Hemanth Pasumarthi, profile picture
Uploaded byHemanth Pasumarthi
PPT, PDF3,657 views

Port scanning

The document discusses port scanning, a technique used by both network administrators and attackers to identify open ports on a server or host. It highlights the differences between defensive and malicious port scanning methods and mentions popular tools like nmap and shadow security scanner, which are used for security assessments. The conclusion emphasizes the importance of implementing robust security measures such as IP spoofing and stateful firewall rules to prevent attacks stemming from port scans.

Embed presentation

Downloaded 116 times
Nmap Scanner and Shadow Security Scanner
What is Port scanner? A port scanner is a software application designed to  probe a server or host for open ports. This is often  used by administrators to verify security policies of  their networks and by attackers to identify running  services on a host with the view to compromise it.
The “good way” of doing port scanning The activity of port scanning can be done as part of security assessment of one’s own organization seeking to weed out security holes. It is more of a defensive approach to seek vulnerabilities and destroy them rather than reactive approach. The malicious way of doing port scanning Hackers or anyone with a malicious intent can do “port scanning” by systematically probing open ports which might lead hackers to gain entry into organizations and steal their private data.
Port Scanning The process of examining a range of IP addresses to determine what services are running on a network. Port-scanning tools can be complex, must learn their strengths and weaknesses and understanding how and when you should use these tools.
Conduct Test Scan all ports when doing a test, not just the well- known ports. (Ports 1 to 1023) Many programs use port numbers outside the range of well-known ports. If find that port 65301 is open can check the information at the CVE Web site for a possible vulnerability in pc Anywhere.
Using Port-Scanning Tools Hundreds of port-scanning tools are available for both hackers and security testers. Not all are accurate, so using more than one port- scanning tool is recommended.
Nmap One of the most popular port scanners and adds new features constantly, such as OS detection and fast multiple-probe ping scanning. Nmap also has a GUI front end called Zenmap that makes working with complex options easier. Open source
Nmap Must hide from network devices or IDSs that recognize an inordinate amount of pings or packets being sent to their networks. This ACK scan constituted a DoS attack on the network Use stealth attacks that are more difficult to detect.
Nmap results
The services supported are: FTP, SSH, Telnet, SMTP, DNS, Finger, HTTP, POP3, IMAP, NetBIOS, NFS, NNTP, SNMP, Squid (Shadow Security Scanner is the only scanner to audit proxy servers - other scanners just verify ports availability), LDAP (Shadow Security Scanner is the only scanner to audit LDAP servers - other scanners limit their actions to ports verification), HTTPS, SSL, TCP/IP, UDP, and Registry services. Because of a fully open (ActiveX-based) architecture any professional with knowledge of VC++, C++ Builder or Delphi may easily expand the capabilities of the Scanner. ActiveX technology also enables the system administrators to integrate Shadow Security Scanner into practically any ActiveX supporting product. Shadow Security Scanner
S.S.S Results
Conclusion: To prevent this type of attack it is essential therefore that you implement IP spoofing at the network edge, and also make use of stateful firewall rules. Since the success of this type of attack hinges around the predictability of the IP ID, using systems that don’t succumb to this (mainly newer versions of Linux and Solaris) would be best, although not necessarily possible.
Enable only the traffic you need to access internal hosts — preferably as far as possible from the hosts you’re trying to protect — and deny everything else. This goes for standard ports, such as TCP 80 for HTTP and ICMP for ping requests. Configure firewalls to look for potentially malicious behavior over time and have rules in place to cut off attacks if a certain threshold is reached, such as 10 port scans in one minute or 100 consecutive ping (ICMP) requests. Most firewalls and IPSs can detect such scanning and cut it off in real time.
THANK YOU

More Related Content

PPTX
Nmap project presentation : Unlocking Network Secrets: Mastering Port Scannin...
byBoston Institute of Analytics
 
PPTX
Network Penetration Testing
byMohammed Adam
 
PPT
Port Scanning
byamiable_indian
 
PPTX
Nmap
bySreekanth Narendran
 
PDF
Nmap basics
byitmind4u
 
PPT
intrusion detection system (IDS)
byAj Maurya
 
PPTX
Ethical Hacking - sniffing
byBhavya Chawla
 
PPT
Netcat
byyogendra singh chahar
 
Nmap project presentation : Unlocking Network Secrets: Mastering Port Scannin...
byBoston Institute of Analytics
 
