12-4 Flashcards
old toolthat has been popular for years with unix administrators. downloaded for free. will not work on windows. crated by dan farmer author of COPS and Wietse Venma. originally used by hackers to find out about a target system
Port Scanner for Unix: Satan
three classes of attacks
light
normal
heavy
an attack simply reports that hosts are available and what remote procedure call services
light attack
this attack probes the tagets by establishing various connections including telnet, FTP, WWW, and SMTP. used to discover what OS the host is running and what vulnerabilities may be available.
Normal Attack
icludes everything that a normal attack does with the addition of a search for several other known vulnerabilities.
heavy attack
network vulnerability assessment scanner that scans a system and finds security weaknesses. prioritizes critical vulnerabilities, and recommends safeguards. auto updates, highly configurable
SAINT
powerful network scanner, commercial product fromTenable. Works on Unix Like systems and Windows ( Mac OS X, Mac OS, Free BSD, Linux, Solaris.
nessus
popular protocol monitor. ships free with microsoft. freely available. this is a TCP/IP protocol monitor that can see the throughput of incoming and outgoing data.
netstat live
the current machine name, ip address , and network interface being monitored.
local machine
the remote machine including average ping time and number of hops
remote machine
data on the upcoming channel
incoming data
total for incomming data
incoming totals
data on outgoing channel
outgoing data
totals for outgoing data
outgoing totals
totalnumber of threads currently ruunning in the system
system threads
