NMAP

Course
Time
7 hours 1 minute
Difficulty
Beginner
CEU/CPE
7

Video Transcription

00:00
Before we start with an map, I'd like to talk briefly about the ethics and legality of hosting network scanning.
00:07
I'm not a lawyer, so if you have any questions about legal stuff, please find a good one and consult with them.
00:13
But whatever you do, please make sure you understand the legal ramifications of scanning before you continue with this course.
00:19
Thank you.
00:21
In this lesson, I'll talk to you about the ethics of scanning, using and map.
00:26
Then we'll compare and contrast that with illegalities of scanning.
00:30
Next, they'll provide you with some reasons why you may want to seek legal advice.
00:35
Then I'll talk to you about the biggest piece of advice I can give. You. Obtain written authorization from the owner of any target you wish to scan prior to scanning it.
00:44
Next up. Preach to you about being good
00:47
and finally, I'll provide you with some really good references about the ethics and legalities of scanning within map.
00:53
Let's get started.
00:55
So is scanning ethical,
00:58
In my opinion, it is in most cases,
01:00
but this certainly depends on who is performing the scan
01:03
where they're performing it and why,
01:07
and map was created to help network administrators and security professionals build and maintain great networks with secure hosts.
01:14
Unless you're running intrusive scans or scans that are intentionally designed to exploit some host Boulder vulnerabilities or deny service to its users. I believe scanning is ethical.
01:26
For example, let's say that I'm interested in finding all live hosts on my company's network as a part of my job is a network security admin
01:34
running a quick pink scan of my network. Using N map will provide me with a very fast inventory of every host that responds.
01:42
The load that it places on the network and its hosts is very low.
01:47
And in most cases, especially when you adjust the timing of the scan,
01:51
the scan won't even set off an I. D. S alarm.
01:55
There is simply no reason that a scam like this could be considered unethical.
01:59
What that said. Not all scans are created equal.
02:02
When is it unethical?
02:05
Well, I think the rule of thumb here is scanning is unethical. If your intentions are bad,
02:10
if you don't understand the ramifications of your skin,
02:14
or if your scan has the possibility of exploiting a vulnerability or denying service to its users,
02:21
However, you need to know that scanning with N map is still a somewhat controversial topic,
02:25
and what I think is ethical or unethical makes little difference to the legal community.
02:31
So let's talk about the legalities of network scanning a bit.
02:36
The next question we should answer is, is scanning with in map legal?
02:40
Well, for the most part, the answer is yes. In the United States, there are no federal laws that explicitly criminalize port scanning.
02:47
With that said, though, the use of N map as a scanning tool has caused both criminal and civil suits.
02:53
For example, in 1999 a guy named Scott Molten initiated a skin that was related to a public network he was setting up.
03:01
Ah, competing consultant company noticed the scan because they maintained a Web server on that network and pushed for both civil and criminal suits to be filed.
03:12
They were eventually dropped, but not without a prolonged fight, and a lot of money paid the lawyers.
03:17
The criminal suit cited the Computer Fraud and Abuse Act of America Sections A five B,
03:23
which applies to anyone who intentionally access is a protected computer without authorization,
03:30
and as a result of such conduct causes damage is
03:35
as I see it, though the big problem was that the only damages that could be proven were the time and resource is spent by his competitors. In the investigation of the scan,
03:45
no breach occurred.
03:46
No exploitation attempt was launched and no service was denied to users.
03:52
Scott's win, in the end, was huge for ethical users of N map, and he's gone on to do bigger and better things.
03:58
But the point here is that in the US and many of its look cows,
04:01
people can use the legal system to harm ethical I t people to serve their own unethical purposes.
04:09
Scanning is always legal when you've obtained written authorization to perform the scan, and you've generated a statement of work that includes details of the types of scans you have initiated.
04:19
It's also always legal when you're performing it within your own home on computers and networks that you own.
04:27
It's also almost always legal when performing those scans is a part of your job responsibilities as laid out by your job description and does not go beyond your company's network perimeter.
04:39
You should always look Air Company's policies your job description and get written approval from your boss before initiating a scan at work.
04:46
If you're at school, similar rules apply.
04:50
So when is it illegal?
04:53
I would say that it could be considered illegal and could bring civil or criminal charges if any harm or damages could be proven.
05:00
It entirely depends on the parties involved and jurisdictions affected.
05:04
If you think it might be considered illegal, don't do it.
05:08