Network Penetration Testing
byMohammed Adam
 
Port Scanning
byamiable_indian
 
Nmap
bySreekanth Narendran
 
Nmap basics
byitmind4u
 
intrusion detection system (IDS)
byAj Maurya
 
Ethical Hacking - sniffing
byBhavya Chawla
 
Netcat
byyogendra singh chahar
 

What's hot

PDF
12 types of DDoS attacks
byHaltdos
 
PPSX
Intrusion detection system
bygaurav koriya
 
PPT
Spoofing
bySanjeev
 
PPTX
Firewall and Types of firewall
byCoder Tech
 
PPTX
Phishing ppt
bySanjay Kumar
 
PPTX
Network security
byEstiak Khan
 
PPTX
Intrusion detection
byCAS
 
PPT
DDoS Attack PPT by Nitin Bisht
byNitin Bisht
 
PPTX
Ip spoofing ppt
byAnushakp9
 
PPT
Proxy Server
byguest095022
 
PPTX
Firewall
byNilkanth Shingala
 
PPTX
What is Penetration Testing?
bybtpsec
 
PPT
Intrusion Detection Systems and Intrusion Prevention Systems
byCleverence Kombe
 
PPTX
Red team and blue team in ethical hacking
byVikram Khanna
 
PPTX
Firewall
bySaurabh Chauhan
 
PPTX
Burp suite
bySOURABH DESHMUKH
 
PPTX
Security threats
byQamar Farooq
 
PPTX
Types of cyber attacks
bykrishh sivakrishna
 
PPTX
Basics of Denial of Service Attacks
byHansa Nidushan
 
PPTX
DDoS - Distributed Denial of Service
byEr. Shiva K. Shrestha
 
12 types of DDoS attacks
byHaltdos
 
Intrusion detection system
bygaurav koriya
 
Spoofing
bySanjeev
 
Firewall and Types of firewall
byCoder Tech
 
Phishing ppt
bySanjay Kumar
 
Network security
byEstiak Khan
 
Intrusion detection
byCAS
 
DDoS Attack PPT by Nitin Bisht
byNitin Bisht
 
Ip spoofing ppt
byAnushakp9
 
Proxy Server
byguest095022
 
Firewall
byNilkanth Shingala
 
What is Penetration Testing?
bybtpsec
 
Intrusion Detection Systems and Intrusion Prevention Systems
byCleverence Kombe
 
Red team and blue team in ethical hacking
byVikram Khanna
 
Firewall
bySaurabh Chauhan
 
Burp suite
bySOURABH DESHMUKH
 
Security threats
byQamar Farooq
 
Types of cyber attacks
bykrishh sivakrishna
 
Basics of Denial of Service Attacks
byHansa Nidushan
 
DDoS - Distributed Denial of Service
byEr. Shiva K. Shrestha
 

Viewers also liked

PPTX
Network scanning
byoceanofwebs
 
PDF
Ch 5: Port Scanning
bySam Bowne
 
RTF
Port Scanning Overview
byPublicly traded global multi-billion services company
 
PDF
Ch 3: Network and Computer Attacks
bySam Bowne
 
PPTX
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
byRavi Rajput
 
PDF
Beginner's Guide to the nmap Scripting Engine - Redspin Engineer, David Shaw
byRedspin, Inc.
 
