Your SlideShare is downloading. ×
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Network Security Nmap N Nessus
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

Network Security Nmap N Nessus

5,507

Published on

Published in: Technology
1 Comment
2 Likes
Statistics
Notes
  • good
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
No Downloads
Views
Total Views
5,507
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
179
Comments
1
Likes
2
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide
  • Transcript

    • 1. Network Security 2 assignment
      Presentation By
      Sarah deori
      UtkarshVerma
      Vandan Joshi
      Vijay Shukla
      RowinChineah
    • 2. TCP connect scan
    • 3. TCP connect() Scanning
      Theconnect() system call provided by your operating system is used to open a connection to every interesting port on the machine. If the port is listening, connect() will succeed, otherwise the port isn't reachable.
      Advantage
      Don’t need Special Privileges
      Speed
      Disadvantage
      Easily detectable and filterable
    • 4. SYN scan
    • 5. Advantages of syn scan
      The TCP SYN scan never actually creates a TCP session, so isn't logged by the destination host's applications
      Since an application session is never opened, the SYN scan is also less stressful to the application service.
      Disadvantages of syn scan
      • The TCP SYN scan requires that nmap have privileged access to the system. Without privileged access, nmap can't create the raw packets necessary for this half-open connection process.
    • Fin scan
    • 6. Xmas scan
    • 7. Null scan
    • 8. Least traffic scan
      Steath Scanning - The FIN Scan (-sF), Xmas Tree Scan (-sX), and Null Scan (-sN)
      Requires Privileged Access: YESIdentifies TCP Ports: YESIdentifies UDP Ports: NO
      These are called "stealth" scans because they send a single frame to a TCP port without any TCP handshaking or additional packet transfers
      NMAP response for These SCAN
      Closed
      Open|Filtered
      The open|filtered result is combined because firewalls often drop these frames without a response
    • 9. Undetectable scan
      The XMAS scan determines which ports are open by sending packets with invalid flag settings to a target device. It is considered a stealth scan because it may be able to bypass some firewalls and IDSes more easily than the SYN scans. The Nmap XMAS scan sends packets with the Finish (FIN), Push (PSH), and Urgent (URG) flags set.
      Because this flag combination is invalid and should never occur in normal traffic, there is no established convention for dealing with these types of packets. Different TCP stacks will respond in different ways. Typically, closed ports will respond with a RST/ACK, and open ports will drop the packet and not respond. However, some TCP stacks will respond with RST packets from all ports, even open ports, and some systems will not respond to any packets. Personal firewalls and packet filters will also alter responses to this scan
    • 10. XMAS Scan
    • 11. why vulnerability scan
      Although network scanning identifies active hosts, ports, services, and applications, vulnerability scanning goes one step further to identify weaknesses and vulnerabilities on a system that may be exploited by an attacker
    • 12. Is Nessus ideal open-source vulnerability scanner
      Its goal to detect
      Vulnerabilities that allow a remote cracker to control or access sensitive data on a system.
      Misconfiguration
      Default passwords, a few common passwords, and blank/absent passwords on some system accounts. Nessus can also call Hydra (an external tool) to launch a dictionary attack.
    • 13. Nessus Operation
      In typical operation, Nessus begins by doing a port scan with one of its four internal port scanners to determine which ports are open on the target and then tries various exploits on the open ports. The vulnerability tests, available as subscriptions, are written in NASL (Nessus Attack Scripting Language), a scripting language optimized for custom network interaction.
    • 14. Difference between nessus professional and home feed
      Commercial organizations which use the Nessus vulnerability scanner must purchase a Professional Feed subscription to scan their network, obtain support, updates to their database of vulnerability checks and compliance auditing
      A 'Home Feed' is available for free to home users, but can not be used professionally.
      There are more features of Proffessional Feed than home feed
    • 15. Features of Professional feed Nessus
      The newest Nessusplugins as soon as they are released
      Policy Compliance Checks - to make sure every host on your network complies with your local security policy.
      Perform an unlimited amount of complete PCI-DSS audits
      Conduct operating system, application and SQL database configuration audits against CERT, CIS, DISA STIGs, GLBA, HIPAA, NIST SCAP FDCC, NSA and PCI standards.
      Conduct content audits such as adult content, personally identifiable information (credit cards, SSN, etc.) corporate spreadsheets, and much more.
      Perform web application audits of custom and embedded applications to test for cross site scripting, SQL injection and much more.
      SCADA checks to detect and audit SCADA devices
      Virtual Appliance - access to a download of the Tenable Appliance which includes Nessus 4 and works with VMware ESX, Server, Workstation and Fusion.
      Access to operational and technical assistance from Tenable's experienced support staff with regards to the deployment and use of their scanners, as well as the writing of audit policies for the compliance checks or content checks.

    ×