SlideShare a Scribd company logo

Addmi 12-basic scan

Download as PPT, PDF
O
odanyboy

The document discusses the basics of scanning networks using Atrium Discovery, including specifying what to scan, scheduling scans, choosing scanning levels, and viewing results. It covers defining IP ranges and credentials, running discovery scans to gather host and system information, and accessing detailed reports on individual discovery runs and detected nodes.

Technology
1 of 18
Downloaded 52 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
Scanning Basics Telling Atrium Discovery What and When
The Basics of Scanning Outline Basic Discovery Essentials: What to scan IP ranges Credentials Exclude ranges When to scan Setting up discovery runs View Results Discovery Run details Node details Provenance details
The Basics of Scanning Scanning is a process of probing your network to see what information can be gathered about the endpoints found You need to tell Atrium Discovery What to scan (and perhaps what not to scan) IP ranges (one, or a range, or a list) How to access a host (end-point) Credentials available (for logging in) Where the Windows Slave is installed This is covered is depth later in the course
The Discovery Process Scan of an IP range via the discovery run: The discovery engine tries each IP address in the range looking for endpoints Checks for matches in the exclusion list. Determines the host and OS type (platform) If the host has had a previous successful login, the same credentials will be attempted first If not, login credentials will be attempted in the UI display order, UNIX first then Windows and finally SNMP Run a platform-specific script, and potentially other commands, to learn about the device Writes this information into the datastore
Choosing IP Ranges Accessed Via “Add new run” List individual machines to scan e.g. 231.234.11.32 Choose subranges e.g. 10.1.1.1-56 Choose subnet Mask e.g. 192.168.1/24
Scheduling Runs Can add an ad-hoc (snapshot) or scheduled discovery runs
Choose the Scanning Level Sweep scan Is there anybody there? Note: Host nodes will NOT be created at this level Host Identification - basic host information Host Information - run discovery commands but not patterns Full discovery - the works
What Scanning Level to Use For general use: Full Discovery to ensure the most amount of information is recovered During initial deployment: Sweep Scans to get a rough understanding of the environment before configuring credentials
Discovery Protocols Without logging in Telnet banner scraping Port scanning HTTP HEAD Logging in SSH, rlogin, telnet WMI, remcom, rcmd SNMP Port scanning, telnet banner, HTTP HEAD ssh, telnet, rlogin, SNMP, rcmd
Scanning Credentials You can add credentials for single devices and ranges Can use regex wildcards Will be tried in display order Login credentials SNMP credentials Database credentials
Login Credentials Can create credentials for a singe device ip or range Can use regex (.* or 10.10.10.(23|25)) or a range specification ( 10.10.10.* or 10.10.1-5.* or 10.10.10.0/24) Will try each credentials in the order displayed By default, will store the last successful credentials for each host to use in future runs
Setting SNMP Credentials SNMP credentials are called community strings Use or request a readonly (RO) string for tideway discovery
Add Exclude Ranges Add IP ranges of hosts that should NOT be included in discovery Useful for excluding sensitive or fragile hosts
Discovery Results
View Discovery Results Can look at the types of data recovered DDD (Directly Discovered Data) View discovery access reports Reporting on discovery as a whole
View Discovery Runs View statistics of an individual discovery run Can drill down to view the host details page or details from DiscoveryAccess Skipped or error results Some no access details No Response (dark space) Errors
Further Information Online Documentation: http://www.tideway.com/confluence/display/81/Using+BMC+Atrium+Discovery Tideway Foundation Version 7.2 Documentation Title
Basic Scan Exercises

More Related Content

PDF
Footprinting tools for security auditors
Jose Manuel Ortega Candel
 
PDF
Ch 5: Port Scanning
Sam Bowne
 
PPT
Module 3 Scanning
leminhvuong
 
PDF
2010 za con_jameel_haffejee
Johan Klerk
 
PPTX
Recon with Nmap
OWASP Delhi
 
PDF
Network Mapper (NMAP)
KHNOG
 
PPTX
NBTC#2 - Why instrumentation is cooler then ice
Alexandre Moneger
 
PPTX
Practical rsa padding oracle attacks
Alexandre Moneger
 
Footprinting tools for security auditors
Jose Manuel Ortega Candel
 
Ch 5: Port Scanning
Sam Bowne
 
Module 3 Scanning
leminhvuong
 
2010 za con_jameel_haffejee
Johan Klerk
 
Recon with Nmap
OWASP Delhi
 
Network Mapper (NMAP)
KHNOG
 
NBTC#2 - Why instrumentation is cooler then ice
Alexandre Moneger
 
Practical rsa padding oracle attacks
Alexandre Moneger
 

What's hot (20)

PDF
Nmap Hacking Guide
Aryan G
 
PPTX
Information gathering using windows command line utility
Vishal Kumar
 
PDF
Ethical hacking with Python tools
Jose Manuel Ortega Candel
 
PPT
Networking session-4-final by aravind.R
Navaneethan Naveen
 
PDF
Ios i pv4_access_lists
Mohamed Gamel
 
PPT
Addmi 15-discovery scripts
odanyboy
 
PPT
Socket programming in C
Deepak Swain
 
PDF
Python build your security tools.pdf
TECHNOLOGY CONTROL CO.
 