PDF
NMAP by Shrikant Antre & Shobhit Gautam
byn|u - The Open Security Community
 
PPTX
NMAP - The Network Scanner
byn|u - The Open Security Community
 
PDF
Nmap
byFat-Thing Gabriel-Culley
 
PPTX
N map presentation
byulirraptor
 
PPTX
Nmap(network mapping)
byshwetha mk
 
PPT
Dynamic Port Scanning
byamiable_indian
 
PPTX
Understanding NMAP
byPhannarith Ou, G-CISO
 
PDF
Nmap Basics
byamiable_indian
 
PPTX
Nmap 9 truth "Nothing to say any more"
byabend_cve_9999_0001
 
PDF
Hacking With Nmap - Scanning Techniques
byamiable_indian
 
PPT
Sectools
bysecuredome
 
PDF
Scan tool basics
bygustavus diagnosis
 
PDF
ethical-hacking-guide
byMatt Ford
 
PPT
Common hacking tactics
byFariha Khudzri
 
Network scanning
byoceanofwebs
 
Ch 5: Port Scanning
bySam Bowne
 
Port Scanning Overview
byPublicly traded global multi-billion services company
 
Ch 3: Network and Computer Attacks
bySam Bowne
 
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
byRavi Rajput
 
Beginner's Guide to the nmap Scripting Engine - Redspin Engineer, David Shaw
byRedspin, Inc.
 
NMAP by Shrikant Antre & Shobhit Gautam
byn|u - The Open Security Community
 
NMAP - The Network Scanner
byn|u - The Open Security Community
 
Nmap
byFat-Thing Gabriel-Culley
 
N map presentation
byulirraptor
 
Nmap(network mapping)
byshwetha mk
 
Dynamic Port Scanning
byamiable_indian
 
Understanding NMAP
byPhannarith Ou, G-CISO
 
Nmap Basics
byamiable_indian
 
Nmap 9 truth "Nothing to say any more"
byabend_cve_9999_0001
 
Hacking With Nmap - Scanning Techniques
byamiable_indian
 
Sectools
bysecuredome
 
Scan tool basics
bygustavus diagnosis
 
ethical-hacking-guide
byMatt Ford
 
Common hacking tactics
byFariha Khudzri
 

Similar to Port scanning

PPTX
Using metasploit
byCyberRad
 
PDF
eLea4555555555555555555555555555555rnSecurity .pdf
bysheetcyber
 
DOCX
Contents namp
byshwetha mk
 
DOCX
Contents namp
byshwetha mk
 
PDF
O PODER DO NMAP ATRAVÉS DE SEUS COMANDOS.pdf
byMaicon Wendhausen
 
PPT
Module 3 Scanning
byleminhvuong
 
PDF
A REVIEW ON NMAP AND ITS FEATURES
byIRJET Journal
 
DOCX
Assessment Questions and Answers1. What are the diff.docx
byfredharris32
 
PPTX
Null Delhi chapter - Feb 2019
byNikhil Raj
 
PPTX
Recon with Nmap
byOWASP Delhi
 
PPTX
Cyber security-Active Scanning Networks-Nmap
byAdelSayed9
 
PDF
A Study Of Open Ports As Security Vulnerabilities In Common User Computers
byJoshua Gorinson
 
PPTX
Capstone Project - IMRAN HAFIZ MUSHTAQUE AHMED ABBASI.pptx
byHafizAbbasi3
 
PDF
Network Penetration Testing Toolkit - Nmap, Netcat, and Metasploit Basics
byBishop Fox
 
PPTX
Nmap and metasploitable
byMohammed Akbar Shariff
 
PPT
NMAP1.ppt
byDakshKhurana15
 
PPTX
NMap
byPritesh Raka
 
PPTX
Scanning networks (by piyush upadhyay)
byPiyush Upadhyay
 
PPT
Nmap(network mapping)
bySSASIT
 
PDF
A COMPREHENSIVE ANALYSIS OF NETWORK SCANNING AND SECURITY ASSESSMENT TOOL
byIJNSA Journal
 
Using metasploit
byCyberRad
 
eLea4555555555555555555555555555555rnSecurity .pdf
bysheetcyber
 
Contents namp
byshwetha mk
 
Contents namp
byshwetha mk
 
O PODER DO NMAP ATRAVÉS DE SEUS COMANDOS.pdf
byMaicon Wendhausen
 
Module 3 Scanning
byleminhvuong
 
A REVIEW ON NMAP AND ITS FEATURES
byIRJET Journal
 
Assessment Questions and Answers1. What are the diff.docx
byfredharris32
 
Null Delhi chapter - Feb 2019
byNikhil Raj
 
Recon with Nmap
byOWASP Delhi
 
Cyber security-Active Scanning Networks-Nmap
byAdelSayed9
 
A Study Of Open Ports As Security Vulnerabilities In Common User Computers
byJoshua Gorinson
 
