Re: Application Fingerprinting & Reporting

To:	"Asthana, Vishal" <vasthana@ipolicynetworks.com>
Subject:	Re: Application Fingerprinting & Reporting
From:	"Doug Nordwall" <raleel@gmail.com>
Date:	Mon, 20 Nov 2006 08:44:31 -0800
Cc:	nessus@list.nessus.org
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	nessus-list1@securepoint.com
Delivered-to:	nessus@list.nessus.org
Domainkey-signature:	a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=J/p91Y4i5OKRnO7xsdHC7V8uCIkLwh7aLh73eRezPxeM9wxp2bmFkPMbUYEILqUKuMpNB1VHgrmYCHf/spErnvsl1mKW3woUE55Aw1Ht2C8dtw2F4AzJTjHiWMlzFWmY8KWmg/ZEl/4+pcZhLlPrxy6HfSDhuvul9jy0rp9tYd4=
In-reply-to:	<D269C7CBDF116A48982D4DC51F111BE3026D9E62@nsezhpmail01.india.ipolicynet.com>
List-archive:	<http://mail.nessus.org/pipermail/nessus>
List-help:	<mailto:nessus-request@list.nessus.org?subject=help>
List-id:	Discussion of Nessus software <nessus.list.nessus.org>
List-post:	<mailto:nessus@list.nessus.org>
List-subscribe:	<http://mail.nessus.org/mailman/listinfo/nessus>, <mailto:nessus-request@list.nessus.org?subject=subscribe>
List-unsubscribe:	<http://mail.nessus.org/mailman/listinfo/nessus>, <mailto:nessus-request@list.nessus.org?subject=unsubscribe>
References:	<D269C7CBDF116A48982D4DC51F111BE3026D9E62@nsezhpmail01.india.ipolicynet.com>
Sender:	nessus-bounces@list.nessus.org

Try using a credentialed check. Those will find local applications and tell you versions. A non-credentialled check normally just hits the ports and can often only tell version from the banners of externally listening applications

On 11/19/06, Asthana, Vishal <vasthana@ipolicynetworks.com> wrote:

Hi,

Is there any Nessus plugin that helps report Application names and versions e.g. Internet Explorer, Yahoo, Firefox etc? There are Application DETECTION plugins for the same but the post-scan operation does not report the specific Application installed. It only reports FTP Server, Web Server, Oracle Listener etc.

I have already referred to the following old threads and ensured that find_service.nes was part of the scan.

http://mail.nessus.org/mailman/htdig/nessus/2004-February/msg00302.html

http://mail.nessus.org/mailman/htdig/nessus/2004-February/msg00218.html

I have also tried using Nmap scanner instead of the Nessus TCP scanner with the same results.

http://www.nessus.org/documentation/index.php?doc=nmap-usage

Any pointers would be helpful.

Thanks

Vishal

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

--
Doug Nordwall
Unix, Network, and Security Administrator
Noise proves nothing. Often a hen who has merely laid an egg cackles as if she laid an asteroid. -- Mark Twain

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

<Prev in Thread]	Current Thread	[Next in Thread>
Application Fingerprinting & Reporting, Asthana, Vishal Re: Application Fingerprinting & Reporting, Doug Nordwall <= Re: Application Fingerprinting & Reporting, Ron Gula Re: Application Fingerprinting & Reporting, Ron Gula Re: Application Fingerprinting & Reporting, Ron Gula

Previous by Date:	Re: Nessusd 3.0.3 not updating every 24 hours, George A. Theall
Next by Date:	Re: Nessus plugins update failure, George A. Theall
Previous by Thread:	Application Fingerprinting & Reporting, Asthana, Vishal
Next by Thread:	Re: Application Fingerprinting & Reporting, Ron Gula
Indexes:	[Date] [Thread] [Top] [All Lists]