RE: Port Scanner Reports

["Hayes, Ian" <Ian.Hayes () wynnlasvegas com>]

> -----Original Message-----
> From: Jeff Brossette [mailto:jeff.brossette () gmail com]
> Sent: Thursday, October 06, 2005 12:51 PM
> To: pen-test () securityfocus com
> Subject: Port Scanner Reports
>
> All,
>
> I am looking for a port scanning tool (software or hardware, open
> source or commercial) that I can configure to run on a regularly
> scheduled basis, say
> once a week or once a month, for around 500 internal servers and
> workstations (Unix/Linux, Windows and Novell).
>
> The goal is to produce a "diff" report that will identify any new
> ports that have been opened on any of the servers or workstations from
> the previous scan.
>
> This would need to be a completely automatic process that would email
> out the results after each scan cycle.
>
> Are there any products that can perform this task?

I suppose you could go the freeware route and put an nmap job into cron,
diff it and email it via shell script...

If you're not against spending some money, look at Rapid7's Nexpose.

Ian Hayes | Senior Systems Engineer
Wynn Las Vegas
3131 South Las Vegas Blvd, Las Vegas, NV 89109
Ph (702) 770-3252 | Cell (702) 266-6002
Ian.hayes () wynnlasvegas com



------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------