Capstone Project - IMRAN HAFIZ MUSHTAQUE AHMED ABBASI.pptx
byHafizAbbasi3
 
Network Penetration Testing Toolkit - Nmap, Netcat, and Metasploit Basics
byBishop Fox
 
Nmap and metasploitable
byMohammed Akbar Shariff
 
NMAP1.ppt
byDakshKhurana15
 
NMap
byPritesh Raka
 
Scanning networks (by piyush upadhyay)
byPiyush Upadhyay
 
Nmap(network mapping)
bySSASIT
 
A COMPREHENSIVE ANALYSIS OF NETWORK SCANNING AND SECURITY ASSESSMENT TOOL
byIJNSA Journal
 

Recently uploaded

PDF
Bain & Company 2025 Technology - Insights
bymedia887923
 
PPTX
2026-01-18 Hebrews 03 (shared slides).pptx
byDale Wells
 
DOCX
Best Platforms for Acquiring Aged LinkedIn Accounts Today.docx
bymarketing
 
PDF
Goldman Sachs Third Quarter 2025 Earnings Results Presentation
byshubham490975
 
PDF
EY - Parthenon CEO Outlook Survey (2025)
byswastik121049
 
PDF
L.E.K. Consulting’s 2025 Office of the CFO Survey: A Study of AI (2025)
byshubham490975
 
PPTX
Bob Stewart The Call 01 18 2025.pptx
byFamilyWorshipCenterD
 
PPTX
Right Triangle Similarity Theorem or 9th grade.pptx
by59012022
 
PDF
BCG (Centre for Growth):- The Next Act: A Vision for the UK’s Creative Future...
bymedia887923
 
PPTX
How to choose mobile app development company.pptx
byjamesandersonuk40
 
PDF
Goldman Sachs Asset Management Investment Outlook 2026
byshubham490975
 
PDF
McKinsey & Company Technology Trends Outlook (2025)
bymedia887923
 
PDF
Booz Allen Velocity Magazine V4 (Fall 2025)
byswastikpaul2017
 
PDF
BCG Executive Perspectives: Future of Marketing with GenAI 2025
bymedia887923
 
PDF
Accenture Technology Vision 2025 (AI: A Declaration of Autonomy)
bymedia887923
 
PDF
EY - Parthenon US Consumer Sentiment Survey 2025
byswastik121049
 
PPTX
Unit - 1 HISTORY IN PHARMACEUTICAL SUBSTANCE, TYPES AND SOURCES OF IMPURITIES
byShyamSudarsan1
 
DOCX
15 Secure Websites to Buy Google Ads Accounts.docx
byDeveloper Digital marketig is pvaisback
 
PDF
Indonesia Quarterly Pharma Market Update Q2 2024.pdf
byGerrySusanto2
 
PPTX
Computerized system validation in pharmaceutical industry
byVinod Chauhan
 
Bain & Company 2025 Technology - Insights
bymedia887923
 
2026-01-18 Hebrews 03 (shared slides).pptx
byDale Wells
 
Best Platforms for Acquiring Aged LinkedIn Accounts Today.docx
bymarketing
 
Goldman Sachs Third Quarter 2025 Earnings Results Presentation
byshubham490975
 
EY - Parthenon CEO Outlook Survey (2025)
byswastik121049
 
L.E.K. Consulting’s 2025 Office of the CFO Survey: A Study of AI (2025)
byshubham490975
 
Bob Stewart The Call 01 18 2025.pptx
byFamilyWorshipCenterD
 
Right Triangle Similarity Theorem or 9th grade.pptx
by59012022
 
BCG (Centre for Growth):- The Next Act: A Vision for the UK’s Creative Future...
bymedia887923
 
