A vulnerability scanner is a computer program designed to map systems and search for weaknesses in an application, computer or network. The scanner typically first looks for active IP addresses, open ports, operating systems (OS), and running applications. It then either creates a report or moves on. Thereafter, the vulnerability scanner may determine the patch level of the OS or applications; at this stage, the scanner may actually crash the OS or application. Finally, the scanner may attempt to exploit any detected vulnerability. A vulnerability scanner may be either malicious or friendly. Friendly scanners usually stop at mapping and reporting vulnerabilities; an unfriendly scanner is designed to go further.
Contents |
Types of vulnerability scanners
Friendly types of vulnerability scanners:
- CGI Scanner (usually restricted to banner checking; cgi scanners can find vulnerable scripts but usually don't exploit them)[1]
Network reconnaissance
A vulnerability scanner can be used to conduct network reconnaissance, which is typically carried out by a remote attacker attempting to gain information or access to a network on which it is not authorized or allowed. Network reconnaissance is increasingly used to exploit network standards and automated communication methods. The aim is to determine what types of computers are present, along with additional information about those computers—such as the type and version of the operating system. This information can be analyzed for known or recently discovered vulnerabilities that can be exploited to gain access to secure networks and computers. Network reconnaissance is possibly one of the most common applications of passive data analysis. Early generation techniques, such as TCP/IP passive fingerprinting, have accuracy issues that tended to make it ineffective. Today, numerous tools exist to make reconnaissance easier and more effective. [2] [3] [4]
References
- ^ What is a CGI Scanner?
- ^ http://insecure.org/presentations/Shmoo06/shmoo-fyodor-011406.pdf Advanced Network Reconnaissance with Nmap
- ^ http://www.arxceo.com/documents/ISSA_antirecon_article.pdf Network Reconnaissance defense techniques from ISSA
- ^ http://www.sift.com.au/36/172/xml-port-scanning-bypassing-restrictive-perimeter-firewall.htm XML Port Scanning Attacks
Programs
- Port scanners (Nmap)
- Network scanners (Nessus, SAINT, OpenVAS)
- List of Web Application Security Scanners
- CGI scanners (Arirang; Nikto; Whisker)
- List of Vulnerability Scanners
External links
- What is a Web Application Security Scanner?
- What can't a Web Application Scanner find?
- Web Application Vulnerability Scanners - a Benchmark
- List of Vulnerability Scanners
 |
This computer network-related article is a stub. You can help Wikipedia by expanding it. |
This entry is from Wikipedia, the leading user-contributed encyclopedia. It may not have been reviewed by professional editors (see full disclaimer)
