Penetration Testing mailing list archives

Re: nmap results

From: Tim <tim-pentest () sentinelchicken org>
Date: Sun, 11 Sep 2005 20:25:58 -0400

I have recently been doing some scans and in some cases nmap returns many
ports to be open. the weird thing is that the ports are sequential.
i know many of you might be tempted to say its a honeypot but i know for a
fact its not. does anyone know why does this happen and how?


You didn't specify whether these are TCP or UDP.

If it is UDP, then firewalled ports could appear open to a port scanner,
which might explain what you are seeing.

tim

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

nmap results Mohamed Abdel Kader (Sep 11)
- Re: nmap results Tim (Sep 12)
- <Possible follow-ups>
- Re: nmap results Christine Kronberg (Sep 12)
- RE: nmap results Bill Louis (Sep 12)
- Re: nmap results King Fuddler (Sep 12)
- Re: nmap results Fósforo (Sep 12)
- Re: nmap results Brian Smith-Sweeney (Sep 12)