Service scan
Encyclopedia
On computer network
s, a service scan identifies the services running on a list of open ports. This is closely tied to port scanning and some tools (e.g. nmap
, nessus
) support both. A service scan is preferable to referring to a port list, as it can identify services running on non-standard ports, which is common in practice.
Service scanners work by sending some probe data to the port, and monitoring the response. For example, sending "GET /" as a probe could detect a web server, and the exact response will give some indication which server. Multiple probes will be sent to identify less common services. The nmap
service scan captures information from unidentified ports, and users are encouraged to submit details of these, which will be included in updates.
Almost all vulnerability scanner
s have a built-in service scan. For example, Nessus
uses the find_service plugin to perform a service scan. The results of the service scan are used to determine which tests to run against each port.
Computer network
A computer network, often simply referred to as a network, is a collection of hardware components and computers interconnected by communication channels that allow sharing of resources and information....
s, a service scan identifies the services running on a list of open ports. This is closely tied to port scanning and some tools (e.g. nmap
Nmap
Nmap is a security scanner originally written by Gordon Lyon used to discover hosts and services on a computer network, thus creating a "map" ofthe network...
, nessus
Nessus (software)
In computer security, Nessus is a proprietary comprehensive vulnerability scanning program. It is free of charge for personal use in a non-enterprise environment. Its goal is to detect potential vulnerabilities on the tested systems. For example:...
) support both. A service scan is preferable to referring to a port list, as it can identify services running on non-standard ports, which is common in practice.
Service scanners work by sending some probe data to the port, and monitoring the response. For example, sending "GET /" as a probe could detect a web server, and the exact response will give some indication which server. Multiple probes will be sent to identify less common services. The nmap
Nmap
Nmap is a security scanner originally written by Gordon Lyon used to discover hosts and services on a computer network, thus creating a "map" ofthe network...
service scan captures information from unidentified ports, and users are encouraged to submit details of these, which will be included in updates.
Almost all vulnerability scanner
Vulnerability scanner
A vulnerability scanner is a computer program designed to assess computers, computer systems, networks or applications for weaknesses. There are a number of types of vulnerability scanners available today, distinguished from one another by a focus on particular targets...
s have a built-in service scan. For example, Nessus
Nessus (software)
In computer security, Nessus is a proprietary comprehensive vulnerability scanning program. It is free of charge for personal use in a non-enterprise environment. Its goal is to detect potential vulnerabilities on the tested systems. For example:...
uses the find_service plugin to perform a service scan. The results of the service scan are used to determine which tests to run against each port.