Book Image

Network Scanning Cookbook

By : Sairam Jetty
Book Image

Network Scanning Cookbook

By: Sairam Jetty

Overview of this book

Network scanning is a discipline of network security that identifies active hosts on networks and determining whether there are any vulnerabilities that could be exploited. Nessus and Nmap are among the top tools that enable you to scan your network for vulnerabilities and open ports, which can be used as back doors into a network. Network Scanning Cookbook contains recipes for configuring these tools in your infrastructure that get you started with scanning ports, services, and devices in your network. As you progress through the chapters, you will learn how to carry out various key scanning tasks, such as firewall detection, OS detection, and access management, and will look at problems related to vulnerability scanning and exploitation in the network. The book also contains recipes for assessing remote services and the security risks that they bring to a network infrastructure. By the end of the book, you will be familiar with industry-grade tools for network scanning, and techniques for vulnerability scanning and network protection.

Related Content you might be interested in

Current Title:

Small book image
Network Scanning Cookbook
Sairam Jetty
Sep, 2018 | 304 pages
Small book image
Kali Linux Network Scanning Cookbook.
Michael Hixon | Justin Hutchens
May, 2017 | 634 pages
Small book image
Nmap Network Exploration and Security Auditing Cookbook, Third Edition
Paulino Calderon
Sep, 2021 | 436 pages
Small book image
Learn Kali Linux 2019
Glen D Singh
Nov, 2019 | 550 pages
Table of Contents (10 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Sections
Get in touch
Free Chapter
1
Introduction to Network Vulnerability Scanning
Introduction to Network Vulnerability Scanning
Basic networks and their components
Network Vulnerability Scanning
Uses
Complexity
Response
Summary
2
Understanding Network Scanning Tools
Understanding Network Scanning Tools
Introducing Nessus and Nmap
Installing and activating Nessus
Downloading and installing Nmap
Updating Nessus
Updating Nmap
Removing Nessus
Removing Nmap
3
Port Scanning
Port Scanning
Introduction
How to specify a target
How to perform host discovery
How to identify open ports
How to manage specification and scan order
How to perform a script and version scan
How to detect operating system
How to detect and bypass network protection systems
How to use Zenmap
4
Vulnerability Scanning
Vulnerability Scanning
Introduction
How to manage Nessus policies
How to manage Nessus settings
How to manage Nessus user accounts
How to choose a Nessus scan template and policy
How to perform a vulnerability scan using Nessus
How to manage Nessus scans
5
Configuration Audits
Configuration Audits
Introducing compliance scans
Selecting a compliance scan policy
Introducing configuration audits
Performing an operating system audit
Performing a database audit
Performing a web application scan
6
Report Analysis and Confirmation
Report Analysis and Confirmation
Introduction
Understanding Nmap outputs
Understanding Nessus outputs
How to confirm Nessus vulnerabilities using Nmap and other tools
7
Understanding the Customization and Optimization of Nessus and Nmap
Understanding the Customization and Optimization of Nessus and Nmap
Introduction
Understanding Nmap Script Engine and its customization
Understanding the Nessus Audit policy and its customization
8
Network Scanning for IoT, SCADA/ICS
Network Scanning for IoT, SCADA/ICS
Introduction to SCADA/ICS
Using Nmap to scan SCADA/ICS
Using Nessus to scan SCADA/ICS systems
9
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

To get the most out of this book

You should have a good working knowledge of computer networks and vulnerability scanning so you can understand the terminologies and methodologies used in this book.

In order to follow the recipes, you will need to be running Windows or Kali Linux, and will require Metasploitable 2 by Rapid7 with the latest versions of Nmap and Nessus. For some of the recipes, such as those to do with configuration audits, you will need to have a Nessus professional license.

Download the color images

Conventions used

There are a number of text conventions used throughout this book.

CodeInText: Indicates code words in text, database table names, folder names, filenames, file extensions, pathnames, dummy URLs, user input, and Twitter handles. Here is an example: "Install the downloaded .msi file by following the instructions."

Any command-line input or output is written as follows:

nmap -sS -sV -PN -T4 -oA testsmtp -p T:25 -v -r 192.168.1.*

Bold: Indicates a new term, an important word, or words that you see on screen. For example, words in menus or dialog boxes appear in the text like this. Here is an example: "Select Quick scan from the Profile drop-down list."

Warnings or important notes appear like this.
Tips and tricks appear like this.
Previous Section
Next Section