[isp-security] Re: Winows-based network scanner

Tue, 08 Oct 2002 09:24:42 -0700 

Based upon your requirements, you may find that superscan is very limiting.
It is great for quick, noisy TCP scans, but it has no functions for UDP
scans or for setting specific TCP flags such as SYN, or FIN, etc.

I've used superscan on numbers of networks to get a quick feel for them and
it's great for high-level recon to identify possible problem areas.

To truly do an indepth scan of a firewall or router with decent ACLs, you
need a decent scanner that can write custom packets.  I've found the best
tools for that job to be nmap although although I've found points where nmap
has failed.  A tool of choice though is hping which is very simple in its
operations and can write custom packets.

If you feel even more adventurous, use netcat which can do almost anything
ip related.

Happy scanning but remember, as the previous poster stated, be a polite
scanner.

Bradley J. Bartram


-----Original Message-----
From: chris lovell [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 08, 2002 11:18 AM
To: [EMAIL PROTECTED]
Subject: [isp-security] Re: Winows-based network scanner


thanks
       |       |      Chris Lovell
      |||     |||     CCNP
     |||||   |||||    Cisco Systems
    ||||||| |||||||   801-736-3939 ext. 55330
 .:|||||||||||||||||:. [EMAIL PROTECTED]
  C  i  s  c  o  S  y  s  t  e  m  s

----- Original Message -----
From: "A. M. Salim" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, October 08, 2002 9:01 AM
Subject: [isp-security] Re: Winows-based network scanner


> Hi,
>
> > Pretty much what I would like to be able to do is scan a customers
> > border router or firewall to see what ports or services are open?
>
> You will need a host to run the scan from, your choice of Linux/UNIX or
> Windows.  On Linux, try nmap.  On Windows, try SuperScan
> (http://www.webattack.com/get/superscan.shtml).  Both are free.
>
> Be sure to alert your scan targets and get their permission (their network
> admins especially) before you initiate a scan, to avoid getting hand
> slapped, and as a matter of simple courtesy.
>
> best regards
> Mike Salim.
>
>
> ____________  The ISP-SECURITY Discussion List  ____________
> To Join: mailto:[EMAIL PROTECTED]
> To Remove: mailto:[EMAIL PROTECTED]
> Archives: http://isp-lists.isp-planet.com/isp-security/archives/
> To Remove: mailto:%%email.unsub%%
>


____________  The ISP-SECURITY Discussion List  ____________
To Join: mailto:[EMAIL PROTECTED]
To Remove: mailto:[EMAIL PROTECTED]
Archives: http://isp-lists.isp-planet.com/isp-security/archives/
To Remove: mailto:%%email.unsub%%



____________  The ISP-SECURITY Discussion List  ____________
To Join: mailto:[EMAIL PROTECTED]
To Remove: mailto:[EMAIL PROTECTED]
Archives: http://isp-lists.isp-planet.com/isp-security/archives/
To Remove: mailto:[EMAIL PROTECTED]

Reply via email to