Scanning IP Blocks

MITRE ATT&CK FRAMEWORK

Scanning IP Blocks Tools

Scanning IP Blocks is a technique under the Reconnaissance tactic in the MITRE ATT&CK framework. This technique involves the red team operation action of scanning a range of IP addresses, commonly referred to as an IP block, to gather information about systems, services, or devices available on those IP addresses.

Scanning IP Blocks is usually an initial step in the cyber attack lifecycle where adversaries seek to collect information about a target network or system. It can be used to discover live hosts, open ports, services running, and other valuable information that might help an adversary plan their attack.

This process can be done using a variety of tools such as Nmap, Masscan, or others. These tools can help determine what devices are active on a network, what services those devices are offering, and potentially any vulnerabilities that might be present.

This is a free and open-source tool that is widely used for network discovery and security auditing. Nmap can be used to discover hosts and services on a computer network, thus building a “map” of the network.

Sn1per integrates with several other popular penetration testing tools to automate the process of probing for vulnerabilities. For example, it uses Nmap for port scanning, and tools like Nikto and GoBuster for web services scanning. It also can perform brute forcing, fingerprinting, and vulnerability scanning, among other things.

This is an open-source web server scanner that performs comprehensive tests against web servers for multiple items, including potentially dangerous files/CGIs, outdated server software, and more.

This is a proprietary vulnerability scanner developed by Tenable Network Security. Nessus can scan for vulnerabilities, misconfigurations, default passwords, and more.

Red Team Operators simulate full-scale cyber attacks on an organization, essentially playing the role of the attacker. The goal is not only to find vulnerabilities in a system, but also to assess how well the organization’s defenses (people, processes, and technologies), including the Blue Team, can withstand an actual cyber attack. The red team’s operations are designed to be as realistic as possible to simulate real-world threats.

The cybersecurity information provided on this site is strictly for educational use. We hold no responsibility for misuse and urge users to apply these skills ethically, on networks or systems where they have explicit authorization – such as a private home lab.