Lisa Bock discusses the need for vulnerability scanning in an organization as part of an overall security plan. Learn hoe network scanning probes targets on the network to detect open ports, determine software, operating systems and versions, and known vulnerabilities and can be done as either as unauthenticated or authenticated scan.
- View Offline
- [Voiceover] Vulnerability scanning in an organization…is very important as part of an overall security plan.…Network scanning probes targets on the network…to detect open ports, determine software,…operating systems, and known vulnerabilities.…There are many approaches that you can take,…but it's important to understand the network is complicated…and can be thought of in two separate areas,…information systems and information technology.…Information systems is the software side.…
This ensures data availability…and it drives business processes and decision making.…It includes database management systems,…management information systems and decision support systems.…Information technology generally refers to the hardware side…including all computers and networking devices within.…Both work together in an organization…and both should be assessed for vulnerabilities.…Scanning can be done in an unauthenticated…or authenticated method.…
Unauthenticated scanning is able to find…basic configuration issues…or input output validation type errors.…
This course investigates the scanning tools and techniques used to obtain information from a target system, including specially crafted packets, TCP flags, UDP scans, and ping sweeps. Lisa Bock discusses how hackers can identify live systems via protocols, blueprint a network, and perform a vulnerability scan to find weaknesses. She also introduces some of the tools and techniques that hackers use to counter detection via evasion, concealment, and spoofing. In addition, learn how to reduce the threat of tunneling, a method hackers use to circumvent network security.
Note: Our Ethical Hacking series maps to the 18 parts of the EC-Council Certified Ethical Hacker (CEH) exam (312_50). This course maps to the 03 Scanning Networks domain.
- Scanning overview
- Port scanning countermeasures
- Scanning and querying DNS
- Scanning with ICMP
- Mapping (or blueprinting) a network
- Scanning for vulnerabilities
- Using tools such as hping and NetScan
- Evading detection
- Concealing your network traffic
- Preventing tunneling