Penetration Testing mailing list archives

Re: [PEN-TEST] Any way to speed up mapping for penetration testing?

From: batz <batsy () VAPOUR NET>
Date: Thu, 15 Mar 2001 13:00:19 -0500

On Thu, 15 Mar 2001, Randy Molen wrote:

:Am currently working with a customer to map their network prior to
:penetration/vulnerability testing using NMap.  Customer doesn't allow Ping
:and wants 65000 ports tested.  Since we can't Ping, NMap takes a long time
:to test a single host resulting in a very long testing period.  We've tried
:setting a time-out value of 30 seconds but end up missing hosts with this
:value.  Has anyone had an experience like this and if so, any
:recommendations to efficiently map a network without Ping?

Use nmap -PT for tcp ping.

nemesis is also usefull, along with hping for that sort of thing as it
allows a little more control of the packets you are sending to enumerate
machines.

Though unless you muck about with ttl's you won't find routers internally
in their network if they are filtering ping/traceroute, so your mapping is
going to be off, and you will probably miss something crucial like a
router with filters, a firewall or a proxy.

--
batz
Reluctant Ninja
Defective Technologies

Current thread:

[PEN-TEST] Any way to speed up mapping for penetration testing? Randy Molen (Mar 15)
- Re: [PEN-TEST] Any way to speed up mapping for penetration testing? Weiss, Bill (Mar 15)
- Re: [PEN-TEST] Any way to speed up mapping for penetration testing? Shoten (Mar 15)
- Re: [PEN-TEST] Any way to speed up mapping for penetration testing? morgothan (Mar 15)
- Re: [PEN-TEST] Any way to speed up mapping for penetration testing? batz (Mar 15)
- Re: [PEN-TEST] Any way to speed up mapping for penetration testing? H D Moore (Mar 15)