Re: how to run attacks using nessus

To:	"Ron Gula" <rgula@tenablesecurity.com>
Subject:	Re: how to run attacks using nessus
From:	Girish <girishramgopal@gmail.com>
Date:	Wed, 9 May 2007 19:56:03 +0530
Cc:	nessus@list.nessus.org
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	nessus-list1@securepoint.com
Delivered-to:	nessus@list.nessus.org
Dkim-signature:	a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=e0OEH3/+H3I6j3by+e7NDJzRPsiQXpv35ZKJDE9gQ1GSFh4Gr407xdXg1ecMPBydwAXYNDCdXjyv9PIxGA9sk18yWMpdBsiuD2HZSB/uFulakTdeXrF5FmxRllcZb/s9LxgNKLZ9Wd66ogG7kV8VQZ6nyyi9JJayNdJ92sAJUOU=
Domainkey-signature:	a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=cnZUZ6pBCaD8cHfNZqjc5DDc+yUFmr6WhOnZufiFc63D9nnOl3FKORYQDzAyFQ7lg2t9Q2oUML/8sDpDfUxNBgVmTvAD5phk2MXmk45xivvr2V3T2oNwbcdwQfp1Eo7+OVxnA5q+dGKPl85y5uqgl/A2C6YcnPsj30l8KdfrBZY=
In-reply-to:	<4641B5BE.2010301@tenablesecurity.com>
List-archive:	<http://mail.nessus.org/pipermail/nessus>
List-help:	<mailto:nessus-request@list.nessus.org?subject=help>
List-id:	Discussion of Nessus software <nessus.list.nessus.org>
List-post:	<mailto:nessus@list.nessus.org>
List-subscribe:	<http://mail.nessus.org/mailman/listinfo/nessus>, <mailto:nessus-request@list.nessus.org?subject=subscribe>
List-unsubscribe:	<http://mail.nessus.org/mailman/listinfo/nessus>, <mailto:nessus-request@list.nessus.org?subject=unsubscribe>
References:	<886334340705082140v1374632dg2abcc37cbce5390e@mail.gmail.com> <4641B5BE.2010301@tenablesecurity.com>
Sender:	nessus-bounces@list.nessus.org

Hello Ron,

That was an excellent link.

Please tell me one more thing, like if I have to scan all the protocols over TCP of a host behind the firewall from external world, should I have a policy for allowing all TCP traffic in my firewall?

I hope am correct. Please correct me if I am wrong. I can proceed soon.

Regards,

Girish

On 5/9/07, Ron Gula <rgula@tenablesecurity.com> wrote:

Girish wrote:
> Hello All,
>
> I am new to Nessus. My requirement is to run TCP , UDP, ICMP related
> attacks from WAN to the the gateway. This is for validating the
> Firewall capabilities of my gateway.
>
> Regards,
> Girish

Hi Girish,

If you scan your gateway with Nessus, then you are testing the open
ports and services of your gateway/firewall/IPS, not how well it is
blocking attacks and probes.

You should target a system behind your firewall or gateway and compare
this to results of an internal scan of the same system.

Please see this blog entry which also covers NAT issues for more
information:

http://blog.tenablesecurity.com/2006/08/using_nessus_to.html

Ron Gula, CTO
Tenable Network Security

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

<Prev in Thread]	Current Thread	[Next in Thread>
how to run attacks using nessus, Girish Re: how to run attacks using nessus, Ron Gula Re: how to run attacks using nessus, Girish <= Re: how to run attacks using nessus, Ron Gula Re: how to run attacks using nessus, Girish

Previous by Date:	Re: how to run attacks using nessus, Girish
Next by Date:	Nessus and Nikto, Holstein, Robert - BLS CTR
Previous by Thread:	Re: how to run attacks using nessus, Ron Gula
Next by Thread:	Re: how to run attacks using nessus, Ron Gula
Indexes:	[Date] [Thread] [Top] [All Lists]