What would be the best method to accurately identify the services running on a victim host?

Scanning for services is an easy job for Bob as there are so many tools available from the
Internet. In order for him to check the vulnerability of XYZ, he went through a few scanners that
are currently available. Here are the scanners that he uses:
1. Axent’s NetRecon (http://www.axent.com)
2. SARA, by Advanced Research Organization (http://www-arc.com/sara)
3. VLAD the Scanner, by Razor (http://razor.bindview.com/tools/)
However, there are many other alternative ways to make sure that the services that have been
scanned will be more accurate and detailed for Bob.

What would be the best method to accurately identify the services running on a victim host?

Scanning for services is an easy job for Bob as there are so many tools available from the
Internet. In order for him to check the vulnerability of XYZ, he went through a few scanners that
are currently available. Here are the scanners that he uses:
1. Axent’s NetRecon (http://www.axent.com)
2. SARA, by Advanced Research Organization (http://www-arc.com/sara)
3. VLAD the Scanner, by Razor (http://razor.bindview.com/tools/)
However, there are many other alternative ways to make sure that the services that have been
scanned will be more accurate and detailed for Bob.

What would be the best method to accurately identify the services running on a victim host?

A.
Using Cheops-ng to identify the devices ofXYZ.

B.
Using the manual method of telnet to each of the open ports ofXYZ.

C.
Using a vulnerability scanner to try to probe each port to verify or figure out which service is
running forXYZ.

D.
Using the default port and OS to make a best guess of what services are running on each port
forXYZ.

Explanation:
By running a telnet connection to the open ports you will receive banners that tells
you what service is answering on that specific port.



Leave a Reply 2

Your email address will not be published. Required fields are marked *


Anonymous

Anonymous

How is running telnet to each individual port the BEST answer???

anon

anon

banner grabbing