02233

Netværkssikkerhed
Network Security

• Introduktion
• Nessus Scan
• Nessus Questions
  • Question 1
  • Question 2
  • Question 3
  • Question4
  • Question 5
  • Question 6
  • Question 7
  • Question 8
  • Question 9
  • Question 10
  • Question 11
  • Question 12
  • Question 13
  • Question 14
  • Question 15
  • Question 16
  • Question 17
  • Question 18
  • Question 19
  • Question 20
  • Question 21
  • Question 22
  • Question 23
  • Question 24
  • Question 25
• Snort Questions
• References

Question 19

What is the difference between Nessus and a hacker’s way of finding vulnerabilities?

Nessus generates too much noise because a lot of ports are being scanned. So the scanning tool is likely to be noticed. A hacker will usually try to get access via one port only in order not to draw attention to himself. Also the hacker usually already knows the vulnerabilities of the target before attacking it.

Also, a hacker has some other tools: social engineering, dumpster diving that you can't scan for but must use quite other techniques to counter. And if the hacker has physical access to the network, packet sniffing tools like ethereal and snort can be used.

Bjarne D Mathiesen

Michael Pantridge

Thabet Al-Assdi

Chang Jensen