmap Oct 01 2011 08:11PM
Jerry (sec-acct 14 oryx cc)


 

Privacy Statement
Copyright 2010, SecurityFocus