网络安全测试软件internet scanner学习笔记(二)

1. 策略编辑器中策略的公共设置:
    Common Settings
The Common Settings folder contains global settings that can be enabled for a policy. Some of these settings may apply to a group of vulnerability checks, decreasing the amount of time needed to enable all the checks that use the setting.
1. Brute force lists 强制力列表
     Miscellaneous Default 多项默认 VAX/VMS Defaults 虚拟地址扩充/虎拟存储系统
     VAX/VMS Defaults  UNIX   Linux NIS  linux 网络信息服务
     Use Default Login File  使用默认的登录文件(default.login)
   2.Brute Force Options  强制力选项
 This common setting attempts password checks on names derived from Finger or NetBIOS checks.
     从Finger 或 NetBIOS的命名来源来个企图进行口令检查。三种方式:A、反向命名做为口令
   B、真名做为口令  C、帐号做为口令
   3.E-Mail Options  E-Mail选项  发现弱点后邮件接收人
   4.Host Pinger  
   5.HTTP Ports  A、HTTP端口 默认(80和8080) B、HTTP安全端口(443)
   6.Internal Network A、IP Addresses   format: xx-yy,zz,bb-cc B、Include Key IP   Range(s)  C、Domains D、Use Whois E、Whois Server  whois是一个关于谁在哪里的数据库
   7.IP Spoofing IP欺骗    A、Spoof Lists (Don’t use source) B、Spoof Source (IP地址)
             C、Spoof User(默认为ROOT)使用用户名进行欺骗测试
   8.NFS Depth  子目录的深度
   9.NT Logon Sessions 
10.Phase Limit 进行秘密扫描的段的数量,我理解段数值越大越好
11.RWhod Message 为后台邮件程序发送信息,如果有弱点,PS (the process status command)显示信息
12.Smtp Session 
        This common setting manages all active connections to SMTP servers running on any target hosts.
A、 Connection timeout (in seconds) 超时时间(秒) B、Reuse connections 重新边接
B、 Reuse the same SMTP connections when performing multiple security checks 当执行多安全检查时再次执行相同的SMTP连接
13.SNMP Community File SNMP组文件
  Filename: The name of a file that contains additional names to use when accessing the    community name. Default: community.snmp  文件名:文件名包括当访问组名时所使用的附加名字
14.SOCKS Host 
  SOCKS Target Host: The target host to the IP address of a host on the other side of the SOCKS server. The host you specify should be running at least one FTP, telnet, SMTP, HTTP, POP3, or finger service.
Note: For this setting to function properly, you must enter an IP address in the box provided. If you do not have an actual SOCKS host, use the IP address rather than leaving the box blank.
  攻击目标地址:在其它SOCK服务器的主机IP地址是目标主机,你所指定的主机就至少运行FTP, telnet, SMTP, HTTP, POP3, or finger 一种服务。
15.TCP Scan 
 A、Source Port: Set the port to use as the source during a port scan. Note: If you set the source port to 0, your operating system will specify the source port.
 B、Enable Hard Close: Close all active connections to a port after you have received information about the service running on that port. To check the state and the status of an active connection to a port, open a command prompt and type netstat -a.
   允许硬关闭:在你接收到服务已在端口运行的信处后关闭所有活动的链接端口。要检查状态或活动连接端口状态,在命令提示符下输入: netstat –a
 以C  Hard Close Port Range: The port or port range Internet Scanner uses to close any active connections to ports that you have received service information about. 
16.Telnet Banners 
  Grab Banners: Determines if a telnet server generates banner data in response to a request. Internet Scanner uses this method to determine operating system type.
17.UDP Port Scanner
 This common setting controls how the UDP port scanner probes each target host.
Internet Scanner sends a collection of UDP packets to each UDP port to check if it is active, and then listens for a response. The type of response (or the lack of a particular type of response) indicates if the port is active.
When Internet Scanner performs a UDP port scan, it can generate large amounts of network traffic, which can flood networks with low bandwidth or throughput. To minimize this risk, Internet Scanner lets you tune your scans to meet your individual network needs.
As the UDP port scanner uses the UDP and ICMP protocols, which are classified as unreliable protocols, results can vary between scans. To improve the accuracy of the scan, Internet Scanner lets you tune the scan to provide a higher degree of accuracy UDP端口扫描使用UDP和ICMP协议,扫描后结果被改变的被归类为不可靠的协议。
A.Number of probes per scan  默认10
B.Interval between probes (in seconds)间隔时间(秒) 默认:5秒
18.Walk MIB  管理信息库通道
A FlexCheck is a user-defined check that has been created to scan specific network environments for vulnerabilities or other conditions.
  • 0
  • 0
  • 0
  • 一键三连
  • 扫一扫,分享海报

©️2020 CSDN 皮肤主题: 大白 设计师:CSDN官方博客 返回首页
钱包余额 0