A review of port scanning techniques

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

A review of port scanning techniques

Full text

Pdf (661 KB)

Source

ACM SIGCOMM Computer Communication Review archive
Volume 29 , Issue 2 (April 1999) table of contents

SESSION: Papers table of contents

Pages: 41 - 48

Year of Publication: 1999

ISSN:0146-4833

Authors

Marco de Vivo	LACORE U.C.V., Apartado Postal 68274, Caracas, Venezuela
Eddy Carrasco
Germinal Isern
Gabriela O. de Vivo

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 25, Downloads (12 Months): 84, Citation Count: 6

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/505733.505737 What is a DOI?

ABSTRACT

This paper reports the most important techniques used by TCP port scanners. TCP port scanners are specialized programs used to determine what TCP ports of a host have processes listening on them for possible connections. Since these ports characterize, in part, the amount of exposure of the hosts to potential external attacks, knowing their existence is a fundamental matter for network and/or security administrators. Moreover, as scanners are also used by hackers, administrators need to know how they work and what possible weakness they exploit to be able to prevent unwanted scanning or at least to record each scanning attempt.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	W. Richard Stevens, TCP/IP illustrated (vol. 1): the protocols, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 1993
	2	W. Richard Stevens , Gary R. Wright, TCP/IP illustrated (vol. 2): the implementation, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 1995
	3	Daemon9, Project Neptune. Phrack Magazine, Issue 48, 1996.
	4	RFC 793, TRANSMISSION CONTROL PROTOCOL, PROTOCOL SPECIFICATION, pp. 64.
	5	L. Granquist, Port 0 Scanning, Bugtraq mailing list archives, 8 Jul 1998.
	6	Douglas E. Comer , David L. Stevens, Internetworking with TCP/IP vol III (2nd ed.): client-server programming and applications BSD socket version, Prentice-Hall, Inc., Upper Saddle River, NJ, 1996
	7	D. Atkins et al., Internet Security, Second Edition. New Riders, 1997 , pp. 413.
	8	Uriel Maimon, Port Scanning without the SYN flag, TCP port Stealth Scanning. Phrack Magazine, Issue 49, 1996.
	9	NMAP, http://www.insecure.org/nmap/index.html, 1999.
	10	S. Sanfilippo, New TCP Scan Method. Bugtraq mailing list archives, 18 Dec 1998.
	11	Marco de Vivo , Gabriela O. de Vivo , Germinal Isern, Internet security attacks at the basic levels, ACM SIGOPS Operating Systems Review, v.32 n.2, p.4-15, April 1998 [doi>10.1145/506133.506136]
	12	SHADOW Indications Technical Analysis, Coordinated Attacks and Probes. Naval Surface Warfare Center Dahlgren Division, Code CD2S, http://www.nswc.navy.mil/ISSEC/CID/ Sep 1998, Updated Dec 98 and Mar 99.
	13	Back Orifice, http://www.cultdeadcow.com, 1999.
	14	D. Comer, Internetworking with TCP/IP Vol. 1. Prentice Hall, Third Edition, 1995, pp. 123-137.
	15	IdentTCPscan, www.asmodeus.com/archive/crack-scan/.
	16	RFC 1413, Identification Protocol.
	17	RFC 959, FILE TRANSFER PROTOCOL (FTP).
	18	The FTP Bounce Attack, ftp://avian.org/random/ftp-attack.
	19	Anonymous , Shipley, Maximum Security, Sams, Indianapolis, IN, 2000
	20	Index of /~tattooman/scanners, At www.genocide2600.com/~tattooman/, follow the link to FileArchives, and then to scanners, 1999.
	21	ISS, http://www.iss.net/, 1999.
	22	QueSO, http://www.apostols.org/projectz/queso/
	23	D. Commer, J. C. Lin, Probing TCP Implementations. Department of Computer Sciences, Purdue University, 1994.
	24	Fyodor, Remote OS detection via TCP/IP Stack FingerPrinting. Phrack Magazine, Volume 8, Issue 54, Dec 25th, 1998. <fyodor@dhp.com>.

CITED BY 6

	Stefan Savage , David Wetherall , Anna Karlin , Tom Anderson, Practical network support for IP traceback, ACM SIGCOMM Computer Communication Review, v.30 n.4, p.295-306, October 2000
	Stefan Savage , David Wetherall , Anna Karlin , Tom Anderson, Network support for IP traceback, IEEE/ACM Transactions on Networking (TON), v.9 n.3, p.226-237, June 2001
	Tao Zhang , Ming-Zeng Hu , Xiao-Chun Yun , Yong-Zheng Zhang, Computer network information discovery based on information fusion, Proceedings of the 9th WSEAS International Conference on Computers, p.1-5, July 14-16, 2005, Athens, Greece
	Mark Handley , Vern Paxson , Christian Kreibich, Network intrusion detection: evasion, traffic normalization, and end-to-end protocol semantics, Proceedings of the 10th conference on USENIX Security Symposium, p.9-9, August 13-17, 2001, Washington, D.C.
	Mark Handley , Vern Paxson , Christian Kreibich, Network intrusion detection: evasion, traffic normalization, and end-to-end protocol semantics, Proceedings of the 10th conference on USENIX Security Symposium, p.9-9, August 13-17, 2001, Washington, D.C.
	György J. Simon , Vipin Kumar , Zhi-Li Zhang, Semi-supervised approach to rapid and reliable labeling of large data sets, Proceeding of the 14th ACM SIGKDD international conference on Knowledge discovery and data mining, August 24-27, 2008, Las Vegas, Nevada, USA

INDEX TERMS

Keywords:
Coordinated Scanning, Decoy Scanning, FIN Scanning, Fingerprinting, Indirect Scanning, SYN Scanning, Stealth Scanning, TCP/IP, Three-way Handshake, UDP

Collaborative Colleagues:

Marco de Vivo: colleagues

Eddy Carrasco: colleagues

Germinal Isern: colleagues

Gabriela O. de Vivo: colleagues

Adobe Acrobat

QuickTime

Windows Media Player

Real Player