How to choose mobile app development company.pptx
byjamesandersonuk40
 
Goldman Sachs Asset Management Investment Outlook 2026
byshubham490975
 
McKinsey & Company Technology Trends Outlook (2025)
bymedia887923
 
Booz Allen Velocity Magazine V4 (Fall 2025)
byswastikpaul2017
 
BCG Executive Perspectives: Future of Marketing with GenAI 2025
bymedia887923
 
Accenture Technology Vision 2025 (AI: A Declaration of Autonomy)
bymedia887923
 
EY - Parthenon US Consumer Sentiment Survey 2025
byswastik121049
 
Unit - 1 HISTORY IN PHARMACEUTICAL SUBSTANCE, TYPES AND SOURCES OF IMPURITIES
byShyamSudarsan1
 
15 Secure Websites to Buy Google Ads Accounts.docx
byDeveloper Digital marketig is pvaisback
 
Indonesia Quarterly Pharma Market Update Q2 2024.pdf
byGerrySusanto2
 
Computerized system validation in pharmaceutical industry
byVinod Chauhan
 

Port scanning

  • 1.
    Nmap Scanner andShadow Security Scanner
  • 2.
    What is Portscanner? A port scanner is a software application designed to  probe a server or host for open ports. This is often  used by administrators to verify security policies of  their networks and by attackers to identify running  services on a host with the view to compromise it.
  • 3.
    The “good way”of doing port scanning The activity of port scanning can be done as part of security assessment of one’s own organization seeking to weed out security holes. It is more of a defensive approach to seek vulnerabilities and destroy them rather than reactive approach. The malicious way of doing port scanning Hackers or anyone with a malicious intent can do “port scanning” by systematically probing open ports which might lead hackers to gain entry into organizations and steal their private data.
  • 4.
    Port Scanning The processof examining a range of IP addresses to determine what services are running on a network. Port-scanning tools can be complex, must learn their strengths and weaknesses and understanding how and when you should use these tools.
  • 5.
    Conduct Test Scan allports when doing a test, not just the well- known ports. (Ports 1 to 1023) Many programs use port numbers outside the range of well-known ports. If find that port 65301 is open can check the information at the CVE Web site for a possible vulnerability in pc Anywhere.
  • 6.
    Using Port-Scanning Tools Hundredsof port-scanning tools are available for both hackers and security testers. Not all are accurate, so using more than one port- scanning tool is recommended.
  • 7.
    Nmap One of themost popular port scanners and adds new features constantly, such as OS detection and fast multiple-probe ping scanning. Nmap also has a GUI front end called Zenmap that makes working with complex options easier. Open source
  • 8.
    Nmap Must hide fromnetwork devices or IDSs that recognize an inordinate amount of pings or packets being sent to their networks. This ACK scan constituted a DoS attack on the network Use stealth attacks that are more difficult to detect.
  • 9.
  • 10.
    The services supportedare: FTP, SSH, Telnet, SMTP, DNS, Finger, HTTP, POP3, IMAP, NetBIOS, NFS, NNTP, SNMP, Squid (Shadow Security Scanner is the only scanner to audit proxy servers - other scanners just verify ports availability), LDAP (Shadow Security Scanner is the only scanner to audit LDAP servers - other scanners limit their actions to ports verification), HTTPS, SSL, TCP/IP, UDP, and Registry services. Because of a fully open (ActiveX-based) architecture any professional with knowledge of VC++, C++ Builder or Delphi may easily expand the capabilities of the Scanner. ActiveX technology also enables the system administrators to integrate Shadow Security Scanner into practically any ActiveX supporting product. Shadow Security Scanner
  • 11.
  • 12.
    Conclusion: To prevent thistype of attack it is essential therefore that you implement IP spoofing at the network edge, and also make use of stateful firewall rules. Since the success of this type of attack hinges around the predictability of the IP ID, using systems that don’t succumb to this (mainly newer versions of Linux and Solaris) would be best, although not necessarily possible.
  • 13.
    Enable only thetraffic you need to access internal hosts — preferably as far as possible from the hosts you’re trying to protect — and deny everything else. This goes for standard ports, such as TCP 80 for HTTP and ICMP for ping requests. Configure firewalls to look for potentially malicious behavior over time and have rules in place to cut off attacks if a certain threshold is reached, such as 10 port scans in one minute or 100 consecutive ping (ICMP) requests. Most firewalls and IPSs can detect such scanning and cut it off in real time.
  • 14.