Re: Port Scanner Reports

From: Ian (pentest@fishnet.co.uk)
Date: Tue Nov 01 2005 - 05:15:22 EST

• Next message: Michael Gargiullo: "RE: RE: Vuln Scanner"
• Previous message: Miguel Dilaj: "RE: Insecure Hash Algorithms (MD5) and NTLMv2"
• In reply to: Daniel Miessler: "Re: Port Scanner Reports"
• Next in thread: Richard Zaluski: "RE: Port Scanner Reports"
• Reply: Richard Zaluski: "RE: Port Scanner Reports"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On 30 Oct 2005 at 11:19, Daniel Miessler wrote:

<snip>

> A friend and I are writing a tool to do this right now; it's called
> netdiff, and if you'd like to be part of the test group, drop me an
> email. We're still coding it but should have something relatively
> shortly.
>
> The focus of our tool is finding both changed hosts *and* changed
> ports -- so if you have new systems pop up it'll show you, and if you
> have new ports pop up on existing systems, it'll show you those as
> well.

Hi Daniel,

Is it anything to do with this from Engarde?

http://ftp.engardelinux.org/pub/engarde/people/pax/netdiff/

<Quote>
NetDiff is a network reporting tool written in perl that runs nmap portscans of a specified network
or networks and stores
the results to a MySQL database. It can then report the differences between successive scans,
giving administrators a
snapshot view of recent changes on their network.
This report is very useful for network maintenance and monitoring, it will automatically let you
know when:
o A new host is added to the network.
o A host is shut down or disconnected from the network.
o A service has stopped running.
o A new service port has been opened.
Additionally, if version and OS scanning is enabled, the report will list those differences as well,
telling you if:
o A server daemon was upgraded or patched.
o The host´s operating system was upgraded or changed.
</Quote>

Regards

Ian

-- 
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Michael Gargiullo: "RE: RE: Vuln Scanner"
• Previous message: Miguel Dilaj: "RE: Insecure Hash Algorithms (MD5) and NTLMv2"
• In reply to: Daniel Miessler: "Re: Port Scanner Reports"
• Next in thread: Richard Zaluski: "RE: Port Scanner Reports"
• Reply: Richard Zaluski: "RE: Port Scanner Reports"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:07 EDT