Presentation is loading. Please wait.

Presentation is loading. Please wait.

Vulnerability Scanning with Credentials

Published bySarah Armstrong Modified over 6 years ago

Similar presentations

Presentation on theme: "Vulnerability Scanning with Credentials"— Presentation transcript:

1 Vulnerability Scanning with Credentials

2 Scanning Efficiency Credentialed scans are more efficient.
Traditional network only scans involve pinging and probing thousands of ports on each host. This is taxing to the network infrastructure as well as the target system. Several scanners will each attempt to simultaneously connect to hundreds of ports on dozens of targets. This many open connections is hard on the network equipment and scans have to be throttled as to not overwhelm the hardware. Each attempted connection has to wait for success or timeout. With credentials checks there is no time wasted on trial and error. With credentials available only a handful of connections are opened to login and gather data. OS and processes are 100% known so only applicable checks are performed resulting in less network and target system overhead.

3 Scanning Security Credential scans with a service account are more secure. In order to perform credentialed scans without a service account credentials must be created and gathered on each host individually. The scanning group does not have access to the targets so the job of keeping account info up to date and secure is left to the server owners. Centralized Password Management Ensures password rotation and complexity follow Standards Reduces risk of unencrypted password transmission Account Management - Account would not be shared by any other user or service

4 Scanning Accuracy Credentialed scans are deeper and more accurate.
OS fingerprinting is 100% accurate This information is also useful in updating our system of records The scanner can view running processes, determine open ports, perform system compliance/audit analysis, and evaluate attached devices Ability to see vulnerabilities which do not present themselves externally until there is interaction from a user or another trigger False positives are dramatically reduced with perfect information Without credentials some things that appear to be vulnerabilities can only be verified with an attempt to exploit. This could harm system performance so in most cases it is left as a possible false positive.

5 Example Non-Credentialed Scan Output

6 Example Credentialed Scan Output (Same system)

7 Further Reading malicious-insiders scanning

8

Download ppt "Vulnerability Scanning with Credentials"

Similar presentations

WEB CONNECT FOR EASYNVR : 2015. WEB CONNECT INCREASES YOUR PROFITABILITY BY REDUCING INSTALLATION LABOR COSTS WHILE SIMULTANEOUSLY CREATING NEW REVENUE.

WEB CONNECT FOR EASYNVR : WEB CONNECT INCREASES YOUR PROFITABILITY BY REDUCING INSTALLATION LABOR COSTS WHILE SIMULTANEOUSLY CREATING NEW REVENUE.
Honeypot 서울과학기술대학교 Jeilyn Molina 121336101. Honeypot is the software or set of computers that are intended to attract attackers, pretending to be weak.

Honeypot 서울과학기술대학교 Jeilyn Molina Honeypot is the software or set of computers that are intended to attract attackers, pretending to be weak.
Securing your Jail broken IPhone. iPhone Worm An iPhone worm has started jumping between jailbroken devices, taking advantage of users who have replaced.

Securing your Jail broken IPhone. iPhone Worm An iPhone worm has started jumping between jailbroken devices, taking advantage of users who have replaced.
Security, Privacy, and Ethics Online Computer Crimes.

Security, Privacy, and Ethics Online Computer Crimes.
Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.

Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.
Vulnerability Analysis Borrowed from the CLICS group.

Vulnerability Analysis Borrowed from the CLICS group.
Nasca 2007 100 200 300 400 500 Internet Networking and Security viruses.

Nasca Internet Networking and Security viruses.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
A Guide to major network components

A Guide to major network components
Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.
Website Hardening HUIT IT Security | Sep 30 2011.

Website Hardening HUIT IT Security | Sep
Overview Print and Document Services Print Management console Printer properties Troubleshooting.

Overview Print and Document Services Print Management console Printer properties Troubleshooting.
1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.

1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.
Demystifying Backdoor Shells and IRC Bots: The Risk … By : Jonathan.

Demystifying Backdoor Shells and IRC Bots: The Risk … By : Jonathan.
Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.

Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.
◦ What is an Operating System? What is an Operating System? ◦ Operating System Objectives Operating System Objectives ◦ Services Provided by the Operating.

◦ What is an Operating System? What is an Operating System? ◦ Operating System Objectives Operating System Objectives ◦ Services Provided by the Operating.
1 Vulnerability Analysis and Patches Management Using Secure Mobile Agents Presented by: Muhammad Awais Shibli.

1 Vulnerability Analysis and Patches Management Using Secure Mobile Agents Presented by: Muhammad Awais Shibli.
CIS 450 – Network Security Chapter 3 – Information Gathering.

CIS 450 – Network Security Chapter 3 – Information Gathering.
FIREWALLS Vivek Srinivasan. Contents Introduction Need for firewalls Different types of firewalls Conclusion.

FIREWALLS Vivek Srinivasan. Contents Introduction Need for firewalls Different types of firewalls Conclusion.

Similar presentations

Ads by Google