- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
Auditing Inside the Enterprise via Port Scanning & Related Tools
- Abstract
- This paper assumes that the difficulty of maintaining and verifying the state of all systems on a network of any significant complexity is more than most system/network administrators have time to deal with directly. It proposes that internal port scanning (and derivative tools) be used on an ongoing basis to keep watch on various, listed aspects of network security. A number of commercial, freeware, demo, and open source tools are described along with how best to use them to identify problems. Additional consideration and discussion is given to other planning requirements.