Penetration Testing mailing list archives
Re: run nmap automatically from index.html (??)
From: arvind doraiswamy <arvind.doraiswamy () gmail com>
Date: Thu, 17 Nov 2011 14:11:24 +0530
I second this. In addition to it, its going to flood your network as well and trigger off plenty of filtering devices as well if they aren't tuned correctly. Wouldn't an easier way be: --- Have a simple policy that covers users connecting external devices to the network --- Have a good access control policy in place [operational and technical(firewalls etc)] that limits access to anything new If this is done, you've already isolated things to an extent and prevented compromised machines from "connecting" to the rest of the network. --- Now if you're serious, create a policy/document/whatever which maps applications in your environment to "what ports it opens". This becomes your baseline which is continuously edited as and when you're network changes. --- After that's in place and ONLY after that's in place, an Nmap/whatever tool scan once a week,month etc etc [You decide the period] will give you what is open and non conformant against your baseline. That I think should be enough :) I understand this is a slightly lengthy way to do it; but IMHO the only good way. Please correct me if I am wrong. Thanks Arvind
3.) Figure out how you're going to keep from filling up the web server's DASD with loads of nmap output. Think also about the processing power of the server. If 50 clients all connect and run nmap at the same time, how's that going to affect things? This could quickly turn into an easy to DoS your own web server.
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Re: run nmap automatically from index.html (??), (continued)
- Re: run nmap automatically from index.html (??) John Mason Jr (Nov 16)
- Re: run nmap automatically from index.html (??) Guillaume Friloux (Nov 16)
- Re: run nmap automatically from index.html (??) Justin Rogosky (Nov 16)
- Re: run nmap automatically from index.html (??) Sarah Loyd (Nov 16)
- RE: run nmap automatically from index.html (??) Kettlewell, Nate (Kansas City) (Nov 16)
- Re: run nmap automatically from index.html (??) securityfocus (Nov 16)
- Re: run nmap automatically from index.html (??) Daniel Miller (Nov 16)
- Re: run nmap automatically from index.html (??) Mihai Nitulescu (Nov 16)
- RE: run nmap automatically from index.html (??) Ward, Jon (Nov 16)
- RE: run nmap automatically from index.html (??) Ward, Jon (Nov 17)
- Re: run nmap automatically from index.html (??) arvind doraiswamy (Nov 17)