PDF
127 Ch 2: Stack overflows on Linux
Sam Bowne
 
PPTX
รายงาน Tcp
Panuwat Singmon
 
PPTX
Socket programming in c
Md. Golam Hossain
 
PPTX
Pet Pen Testing Tools: Zenmap & Nmap
Matt Vieyra
 
PDF
CNIT 127 Ch 3: Shellcode
Sam Bowne
 
PPTX
Buffer overflow attacks
Japneet Singh
 
PPTX
Buffer Overflow Demo by Saurabh Sharma
n|u - The Open Security Community
 
PDF
CNIT 127 Ch 4: Introduction to format string bugs
Sam Bowne
 
PDF
CNIT 127 Ch 3: Shellcode
Sam Bowne
 
PDF
SELinux Kernel Internals and Architecture - FOSS.IN/2005
James Morris
 
PDF
Socket programming
Rajivarnan (Rajiv)
 
PDF
CNIT 127: Ch 2: Stack Overflows in Linux
Sam Bowne
 
Nmap Hacking Guide
Aryan G
 
Information gathering using windows command line utility
Vishal Kumar
 
Ethical hacking with Python tools
Jose Manuel Ortega Candel
 
Networking session-4-final by aravind.R
Navaneethan Naveen
 
Ios i pv4_access_lists
Mohamed Gamel
 
Addmi 15-discovery scripts
odanyboy
 
Socket programming in C
Deepak Swain
 
Python build your security tools.pdf
TECHNOLOGY CONTROL CO.
 
127 Ch 2: Stack overflows on Linux
Sam Bowne
 
รายงาน Tcp
Panuwat Singmon
 
Socket programming in c
Md. Golam Hossain
 
Pet Pen Testing Tools: Zenmap & Nmap
Matt Vieyra
 
CNIT 127 Ch 3: Shellcode
Sam Bowne
 
Buffer overflow attacks
Japneet Singh
 
Buffer Overflow Demo by Saurabh Sharma
n|u - The Open Security Community
 
CNIT 127 Ch 4: Introduction to format string bugs
Sam Bowne
 
CNIT 127 Ch 3: Shellcode
Sam Bowne
 
SELinux Kernel Internals and Architecture - FOSS.IN/2005
James Morris
 
Socket programming
Rajivarnan (Rajiv)
 
CNIT 127: Ch 2: Stack Overflows in Linux
Sam Bowne
 
Ad

Viewers also liked (20)

PPT
58466507 event-management-best-practices-1-488
Prasad Rt
 
PPTX
Knowledge Management in BMC Remedy 9.1
Jon Stevens-Hall
 
PPTX
Optimizing Service Desk Interactions with Knowledge Management - BMC Engage 2015
Jon Stevens-Hall
 
PDF
Power of the Platform: Andy Walker, BMC Software
BMC Software
 
PPT
Addmi 04-va installation
odanyboy
 
PDF
Fannie mae bmc remedy its mv7 production infrastructure_v8_021009
Accenture
 
PPT
Addmi 09.5-analysis ui-host-grouping
odanyboy
 
PPT
Addmi 02-addm overview
odanyboy
 
PPT
Addmi 06-security mgmt
odanyboy
 
PPT
Addmi 07-taxonomy
odanyboy
 
PPT
Addmi 16.5-discovery troubleshooting
odanyboy
 
PPT
Addmi 11-intro to-patterns
odanyboy
 
PPT
Addmi 14-discovery credentials
odanyboy
 
PPT
Addmi 09-analysis ui-reporting
odanyboy
 
PPT
Addmi 17-snapshot
odanyboy
 
PDF
BMC Engage 2015 Breakout Session #420 - #ITSM_SUCCESS-Final_3.5 (1)
Phil Bautista
 
PPT
Addmi 13-discovery overview (patrick ryan's conflicted copy 2011-01-27)
odanyboy
 
