Re: Port Scanner Reports

[Packet Man <packetman () altsec info>]

I have a humble submission to this discussion.

In port scanning, I have personally been tasked
with two related systems:

1.  A routine schedule system that emails
results

2.  Letting nagios do the scanning

I have been using a homemade script for both.

The original shell script provides for keeping
a baseline profile, or replacing it each scan,
and emails changes for each host scanned.

The latest script is a grossly unofficial plugin
to use with nagios.

What I've written is GPL and available for the
asking.  It's not the best code in the world,
but it has worked fine for me and provides a
framework for anyone who desires to improve
it.

I haven't posted the email notification based
script yet, but the nagios plugin is at:

http://www.altsec.info/check_scan.html

Feel free to have a look, use as you wish,
etc.

--
Excellence in InfoSec and Linux
http://www.altsec.info


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------