Network Maps can prove very useful for testing security of networks where you have limited knowledge of the environment. These maps can shed a lot of useful information about network layout, important routers, traffic flow which may aid in placing firewalls or ids devices too!
Since I was already using Nessus for vulnerability scanning, it made sense to use its output somehow to generate network map for the network. Many will agree that text is not always the best way to display information, and the same goes for representing network layout information. http://www.secguru.com/param/generate_network_maps_from_nessus_results Here is a simple Perl script NBE2DOT, which reads the NBE output file from Nessus Scanner and generates a network map using information gained through trace route plugin 10287. Future advancements could be use of other plugin information (eg OS Detection, DNS Names etc.) from the NBE file and use different colors for end_nodes ! HTH, -=skillz=- . _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
