Re: IP Address Auditing Tool?

From: Travis Schack (Travis@Vitalisec.com)
Date: Tue Jan 27 2004 - 19:20:52 EST


('binary' encoding is not supported, stored as-is) In-Reply-To: <20040124005042.10725.qmail@www.securityfocus.com>

>Hi,
>
>Anyone know of an auditing tool that will collect information on
>a specific subnet or range of all active IP addresses and display associated masks, default routes..etc. and then dump the output to a database so the collected information can be pulled up in a web page?


What restrictions do you have? Do you want to do this with an Active or Passive tool?

You could use a tool like IPTraf (http://cebu.mozcom.com/riker/iptraf/) and collect the info, but you would have to use some scripting (i.e., PERL) to get the results into a database.

How about using a Nessus server, using nmap to scan, and incorporate the NessusWX client and discover the systems and ports on the network. This client allows you to dump the results to a MySQL database.

You could use Nmap with nmap-diff, but you are still going to have to put together some scripting to get the information into a database and out.

Just some thoughts.

Travis
Vitalisec Inc.

---------------------------------------------------------------------------
----------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:47 EDT