PPT
Addmi 10-query builder
odanyboy
 
PPT
Addmi 08-dashboards
odanyboy
 
PPT
Addmi 16-discovery monitoring
odanyboy
 
58466507 event-management-best-practices-1-488
Prasad Rt
 
Knowledge Management in BMC Remedy 9.1
Jon Stevens-Hall
 
Optimizing Service Desk Interactions with Knowledge Management - BMC Engage 2015
Jon Stevens-Hall
 
Power of the Platform: Andy Walker, BMC Software
BMC Software
 
Addmi 04-va installation
odanyboy
 
Fannie mae bmc remedy its mv7 production infrastructure_v8_021009
Accenture
 
Addmi 09.5-analysis ui-host-grouping
odanyboy
 
Addmi 02-addm overview
odanyboy
 
Addmi 06-security mgmt
odanyboy
 
Addmi 07-taxonomy
odanyboy
 
Addmi 16.5-discovery troubleshooting
odanyboy
 
Addmi 11-intro to-patterns
odanyboy
 
Addmi 14-discovery credentials
odanyboy
 
Addmi 09-analysis ui-reporting
odanyboy
 
Addmi 17-snapshot
odanyboy
 
BMC Engage 2015 Breakout Session #420 - #ITSM_SUCCESS-Final_3.5 (1)
Phil Bautista
 
Addmi 13-discovery overview (patrick ryan's conflicted copy 2011-01-27)
odanyboy
 
Addmi 10-query builder
odanyboy
 
Addmi 08-dashboards
odanyboy
 
Addmi 16-discovery monitoring
odanyboy
 
Ad

Similar to Addmi 12-basic scan (20)

PPT
Addmi 03-addm prerequisites
odanyboy
 
PPT
Addmi 13-discovery overview
odanyboy
 
PPTX
Scoping for BMC Discovery (ADDM) Deployment by Traversys Limited
Wes Moskal-Fitzpatrick
 
PPT
Namp
penetration Tester
 
KEY
FITB: Network graphing done right
Laurie Denness
 
PPT
01204427-scanner.ppt
VarunBehere1
 
PPTX
Network scanning
MD SAQUIB KHAN
 
DOCX
Snmp vulnerability assessment
Supriya G
 
PPTX
06- 1 Active Information Gathering part 1.pptx
wassimahmad9
 
PPTX
Penetration Testing Boot CAMP
Shaikh Jamal Uddin l CISM, QRadar, Hack Card Recovery Expert
 
PDF
Nmap tutorial
Varun Kakumani
 
PPTX
Nmap project presentation : Unlocking Network Secrets: Mastering Port Scannin...
Boston Institute of Analytics
 
PPTX
Scanning networks (by piyush upadhyay)
Piyush Upadhyay
 
PDF
eLea4555555555555555555555555555555rnSecurity .pdf
sheetcyber
 
RTF
Port Scanning Overview
Publicly traded global multi-billion services company
 
PPTX
Nmap and metasploitable
Mohammed Akbar Shariff
 
PDF
Nmap
Fat-Thing Gabriel-Culley
 
PDF
O PODER DO NMAP ATRAVÉS DE SEUS COMANDOS.pdf
Maicon Wendhausen
 
PDF
A Study Of Open Ports As Security Vulnerabilities In Common User Computers
Joshua Gorinson
 
PDF
BMC Discovery (ADDM) Cheat Sheet by Traversys Limited
Wes Moskal-Fitzpatrick
 
Addmi 03-addm prerequisites
odanyboy
 
Addmi 13-discovery overview
odanyboy
 
Scoping for BMC Discovery (ADDM) Deployment by Traversys Limited
Wes Moskal-Fitzpatrick
 
Namp
penetration Tester
 
FITB: Network graphing done right
Laurie Denness
 
01204427-scanner.ppt
VarunBehere1
 
Network scanning
MD SAQUIB KHAN
 
Snmp vulnerability assessment
Supriya G
 
06- 1 Active Information Gathering part 1.pptx
wassimahmad9
 
Penetration Testing Boot CAMP
Shaikh Jamal Uddin l CISM, QRadar, Hack Card Recovery Expert
 
Nmap tutorial
Varun Kakumani
 
Nmap project presentation : Unlocking Network Secrets: Mastering Port Scannin...
Boston Institute of Analytics
 
Scanning networks (by piyush upadhyay)
Piyush Upadhyay
 
eLea4555555555555555555555555555555rnSecurity .pdf
sheetcyber
 
Port Scanning Overview
Publicly traded global multi-billion services company
 
Nmap and metasploitable
Mohammed Akbar Shariff
 
Nmap
Fat-Thing Gabriel-Culley
 
O PODER DO NMAP ATRAVÉS DE SEUS COMANDOS.pdf
Maicon Wendhausen
 
A Study Of Open Ports As Security Vulnerabilities In Common User Computers
Joshua Gorinson
 
