Читать книгу Web Penetration Testing - Radhi Shatob - Страница 14

Scanning can be classified into two main parts:

Network Scan

 Can be thought a part of scanning phase as well as reconnaissance phase and used to discover end user devices, servers and peripherals that exist on the network.

 The results can include details of the discovered devices including IP addresses, device names, operating systems, running applications and services, open shares, usernames and groups.

 Tools used are Network mappers, port scanners, ping tools, etc.

Vulnerability scan

 Inspection of potential exploit points on a computer or network.

 Detect and classifies system weaknesses.

 Vulnerability scanner are used for this purpose in general.