Book Image

Practical Network Scanning

By : Ajay Singh Chauhan
Book Image

Practical Network Scanning

By: Ajay Singh Chauhan

Overview of this book

Network scanning is the process of assessing a network to identify an active host network; same methods can be used by an attacker or network administrator for security assessment. This procedure plays a vital role in risk assessment programs or while preparing a security plan for your organization. Practical Network Scanning starts with the concept of network scanning and how organizations can benefit from it. Then, going forward, we delve into the different scanning steps, such as service detection, firewall detection, TCP/IP port detection, and OS detection. We also implement these concepts using a few of the most prominent tools on the market, such as Nessus and Nmap. In the concluding chapters, we prepare a complete vulnerability assessment plan for your organization. By the end of this book, you will have hands-on experience in performing network scanning using different tools and in choosing the best tools for your system.
Table of Contents (19 chapters)
Title Page
Packt Upsell
Contributors
Preface
Index

Questions


  1. Which of the following is not a factor in securing the environment against a security attack?
    1. The education of the attacker
    2. The system configuration
    3. The network architecture
    4. The business strategy of the company
    5. The level of access provided to DBA
  1. What does the http you type at the beginning of any site's address stand for?
    1. Hyper Text Transfer Protocol
    2. HTML Transfer Technology Process
    3. Hyperspace Terms and Technology Protocol
    4. Hyperspace Techniques and Technology Progress
  1. SQL Injection is an attack in which what kind of code is processed to the database server?
    1. Malicious
    2. Redundant
    3. Clean
    4. Non-malicious
  1. Which of the following is not a security exploit?
    1. Eavesdropping
    2. Cross-site scripting
    3. Authentication
    4. SQL Injection
    5. None of the above
  1. Which of the following is the most vulnerable to injection attacks?
    1. Session IDs
    2. Registry keys
    3. Network communications
    4. SQL queries based on user input
    5. None of the above are vulnerable to injection attacks