Creating network baselines with scanPBNJ

When performing a penetration test, it is important to know when and what changed over a period of time. Administrators are typically overworked and will probably still need to get work completed while you are performing your testing. One method of ensuring that you are not playing on an ever-changing field is to grab a baseline of the network you are testing. PBNJ is very capable of this task. The website for scanPBNJ is located at http://pbnj.sourceforge.net. The key item of note about scanPBNJ is that it uses nmap to scan the network and then stores the results in a database for you along with timestamps of when the scan was performed. In a terminal window on Kali, enter the following:

# apt-get install ...

Get Advanced Penetration Testing for Highly-Secured Environments - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.