pen-test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Automated Nmap Scans / Front End

from [John Mason Jr] [Permanent Link][Original]
To: tom jones <p0rt_0@yahoo.com>
Subject: Re: Automated Nmap Scans / Front End
From: John Mason Jr <john.mason.jr@cox.net>
Date: Fri, 19 Jan 2007 13:47:39 -0500
Cc: pen-test@securityfocus.com
Delivered-to: sp-com-lists@consult.net
Delivered-to: pentest-list2@consult.net
Delivered-to: mailing list pen-test@securityfocus.com
Delivered-to: moderator for pen-test@securityfocus.com
In-reply-to: <297414.71232.qm@web55101.mail.re4.yahoo.com>
List-help: <mailto:pen-test-help@securityfocus.com>
List-id: <pen-test.list-id.securityfocus.com>
List-post: <mailto:pen-test@securityfocus.com>
List-subscribe: <mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe: <mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list: contact pen-test-help@securityfocus.com; run by ezmlm
References: <297414.71232.qm@web55101.mail.re4.yahoo.com>
Reply-to: john.mason.jr@cox.net
Resent-date: Fri, 19 Jan 2007 10:58:22 -0700 (MST)
Resent-from: pen-test-return-1078483439@securityfocus.com
Resent-message-id: <20070119175822.15AA6155972@outgoing2.securityfocus.com>
Resent-sender: listbounce@securityfocus.com
Sender: listbounce@securityfocus.com
User-agent: Thunderbird 1.5.0.9 (Windows/20061207) 
tom jones wrote:
> Hello,
> I am responsible for monitoring hundreds of machines
> over thousands of
> external IP addresses.  I currently run nmap manually
> once a week and import
> the results into Excel to compare them with the
> previous week to find hosts
> that are new and also take note of those that have
> been taken off the
> Internet.  I am looking for a web front end, batch
> process, or similar that
> would meet the following requirements.
> 
> -Input file of external IP ranges I am responsible for
> -Have the tool scan all ranges to determine responding
> IPs
> -Compare results to previous week and note exceptions
> -Scheduling capability to have this take place weekly
> 
>>>From a quick search, I found these two tools that I
> might try out if I have
> time.  I have not heard of them before and have not
> had a chance to read up
> on their capabilities:
> 
> http://sourceforge.net/projects/gwmos/
> http://sourceforge.net/projects/cancerbero/
> 
> I am also interested to hear thoughts on the best way
> to do host discovery.
> Many of our firewalls will block ICMP requests which
> is fast and not
> complete.  Scanning for every TCP and UDP port can
> take days.  I'm looking
> for a good middle ground that would be fairly complete
> but not take an
> excessive amount of time.  I currently scan for about
> 15 common TCP ports
> which takes about half of a day.
> 
> I have the ability to run these on either a Windows XP
> machine or a web
> server (php, etc.).  
> 
> Thanks in advance.
> 
> 
> 
> 
> 
You might look at PBNJ here is a link to an article about it
<http://www.samag.com/documents/s=10112/sam0702a/0702a.htm>

and the project website <http://pbnj.sourceforge.net/index.html>



John



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Automated Nmap Scans / Front End, David M. Zendzian
Next by Date:  RE: Apache Concurrent Users, Smith, Ryan
Previous by Thread:  Re: Automated Nmap Scans / Front End, dajackman
Next by Thread:  Re: Automated Nmap Scans / Front End, Ian
Indexes:  [Date] [Thread] [Top] [All Lists]