Re: Scanning Class A network

From: Matt Bellizzi (matt.bellizzi@nokia.com)
Date: Mon Oct 24 2005 - 14:57:08 EDT


Just an idea

First ping the host to see if it's up with a super fast 1 packet
ping. The hosts that respond have them stored into a file and then
have nmap do a full port scan on those hosts. I noticed your tried
deviding the scan up into smaller chucks. Have you tried running those
chunks in parallel? Of course you may have already done all of this
and it's possible I'm wasting your time.

pen-test-return-1078478378-Matt.Bellizzi=nokia.com@securityfocus.com wrote:

>Hello All,
> Recently I was given a task to carry out a port scan of an entire valid
>Class A range (Dont ask me what the huge pool of valid IP's was for :) ).
>The scan needed to be carried out externally, and not from within the
>network to identify hosts and ports exposed to the Internet.
> The problem compounded cause of the following limitations :
>1. ICMP was not allowed in the network
>2. The IP range was to be scanned every month for the entire port range fro=
>m
>1-65535 for TCP & UDP
> After searching for a suitable scanner which could scan such a large range
>in reasonable time, I could think of only nmap, nessus, superscan and ISS.
> But because of the limitations stated above,all the tools took a huge
>amount of time (ran into month).
> I have struggled with options within the tools, tried configurable
>parameters (host time out, parallelism, RTT etc) and divided into smaller
>class C networks and scanned.but still the scan seems to take ages even if
>it is
> Any advise would be welcome :)
>
>Cheers
> tarunthenut
>
>------------------------------------------------------------------------------
>Audit your website security with Acunetix Web Vulnerability Scanner:
>
>Hackers are concentrating their efforts on attacking applications on your
>website. Up to 75% of cyber attacks are launched on shopping carts, forms,
>login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
>futile against web application hacking. Check your website for vulnerabilities
>to SQL injection, Cross site scripting and other web attacks before hackers do!
>Download Trial at:
>
>http://www.securityfocus.com/sponsor/pen-test_050831
>-------------------------------------------------------------------------------
>
>
>
>

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:05 EDT