Penetration Testing mailing list archives
Re: [PEN-TEST] Noisy/stealthy ?
From: N Catlow <n.catlow () ERIS DERA GOV UK>
Date: Mon, 13 Nov 2000 12:17:25 +0000
Stealthy scans can be unreliable on noisy networks, if the customer
wants a 'stealthy' scan to stimulate IDS then fine but I would confirm
the actual security of a system with a full scan.
To 'simulate' a real attack is very hard purely from a time
perspective potential intruders have a great deal of time to scan
networks stealthily, there is relatively little time on an average
pentest.
I think there is a distinct difference between a security/services
assessment and a detection/response assessment that comes under the
umbrella of a pentest but would require different scan techniques.
regards,
Nathan.
--
N.Catlow () eris dera gov uk | All opinions | IT Security, DERA,
| are my own and | WWB009, St Andrews Rd,
| not DERA's | Malvern, Worcs, England.
*I'd love to give my 0.02 worth - Have you got change for a dollar?*
Current thread:
- [PEN-TEST] Noisy ou stealthy ? Nicolas Gregoire (Nov 09)
- Re: [PEN-TEST] Noisy ou stealthy ? Jose Nazario (Nov 09)
- Re: [PEN-TEST] Noisy ou stealthy ? Iván Arce (Nov 09)
- Re: [PEN-TEST] Noisy ou stealthy ? Greg (Nov 09)
- Re: [PEN-TEST] Noisy ou stealthy ? andy lowton (Nov 11)
- Re: [PEN-TEST] Noisy/stealthy ? N Catlow (Nov 14)
- Re: [PEN-TEST] Noisy ou stealthy ? Don Bailey (Nov 09)
- Re: [PEN-TEST] Noisy ou stealthy ? a007 (Nov 10)
- <Possible follow-ups>
- Re: [PEN-TEST] Noisy ou stealthy ? Eric Lauzon (Nov 09)
- Re: [PEN-TEST] Noisy ou stealthy ? Dunker, Noah (Nov 09)
- Re: [PEN-TEST] Noisy ou stealthy ? Masse, Robert (Nov 09)