Re: Discovering Live Hosts

["Nikhil Wagholikar" <visitnikhil () gmail com>]

Hello Rajat,

Thanks for your suggestion. However as I said earlier that "if suppose SMTP is
configured on port 26 instead of traditional port 25, then it would
add a twist to this situation". Hence your suggested method would
still leave some hosts down. Can you kindly further granularize your
suggestion?
Thanks once again.

--
Nikhil Wagholikar
Information Security Analyst

On 8/8/07, rajat swarup <rajats () gmail com> wrote:
> On 8/7/07, Nikhil Wagholikar <visitnikhil () gmail com> wrote:
> > Can anyone kindly guide me, as to how to find live IP Addresses from a
> > given Pool of IP Addresses (Range of IP Addresses) with as less false
> > positive results as possible and as quickly as possible? Is there any
> > tool out (no matter shareware or freeware), which focuses on finding
> > live IP Addresses from Pool of IP Addresses?
> Hi Nikhil,
> I would choose some 40-50 odd most commonly used ports and perform a
> SYN Stealth scan only on those ports -sS -P0 (e.g.,
> 21,22,23,25,53,80,443,3389,9000 etc).
> I'd also do a ping scan.
> Now there are 4 possibiities:
> 1. A host responds to ping
> 2. A host responds with open port
> 3. A host responds with a closed port
> 4. A host resolved DNS name
> In each of the four cases you come to know the host is alive.
>
> HTH,
> Rajat.
> --
> Rajat Swarup
>
> http://rajatswarup.blogspot.com/

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------