I wish I could be more specific than that. But the Internet is still a little like the Wild West and different law enforcement lawyers, Judges and Juries interpret our aging and inadequate laws in different ways,
05:20
and they simply can't be expected to understand. The technicalities of scanning always err on the side of caution. And perhaps my best advice is on the next slide. Seek legal advice
05:32
after all. Like I said, I'm not a lawyer.
05:36
If and or when you seek legal advice, make sure you find a lawyer that has experience with the prosecution or defense of civil or criminal suits related to network scanning
05:46
or, if this proves impossible, at least seek guidance from a lawyer that has prosecuted or defended any I T related suits.
05:55
And because different locales have different laws, make sure that the attorney works or has worked in the jurisdiction in which you intend to launch your scan or where the target resides.
06:04
As I mentioned before, there are no laws that explicitly criminalize scanning. But a good attorney can provide much better guidance on this than I ever could.
06:15
And remember, civil lawsuits could be brought against anyone at any time for any reason, and they're very rarely thrown out or considered frivolous, even with weak evidence.
06:26
This is especially true in I T related suits, because even modern judges tend to be old school
06:30
and lawsuits will almost always be very expensive to defend if one has brought against you.
06:36
Besides seeking sound legal advice from a competent attorney, my only other advice is to make sure you have really good insurance that will pay for the defence of such a suit should it unfairly be brought against you.
06:50
Okay, I mentioned this before, but I want to mention it again because it's so important,
06:55
obtained written authorization from those who own or operate any host that you intend to skin prior to launching the scan.
07:03
This is ethical and provides you with good legal protection.
07:06
If you're scanning hosts on networks that you maintain, make sure it's in your job description and get written authorization
07:15
unless you own it.
07:17
If your scan goes beyond your network perimeter and even if you or your company owns the scanning station and the target, make sure you check your SP is acceptable use policy.
07:28
In some cases, your eyes be may shut off service if they detect network scans they deem to be a threat.
07:34
Is rare is this is
07:36
You should still check to make sure before you launch.
07:40
This may be overly simplistic, but my other piece of advice is simply to be good.
07:45
There are too many bad guys out there. Please be one of the good guys.
07:48
Have a legitimate reason for your scans and make sure that it doesn't involve doing harm.
07:53
Avoid noisy and or intrusive scans. I'll talk about these later, but they could include operating system discovery scans, advanced or aggressive scans, certain NSC scripts, scanning a huge network or too many ports, or setting the timing of the scan too aggressive or insane mode.
08:11
In other words, practice blight. Scanning.
08:13
This means that you should target your scans tightly.
08:16
Onley scan the hosts, from which
08:18
you want to gather information and limit the number of ports you're scanning if possible.
08:24
For example,
08:24
don't scan a slash 16 network if you're only interested. Interested in information from a slash 24
08:31
and
08:33
if you're only interested in Web and email service is just scan relevant ports like 25 1 10 and 80 for example,
08:39
use the timing of dash T two or less if possible.
08:43
I'll talk more about timing later, but basically the number next to the T indicates how aggressive the scans packets are crafted
08:50
and can be anything from 0 to 5.
08:54
The higher the number, the more aggressive it is
08:56
and finally don't depend on this. But in map has built in features that are intended to prevent crashing targets.
09:03
Practicing polite scanning will reduce the possibility that your scan will be noticed and will have minimal impact on the networks and host. Being scanned
09:13
on this slide and providing you with some additional resource is
09:16
if there is only one reference that I urge you to explore on this slide, it would be the 1st 1
09:22
The creator of N map presents a compelling case for every point I've tried to express in this lesson, and he goes into much more detail without being too wordy,
09:31
I think you'll find it very informative and well worth your time.
09:35
In this lesson, we discussed the ethics of scanning using and map.
09:39
Then we compared and contrasted that with the legalities of scanning.
09:43
Next, I provided you with some reasons why you may want to seek legal advice.
09:48
Then I talked to you about obtaining written authorization.
09:50
Next, I urge you to be good.
09:54
And finally, I provided you with some references about the ethics and legalities of scanning within map.
10:00
Thanks so much for going through this lesson with me and I'll talk to you in the next one.

Up Next

NMAP

The network mapper (NMAP) is one of the highest quality and powerful free network utilities in the cybersecurity professional's arsenal.

Instructed By

Instructor Profile Image
Rob Thurston
CIO at Integrated Machinery Solutions
Instructor