Re: Comprehensive firewall test using Nmap?

[publists () enablesecurity com]

Scapy would be a good answer:

Welcome to Scapy (1.2.0.2)
> > > ans, unans = sr(IP(dst="192.168.1.1")/TCP(dport=[80],sport=[1,2,3,4,5,6]))
Begin emission:
...*.*.*.Finished to send 6 packets.
*.*.*
Received 14 packets, got 6 answers, remaining 0 packets
> > > ans.summary()
IP / TCP 192.168.1.137:tcpmux > 192.168.1.1:http S ==> IP / TCP 192.168.1.1:http > 192.168.1.137:tcpmux RA
IP / TCP 192.168.1.137:2 > 192.168.1.1:http S ==> IP / TCP 192.168.1.1:http > 192.168.1.137:2 RA
IP / TCP 192.168.1.137:compressnet > 192.168.1.1:http S ==> IP / TCP 192.168.1.1:http > 192.168.1.137:compressnet RA
IP / TCP 192.168.1.137:4 > 192.168.1.1:http S ==> IP / TCP 192.168.1.1:http > 192.168.1.137:4 RA
IP / TCP 192.168.1.137:rje > 192.168.1.1:http S ==> IP / TCP 192.168.1.1:http > 192.168.1.137:rje RA
IP / TCP 192.168.1.137:6 > 192.168.1.1:http S ==> IP / TCP 192.168.1.1:http > 192.168.1.137:6 RA
> > >


http://enablesecurity.com/

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------