Scan Templates
| Name | Description | Device Discovery | Service Discovery | Checks |
|---|
| Custom Exhaustive | more threads, syn scan, more port scans, no device discovery | Disabled | Full TCP, Default UDP | Safe Only |
| Denial of service | Performs a basic network audit of all systems using both safe and unsafe (denial-of-service) checks. In-depth patch/hotfix checking, policy compliance checking, and application-layer auditing will not be performed. | ICMP, TCP | Default TCP, Default UDP | Custom |
| DHCP | Trying to come up with a discovery that would allow identifying DHCP servers. | ICMP, TCP, UDP | Custom UDP | Disabled |
| Discovery Scan | Performs a discovery scan to identify live devices on the network, including host name and operating system. No further enumeration, policy or vulnerability scanning will be performed. | ICMP, TCP, UDP | Custom TCP, Custom UDP | Disabled |
| Discovery Scan - Aggressive | Performs a fast and cursory discovery scan to identify live devices on high speed networks, including host name and operating system. Packets are sent at a very high rate which may trigger IPS/IDS sensors, SYN flood protection and exhaust states on stateful firewalls. No further enumeration, policy or vulnerability scanning will be performed. | ICMP, TCP, UDP | Custom TCP, Custom UDP | Disabled |
| Exhaustive | Performs an exhaustive network audit of all systems and services using only safe checks, including patch/hotfix checking, policy compliance checking, and application-layer auditing. Performing an exhaustive audit could take several hours or even days to complete, depending on the number of hosts selected. | ICMP, TCP | Full TCP, Default UDP | Safe Only |
| Full audit | Performs a full network audit of all systems using only safe checks, including network-based vulnerabilities, patch/hotfix checking, and application-layer auditing. Only default ports are scanned, and policy checking is disabled, making this faster than the Exhaustive scan. | ICMP, TCP | Default TCP, Default UDP | Custom |
| Full audit, no web spidering | Performs a full network audit of all systems using only safe checks, including network-based vulnerabilities, patch/hotfix checking, and application-layer auditing. Only default ports are scanned, and policy checking is disabled, making this faster than the Exhaustive scan. | ICMP, TCP | Default TCP, Default UDP | Custom |
| HIPAA compliance | Performs a HIPAA audit of all systems using only safe checks. Settings appropriate for auditing compliance will be enabled as per HIPAA section 164.312 ("Technical Safeguards"). Any conditions resulting in inadequate access control, inadequate auditing, loss of integrity, inadequate authentication, or inadequate transmission security (encryption) will be flagged. | ICMP, TCP | Default TCP, Default UDP | Safe Only |
| Internal Fast Full Audit | More threads, port scans, no-web spidering | Disabled | Default TCP, Default UDP | Custom |
| Internet DMZ audit | Performs an in-depth penetration test of public-facing servers. All common internet services will be scanned, including web, FTP, mail (SMTP/POP/IMAP/Lotus Notes), DNS, database, telnet, SSH, and VPN services. In-depth patch/hotfix checking and policy compliance audits will not be performed. | Disabled | Default TCP | Custom |
| Linux RPMs | Performs an audit of Linux systems for the proper installation of RPM patches. For greatest success, administrative credentials should be used when performing Linux RPM scans. | ICMP, TCP | Custom TCP | Custom |
| Microsoft hotfix | Performs an audit of Microsoft Windows systems for the proper installation of hotfixes and service packs. For greatest success, administrative credentials should be used when performing Microsoft hotfix scans. | ICMP, TCP | Custom TCP | Custom |
| Payment Card Industry (PCI) audit | Performs a Payment Card Industry (PCI) compliance audit of all systems using only safe checks, including network-based vulnerabilities, patch/hotfix checking, application-layer auditing, and checks for potential vulnerabilities. All TCP ports are scanned along with well-known UDP ports. Policy checking is disabled. | ICMP, TCP | Full TCP, Default UDP | Custom |
| Penetration test | Performs an in-depth penetration test of all systems using only safe checks. Host-discovery and network penetration options will be enabled, allowing NeXpose to dynamically discover additional systems in your network to target. In-depth patch/hotfix checking, policy compliance checking, and application-layer auditing will not be performed. | ICMP, TCP | Default TCP, Default UDP | Custom |
| Safe network audit | Performs a non-intrusive network audit of all systems using only safe checks. In-depth patch/hotfix checking, policy compliance checking, and application-layer auditing will not be performed. | ICMP, TCP | Default TCP, Default UDP | Custom |
| Sarbanes-Oxley compliance | Performs a Sarbanes-Oxley (SOX) audit of all systems using only safe checks. The SOX compliance audit will highlight threats to digital data integrity, data access auditing, accountability, and availability, as mandated in Section 302 ("Corporate Responsibility for Fiscal Reports"), Section 404 ("Management Assessment of Internal Controls"), and Section 409 ("Real Time Issuer Disclosures") respectively. | ICMP, TCP | Default TCP, Default UDP | Safe Only |
| Web audit | Performs an audit of all web servers and web applications. Suitable for scanning both public-facing and internal web servers, including application servers, ASP's, CGI scripts, etc. Patch checking and policy compliance audits will not be performed. Note that the Web Audit will not scan FTP servers, mail servers, or database servers. For that, you may want to use the Internet DMZ Audit instead. | Disabled | Default TCP | Custom |
Last updated: Friday, March 20, 2009
|
