Network probing
Network probing is a critical step of the network security assessment process. It can be identified as checking the network for vulnerabilities. simply this is done by using several utilities. Network probing is also as important as checking for firewall logs, patches checking, and other vulnerability assessments.If someone needs to check how vulnerable his network, he uses a vulnerability checking tool that an intruder would use. There are major three types of probes that an intruder would use to evaluate a network
Port Scanning:
- There are 65535 ports used for internet services. Out of the first 1024 ports are known as well-known ports in computer networking. The port scanning process consists of scanning open ports of a network. For example, if port 23 seems to be opened, an intruder knows that the system is using Telnet. Keeping the unused ports closed is a responsibility of a network administrator to secure the system.
Enumeration:-
This is the process whereby hackers find out what is the integrity of the target or the victim. Those can be user accounts, Files, Folders, or anything on the devices.
Vulnerability assessment:-
This is the process where a tool is used to asset known vulnerabilities to a system. An attacker can use this kind of a tool and once a vulnerable point is sought, it can be used to hack the system.
There are a lot of tools freely available on the internet that can be used as vulnerability scanners. Some of these can be used as free versions
Ex :- Nessus, Qualys,Openvas, Netsparker, Nexpose, Retina …
Here it is used the Opens tool to show how these tools work. This can be easily installed in a Linux system following a few steps. Once installed successfully you can access the dashboard of the tool by running localhost:4000. It will be shown as follows. There are a lot of configurations to do a sophisticated vulnerability scan of a network.
Other Tools for Port Scanning
NMAP
There are a few other tools that can be used for port scanning.NMAP is one of them. This is also an open-source port scanner.
Here it is used Kali Linux and Nmap to scan the open port of a windows machine in the same network. The below image shows the output once Nmap <ip> runs on the terminal
If you need to check the actual services running in each port at the moment
nmap -sV <ip> can be used.
0 Comments