Book Image

Practical Network Scanning

By : Ajay Singh Chauhan
Book Image

Practical Network Scanning

By: Ajay Singh Chauhan

Overview of this book

Network scanning is the process of assessing a network to identify an active host network; same methods can be used by an attacker or network administrator for security assessment. This procedure plays a vital role in risk assessment programs or while preparing a security plan for your organization. Practical Network Scanning starts with the concept of network scanning and how organizations can benefit from it. Then, going forward, we delve into the different scanning steps, such as service detection, firewall detection, TCP/IP port detection, and OS detection. We also implement these concepts using a few of the most prominent tools on the market, such as Nessus and Nmap. In the concluding chapters, we prepare a complete vulnerability assessment plan for your organization. By the end of this book, you will have hands-on experience in performing network scanning using different tools and in choosing the best tools for your system.
Table of Contents (19 chapters)
Title Page
Packt Upsell
Contributors
Preface
Index

Chapter 7. Vulnerability Assessment

In the previous chapter, we learned about various aspects of security IT infrastructure, including monitoring and responding to incidents, threat detection, and diverting attackers.

In today's digital world, information is accessed, stored, and transferred electronically. The security of this information and the systems storing it are critical to companies' reputations, as well as for providing a better user experience. Consequently, the need to analyze and remediate vulnerabilities from IT infrastructure have become the most important tasks for any security expert, system admin, or network administrator. Even if an organization has a well-managed security infrastructure in place such as a firewall, antivirus, and intrusion detection system, an attacker can still gain unauthorized access by exploiting the vulnerabilities. In the context of software security, vulnerabilities are specific flaws or oversights in a piece of software that can be exploited by...