| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
NMap Version Scanning This paper outlines NMap version scanning, including remote OS detection, fingerprinting, ping sweeps, and other topics.
By Fyodor, 05/20/2004
|
|
The Art of Port Scanning This paper details many of the techniques used to determine what ports (or similar protocol abstraction) of a host are listening for connections. These ports represent potential communication channels. Mapping their existence facilitates the exchange of information with the host, and thus it is quite useful for anyone wishing to explore their networked environment, including hackers. Despite what you have heard from the media, the Internet is NOT all about TCP port 80. Anyone who relies exclusively on the WWW for information gathering is likely to gain the same level of proficiency as your average AOLer, who does the same. This paper is also meant to serve as an introduction to and ancillary documentation for a coding project I have been working on. It is a full featured, robust port scanner which (I hope) solves some of the problems I have encountered when dealing with other scanners and when working to scan massive networks. The tool, nmap, supports the following:
By Fyodor, 05/20/2004
|
|
Remote OS detection via TCP/IP Stack FingerPrinting This paper discusses how to glean precious information about a host by querying its TCP/IP stack. I first present some of the "classical" methods of determining host OS which do not involve stack fingerprinting. Then I describe the current "state of the art" in stack fingerprinting tools. Next comes a description of many techniques for causing the remote host to leak information about itself. Finally I detail my (nmap)implementation of this, followed by a snapshot gained from nmap which discloses what OS is running on many popular Internet sites.
By Fyodor, 05/20/2004
|
|
An Introduction to NMAP NMAP is a multifaceted utility used to scan a range of IP addresses, identify active systems, determine which ports on those systems are open, and identify the respective operating systems. Like all security tools it can be used defensively, by a network manager, to identify weaknesses that need to be corrected, or offensively, by an attacker, probing for vulnerabilities to exploit. In plain English, nmap will scan a range of host addresses or a network address range entered at the command line. It will determine which addresses are active systems currently on line. It will probe a range of ports, selectable by the user, to see what services the identified system is running. Finally it will probe the system for responses to some unusual packets to try and guess what operating system is installed on the target system.
03/24/2004
|
|
Scanning and Defending Networks with Nmap This paper discusses nmap, a very popular tool used to probe hosts to determine what services are available, this process may sometimes be used as a precursor to an attack on your systems.
03/02/2004
|
