Penetration Testing mailing list archives

Re: Port Scanning.

From: <infosecgod () gmail com>
Date: 14 Dec 2004 20:57:09 -0000

In-Reply-To: <200412140446.iBE4kpsP012373 () ivolution ca>

Port scanning is only part of it.  If you are using >manual or automated tools you still need to VERIFY that >the port 
number associated with the protocol is indeed >what it advertises to be.  Nmap for instance blindly >accepts that port 
22 is associated with SSH but it this >fact?  You should always verify the port protocol to >ensure that this is the 
case.


This is true  however nmap offers the sV flag which does a fairly good job of service enumeration

J/

Current thread:

Re: Port Scanning., (continued)
- - - Re: Port Scanning. robert (Dec 22)
- Re: Port Scanning. Delron Troy (Dec 13)
- Re: Port Scanning. Jeffrey Denton (Dec 14)
- Re: Port Scanning. miguel . dilaj (Dec 13)
  - Message not available
    - Re: Port Scanning. Faisal Khan (Dec 13)
- RE: Port Scanning. Piskovatskov, Alexey (Dec 13)
  - RE: Port Scanning. rzaluski (Dec 14)
    - Re: Port Scanning. Martin Mačok (Dec 15)
- RE: Port Scanning. miguel . dilaj (Dec 14)
- RE: Port Scanning. Faisal Khan (Dec 14)
- Re: Port Scanning. infosecgod (Dec 15)