fbpx
professional hacker

John a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker installed a scanner on a machine belonging to one of the victim and scanned several machines on the same network to identify vulnerabilities to perform further exploitation. What is the type of vulnerability assessment tool employed by john in the above scenario?

John a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker installed a scanner on a machine belonging to one of the victim and scanned several machines on the same network to identify vulnerabilities to perform further exploitation. What is the type of vulnerability assessment tool employed by john in the above scenario?

Option 1 : Network-based scanner
Option 2 : Agent-based scanner
Option 3 : Cluster scanner
Option 4 :  Proxy scanner

1. Network-based scanner

Network-based scanners discover unknown or unauthorized devices and systems on a network, helping determine if there are unknown perimeter points on the network, like unauthorized remote access servers or connections to insecure networks of business partners. additionally network scanners provide a comprehensive view of all operating systems and services running and available on the network, also as detailed listings of all system user accounts which will be discovered from standard network resources. This data and corresponding reports give administrators a transparent picture of what sorts of services are literally getting used on their network. This information are often employed by a network scanner for further vulnerability evaluation, like using user accounts to check for password strength, or services detected to see for vulnerable services.

2. Agent-based scanner

Knowing when to include agents into your vulnerability management processes isn’t an easy decision. Below are common use cases for agent-based vulnerability scanning to assist you build out your combined scanning strategy.

  • Intermittent or Irregular Connectivity: Vulnerability management teams are now tasked with scanning devices that access the company network remotely using public or home-based Wi-Fi connections. These connections are often unreliable and intermittent leading to missed network-based scans. Fortunately, the scanning frequency of agents doesn’t require a network connection. The agent detects when the device is back online, sending scan data when it’s ready to communicate with the VM platform.
  • Connecting Non-Corporate Devices to Corporate Networks:With the increased use of private devices, company networks are more exposed to malware and infections thanks to limited IT and security teams’ control and visibility. Agent-based scanning gives security teams insight into weaknesses on non-corporate endpoints, keeping them informed about professional hacker is potential attack vectors in order that they can take appropriate action.
  • Endpoints Residing Outside of Company Networks: Whether company-issued or BYOD, remote assets frequently hook up with the web outside of traditional network bounds. An agent that resides on remote endpoints conducts regular, authenticated scans checking out system changes and unpatched software. The results are then sent back to the VM platform and combined with other scan results for review, prioritization, and mitigation planning.
3. Cluster scanner

With Nessus Manager clustering, you’ll deploy and manage large numbers of agents from one Nessus Manager instance. For Tenable.sc users with over 10,000 agents and up to 200,000 agents, you’ll manage your agent scans from one Nessus Manager, instead of wanting to link multiple instances of Nessus Manager to Tenable.sc.

A Nessus Manager instance with clustering enabled acts as a parent node to child nodes, each of which manage a smaller number of agents. Once a Nessus Manager instance becomes a parent node, it not manages agents directly. Instead, it acts as one point of access where you’ll manage scan policies and schedules for all the agents across the kid nodes. With clustering, you’ll scale your deployment size more easily than if you had to manage several different professional hacker is Nessus Manager instances separately.

4. Proxy scanner

ProxyFire is (yet) another free proxy scanner. it’s downloadable because the ProxyFire main bedroom Free, and has many abilities that make it a viable software application for bulk scanners. It uses the SYN scanning method.

ProxyFire supports an enormous amount of very specific proxy settings and identifiers, including:

  • SSL/Https, SMTP/EMail, Gateway, Socks4/5, Dangerous IP Test
  • Scan for Port, Country, dangerous IP, Duplicate Filter
  • Planetlab/CoDeeN proxies Filter
  • RBL, hostname Filter
  • Di?erent sort of forums leeching(support LOGIN)
  • Non-forum proxy sites
  • Di?erent search engines leeching
  • IP to Country lookup
  • Leech proxies from FILE, URL, FTP, EMAIL(pop3)
  • Proxies port connecting Test
  • SSL/HTTPS URLs
Learn CEH & Think like hacker


This Blog Article is posted by

Infosavvy, 2nd Floor, Sai Niketan, Chandavalkar Road Opp. Gora Gandhi Hotel, Above Jumbo King, beside Speakwell Institute, Borivali West, Mumbai, Maharashtra 400092

Contact us – www.info-savvy.com

https://g.co/kgs/ttqPpZ

Leave a Comment