BMC Discovery (ADDM) Cheat Sheet by Traversys Limited
Wes Moskal-Fitzpatrick
 

Recently uploaded (20)

PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Approach and Philosophy of On baking technology
30anthuong17
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
KodekX | Application Modernization Development
KodekX
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 

Addmi 12-basic scan

  • 1. Scanning Basics Telling Atrium Discovery What and When
  • 2. The Basics of Scanning Outline Basic Discovery Essentials: What to scan IP ranges Credentials Exclude ranges When to scan Setting up discovery runs View Results Discovery Run details Node details Provenance details
  • 3. The Basics of Scanning Scanning is a process of probing your network to see what information can be gathered about the endpoints found You need to tell Atrium Discovery What to scan (and perhaps what not to scan) IP ranges (one, or a range, or a list) How to access a host (end-point) Credentials available (for logging in) Where the Windows Slave is installed This is covered is depth later in the course
  • 4. The Discovery Process Scan of an IP range via the discovery run: The discovery engine tries each IP address in the range looking for endpoints Checks for matches in the exclusion list. Determines the host and OS type (platform) If the host has had a previous successful login, the same credentials will be attempted first If not, login credentials will be attempted in the UI display order, UNIX first then Windows and finally SNMP Run a platform-specific script, and potentially other commands, to learn about the device Writes this information into the datastore
  • 5. Choosing IP Ranges Accessed Via “Add new run” List individual machines to scan e.g. 231.234.11.32 Choose subranges e.g. 10.1.1.1-56 Choose subnet Mask e.g. 192.168.1/24
  • 6. Scheduling Runs Can add an ad-hoc (snapshot) or scheduled discovery runs
  • 7. Choose the Scanning Level Sweep scan Is there anybody there? Note: Host nodes will NOT be created at this level Host Identification - basic host information Host Information - run discovery commands but not patterns Full discovery - the works
  • 8. What Scanning Level to Use For general use: Full Discovery to ensure the most amount of information is recovered During initial deployment: Sweep Scans to get a rough understanding of the environment before configuring credentials
  • 9. Discovery Protocols Without logging in Telnet banner scraping Port scanning HTTP HEAD Logging in SSH, rlogin, telnet WMI, remcom, rcmd SNMP Port scanning, telnet banner, HTTP HEAD ssh, telnet, rlogin, SNMP, rcmd
  • 10. Scanning Credentials You can add credentials for single devices and ranges Can use regex wildcards Will be tried in display order Login credentials SNMP credentials Database credentials
  • 11. Login Credentials Can create credentials for a singe device ip or range Can use regex (.* or 10.10.10.(23|25)) or a range specification ( 10.10.10.* or 10.10.1-5.* or 10.10.10.0/24) Will try each credentials in the order displayed By default, will store the last successful credentials for each host to use in future runs
  • 12. Setting SNMP Credentials SNMP credentials are called community strings Use or request a readonly (RO) string for tideway discovery
  • 13. Add Exclude Ranges Add IP ranges of hosts that should NOT be included in discovery Useful for excluding sensitive or fragile hosts
  • 15. View Discovery Results Can look at the types of data recovered DDD (Directly Discovered Data) View discovery access reports Reporting on discovery as a whole
  • 16. View Discovery Runs View statistics of an individual discovery run Can drill down to view the host details page or details from DiscoveryAccess Skipped or error results Some no access details No Response (dark space) Errors
  • 17. Further Information Online Documentation: http://www.tideway.com/confluence/display/81/Using+BMC+Atrium+Discovery Tideway Foundation Version 7.2 Documentation Title

Editor's Notes

  • #5: Additional notes for questions: UNIX is tried first as it fails faster than Windows. This is not configurable. SNMP is tried third, but as SNMP discovery is not configurable and recovers a reduced fixed set of infrastructure information it is left off this slide.
  • #6: Need to list by IP, cannot list by name.
  • #12: Covered in more details in Discovery Credentials module
  • #13: Covered in more details in Discovery Credentials module
  • #14: Networking equipment, Fragile hosts, storage equipment, DNS round robin IP’s, global traffic mngr are a few examples of devices or end points that customers have wanted to exclude
  • #19: Optionally you may wish to complete the labs that have been prepared to accompany this module. Please download the lab zip file that should be available where you accessed this module. Make sure you have access to a running appliance before attempting the labs. It is best to use the training demo VA provided as it is set up to work with the labs. You may need to review tutorial material in order to work out the solutions.