.

Scanning Amazon EC2 Servers

<<

Seen

User avatar

Full Member
Full Member

Posts: 137

Joined: Mon Aug 30, 2010 1:05 am

Post Thu Jul 26, 2012 12:57 am

Scanning Amazon EC2 Servers

I'm testing a friend's website running on Amazon's EC2 servers.  He put in a request to allow me to test it next week.  The terms are pretty standard, don't DoS the servers.  I'm planning on running Nessus (regular server scan and web app scan), Nikto and BurpSuite Scanner on the site.  Is there anything I should know, settings I should change in the scans before I start?

Thanks.
Sec+, eCPPT
<<

Triban

User avatar

Hero Member
Hero Member

Posts: 620

Joined: Fri Feb 19, 2010 4:17 pm

Post Thu Jul 26, 2012 7:34 pm

Re: Scanning Amazon EC2 Servers

Go through the Nessus plugins and make sure you are running safe scans.  Maybe disable some of the plugins that won't be needed (don't run Oracle plugins if no Oracle service is running).  Will you be running an authenticated scan?
Certs: GCWN
(@)Dewser
<<

Seen

User avatar

Full Member
Full Member

Posts: 137

Joined: Mon Aug 30, 2010 1:05 am

Post Fri Jul 27, 2012 12:49 pm

Re: Scanning Amazon EC2 Servers

Thanks, I was planning on doing both.  Running a server scan without credentials (External IP Scan), and then a web app scan with credentials.  I will have safe scans enabled.  If I have all the plugins enabled, safe scan will ensure that the non-safe ones aren't run right?  The server is run through a PaaS provider, so my friend isn't sure about all the services running so I want to be thorough.

I've never run a scan on a live, external server before, so I'm just trying to be cautious.  I kind of wish I had an external server to test the scans on first, but oh well.

Thanks
Sec+, eCPPT
<<

Triban

User avatar

Hero Member
Hero Member

Posts: 620

Joined: Fri Feb 19, 2010 4:17 pm

Post Sun Jul 29, 2012 7:00 am

Re: Scanning Amazon EC2 Servers

Although the safe scans are supposed to be "safe" there are some plugins that can cause undesired results.  A good example is when you scan a network with all plugins enabled and you hit a bunch of network printers.  The scan requests caused them to print reams of garbage.  Not that I ever did that.  But I heard about it from a friend :D  Now Nessus has a checkbox in the policy to skip "sensitive" devices. 

To find the web app vulns you may want to utilize something like Nikto or Burp suite.
Certs: GCWN
(@)Dewser
<<

Seen

User avatar

Full Member
Full Member

Posts: 137

Joined: Mon Aug 30, 2010 1:05 am

Post Sun Jul 29, 2012 5:29 pm

Re: Scanning Amazon EC2 Servers

I have checked skip sensitive devices :)  And I have Nikto integrated into Nessus.  I also set the max TCP connections very low, so I don't think I'll have a problem.

We'll see though...

And I just ordered Burp Pro.
Sec+, eCPPT

Return to Web Applications

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software