On Mon, Feb 23, 2004 at 05:52:54PM +0500, Khurram H Khan wrote:
> Please reply to this question: Does nessus send junk data to every port
> to get a response and then match the response against a database or does
> it send specific data for specific services running on a standard port
It sends an HTTP request (ie: some kind of junk data) and then reads the
response. The response is either the service banner, or an error
message, and then it identifies the running service based on that.
Nessus has done that since ~ 1999, and as far as I know, it was the
first scanner to implement this feature which was copied by many people.
(ie: eEye's Retina even uses the same GET HTTP request to identify
the services).
-- Renaud
_______________________________________________
Nessus mailing list
[EMAIL PROTECTED]
http://mail.nessus.org/mailman/listinfo/nessus
