Network enumeration: Difference between revisions

Network Enumeration is the discovery of [[host]]s/devices on a [[network]], they tend to use overt discovery protocols such as [[ICMP]] and [[SNMP]] to gather information, they may also scan various ports on remote hosts for looking for well known services in an attempt to further identify the function of a remote host.The next stage of enumeration is to [[fingerprint]] the [[Operating System]] of the remote host.

A '''network enumerator''' or '''network scanner''' is a [[computer program]] used to retrieve usernames and info on groups, shares, and services of networked computers. This type of program scans networks for vulnerabilities in the security of that network. If there is a vulnerability with the security of the network, it will send a report back to a [[hacker (computer security)|hacker]] who may use this info to exploit that network glitch to gain entry to the network or for other malicious activities. Ethical hackers often also use the information to remove the glitches and strengthen their network.

Network enumerators are often used by [[script kiddies]] for ease of use, as well as by more experienced hackers in cooperation with other programs/manual lookups. Also, [[whois]] queries, [[zone transfer]]s, [[ping sweep]]s, and [[traceroute]] can be performed. <ref>{{cite web|url=http://www.informit.com/articles/article.aspx?p=25916|title=Security Through Penetration Testing: Internet Penetration|authors=Ajay Gupta, Thomas Klavinsky, and Scott Laliberte|work=InformIT|publisher=[[Pearson PLC]]|date=2002-03-15|accessdate=2013-03-31}}</ref>