Description: Any Network Vulnerability Assessment exercise consists of the following steps:
- Finding all the hosts on the network
- Fingerprinting their Operating systems
- Detecting open ports on the system
- Mapping the ports to various network services
- Detecting the version of the services running
- Mapping the service version to various discovered security vulnerabilities
- Verifying if the service on the host is actually vulnerable to an attack or if it has been patched
The above are also the steps a pen tester would go through while auditing the security of a network. In my personal experience most administrators allow most hosts to run on the default configuration. This in general has most services running by default and thus making those hosts vulnerable to security breaches.
In order to scan a network for hosts, port scanning, fingerprinting Operating systems and services, Nmap is a really great tool. We have covered
Nmap usage in great detail here. However, for scanning hosts for vulnerabilities nothing can beat the capabilities or the flexibility offered by the
Nessus vulnerability scanner offered by Tenable Security.In the video below, we learn how to use the Nessus vulnerability scanner to first discover the hosts on a given network, select individual hosts and scan them for various vulnerabilites. You can
download the Nessus scanner from here.
Tags: tools ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Comments:
I need someone who is capable of hacking* websites & accessing their email database
I don't need scraping,web crawling or extractors
I need this sites HACKED so I gain access to their email DB
I will need to test the result u give me,if it checks out,I am willing to pay up to 3000$
per website and 10-20 websites monthly,which will increase upon delivery of faster & quality
service
Pls note,CONTINUITY is what I am after...I NEED A GOOD PARTNER I CAN WORK WITH FOR A VERY
LONG TIME!. I HAVE AT LEAST 500 WEBSITES ON MY LIST AND IM WILLING TO PAY 3000$ PER WEBSITE
PLEASE SEND ME A MAIL IF U CAN DO THIS ASAP ; omorye007 (at) yahoo (dot) com
Cheers