RE: I want to test my firewall from the outside-- [on/off]line scanners
hi jeff
and for more (dozen or so ) scanners --
online or offline( needs/wants your email addy )
http://www.Linux-Sec.net/Audit/nmap.test.gwif.html
have fun
alvin
http://www.Linux-1U.net ... up to 5-NIC 1U firewalls
its nice that nmap says that port 25 is open for your mail server...
but ... i'd like it to tell me that sendmail/exim is vulnerable or not
( at least the latest/greatest version with latest/greatest buggs )
on the other hand... if it says that your printer port and nfs ports
are open and wasnt intended... good... time to turn those puppies off
On Thu, 14 Feb 2002, Jeff Bonner wrote:
> On 15 Feb 2002 10:21 AM, Cristian Ionescu-Idbohrn wrote:
>
> > Any good tools you folks would recommand?
>
> Ideally you'd get a shell somewhere and do it yourself with nmap or the
> like (or use a dial-up on a separate machine nearby, same result), as
> has already been suggested here -- it would be helpful to understand
> what tools are used against you and how they work.
>
> Otherwise, I would add http://www.securityspace.com/smysecure/index.html
> to the list of "online" scanners. It appears to be rather
> comprehensive, but it'll cost you for full usability. You can, however,
> run the Basic Scan (0-1024 plus some other common ports), test for any
> single vulnerability, and use the "Risk Free Audit" (full scan, without
> details).
>
> Also, I believe http://www.hackerwhacker.com offers an online scanner.
>
Reply to: