Lan Scan

WMI connection must be allowed through the firewall on all computers

LAN Scan

Perform a Network Assessment using the LAN Scan. The LAN Scan, especially when performed alongside the Computer Scan, gives you broad insight into the assessment environment. The LAN Scan has many everyday uses for your MSP, including:

  • Conducting full, 'deep-dive' network assessments
  • Documenting your customers' networks as part of regular "Technology Reviews"
  • Generating change management reports for clients
  • Conducting Risk Analyses to help your clients make better and more informed business decisions

Follow these steps to perform a LAN Scan:

Step 1 — Open Active Assessment

In this step, open your active assessment or create a new assessment.

    1. From Network Detective Pro, click Assessments.

    1. If you don't have an active assessment already created, click Create Assessment.

    1. Enter a name for your assessment and click Confirm.

    1. You can then access the assessment dashboard, where you can begin collecting assessment data.

Step 2 — Perform LAN Scan

In this step, you will run a LAN Scan on the target network and upload the data file into your assessment.

Download and run the Network Detective Data Collector on a PC on the target network. Use the Data Collector to scan the target network. Here are the steps:

    1. Visit https://www2.rapidfiretools.com/networkdetective-downloads and download the Network Detective Data Collector.
    2. Run the Network Detective Data Collector executable program as an Administrator (right click>Run as administrator).

IMPORTANT  For the most comprehensive scan, you MUST run the data collector as an ADMINISTRATOR.

  1. Unzip the files into a temporary location. The Network Detective Data Collector’s self-extracting ZIP file does not install itself on the client device. 
  2. The Network Detective Data Collector Scan Type window will appear.

Configure the network scan using the wizard.

Scanning an Active Directory Domain-based Network

Once you run the Data Collector, the Scan Type screen will appear.

    1. Select the Network Data Collector option. Click Next.

NOTE  You can optionally choose to run the Local Computer Data Collector, too, to collect data from the local machine that you are using to run the network scan.

    1. The Active Directory window will appear. Select the type of network you are scanning: Active Directory domain.

    1. Next enter the network's Fully Qualified Domain Name along with a username and password with administrative rights to connect to the local Domain Controller and Active Directory.

NOTE  For example: corp.yourprospect.com\username.

    1. Enter the name or IP address of the domain controller.
    2. Click Next to test a connection to the local Domain Controller and Active Directory to verify your credentials.
    3. The Local Domains window will appear. Select the Domains to scan. Choose whether to scan all domains or only specific domains and OUs. Click Next.

Confirm your selections if you opt to scan only specific Domains and OUs. Click OK.

    1. The Additional Credentials screen will appear. Enter any additional credentials to be used during the scan using the fully qualified domain name. For example: corp.yourprospect.com\username. Click Next.

    1. The External Domains screen will appear. Enter the name(s) of the organization’s External Domains. Click Next.

A Whois query and MX (mail) record detection will be performed on the external domains.

Perform Dark Web Scan for Compromised Passwords: Select this option to check the domains you enter for compromised usernames/passwords on the dark web. See also

    1. The IP Ranges screen will then appear. The Network Detective Data Collector will automatically suggest an IP Range for the scan. If you do not wish to scan the default IP Range, select it and click Clear All Entries. Use this screen to enter additional IP Addresses or IP Ranges and click Add.

From this screen you can also:

      • Click Reset to Default to reset to the automatically suggested IP Range.
      • Click Import from Text File to import a predefined list or range of IP addresses.

 

IMPORTANT  Scans may affect network performance. Select Perform minimal impact scan if this is an issue. 

 

When you have entered all IP Ranges to scan, click Next.

 

IMPORTANT  If you are scanning a large number of IP addresses, confirm that you wish to continue.

 

    1. The SNMP Information window will appear. Enter any additional SNMP community strings used on the network. Click Next.

NOTE  Select Attempt SNMP against non-pingable devices to enhance Layer 2/3 data collection and reporting. Note that this option may increase overall scan time.

    1. The optional VMware credentials window will appear. Enter the hostnames or IP Addresses of any VMware hosts that you wish to include in the scan. Likewise enter credentials needed to access the VMware hosts. Click Next.

    1. The Verify and Run window will appear. Select the folder that you want to store the scan data file in after the scan is completed. You may also change the scan’s Output Assessment File Folder location and Basename for the scan data.

NOTE  If you are using a USB flash drive, select a folder on that drive.

The file will be output as an .ndf file.

NOTE  Use the Pre-scan Analyzer to identify and correct any configuration issues prior to running the Network Scan. The Push Deploy tab will indicate which devices are fully accessible for scanning to ensure a more thorough scan. Pre-scan results and recommendations are provided at the completion of the pre-scan.

Enter any Comments and then click Start.

    1. The Collection Progress window will appear. The Network Scan’s status is detailed in the Collection Progress window. The Collection Progress window presents the progress status of a number of scanning processes that are undertaken.

At any time you can Cancel Data Collection which will not save any data. By selecting Wrap It Up you can terminate the scan and generate reports using the incomplete data collected.

Upon the completion of the scan, the Finish window will appear. The Finish window indicates that the scan is complete and enables you to review the scan output file’s location and the scan’s Results Summary.

Click Done to close the Network Detective Data Collector window. Note the location where the scan’s output file is stored.

Scanning a Workgroup Network

Once you run the Data Collector, the Scan Type screen will appear.

    1. Select the Network Data Collector option. Click Next.

NOTE  You can optionally choose to run the Local Computer Data Collector, too, to collect data from the local machine that you are using to run the network scan.

    1. The Active Directory window will appear. Select the type of network you are scanning: Workgroup).

    1. The Scan Credentials screen will appear. Enter additional credentials which can access the individual workstations as a local administrator.

IMPORTANT  If each workgroup PC has its own unique Admin username and password credentials, you will need to enter each set of credentials here in order to scan these PCs.

Then click Next.

    1. The External Domains screen will appear. Enter the name(s) of the organization’s External Domains. Click Next.

A Whois query and MX (mail) record detection will be performed on the external domains.

Perform Dark Web Scan for Compromised Passwords: Select this option to check the domains you enter for compromised usernames/passwords on the dark web.

    1. The IP Ranges screen will then appear. The Network Detective Data Collector will automatically suggest an IP Range for the scan. If you do not wish to scan the default IP Range, select it and click Clear All Entries. Use this screen to enter additional IP Addresses or IP Ranges and click Add.

From this screen you can also:

      • Click Reset to Default to reset to the automatically suggested IP Range.
      • Click Import from Text File to import a predefined list or range of IP addresses.

 

IMPORTANT  Scans may affect network performance. Select Perform minimal impact scan if this is an issue. 

 

When you have entered all IP Ranges to scan, click Next.

 

IMPORTANT  If you are scanning a large number of IP addresses, confirm that you wish to continue.

 

    1. The SNMP Information window will appear. Enter any additional SNMP community strings used on the network. Click Next.

    1. The optional VMware credentials window will appear. Enter the hostnames or IP Addresses of any VMware hosts that you wish to include in the scan. Likewise enter credentials needed to access the VMware hosts. Click Next.

    1. The Verify and Run window will appear. Select the folder that you want to store the scan data file in after the scan is completed. You may also change the scan’s Output Assessment File Folder location and Basename for the scan data. The file will be output as a .ndf file.

NOTE  Use the Pre-scan Analyzer to identify and correct any configuration issues prior to running the Network Scan. The Push Deploy tab will indicate which devices are fully accessible for scanning to ensure a more thorough scan. Pre-scan results and recommendations are provided at the completion of the pre-scan.

Enter any Comments and then click Start.

    1. The Collection Progress window will appear. The Network Scan’s status is detailed in the Collection Progress window. The Collection Progress window presents the progress status of a number of scanning processes that are undertaken.

At any time you can Cancel Data Collection which will not save any data. By selecting Wrap It Up you can terminate the scan and generate reports using the incomplete data collected.

Upon the completion of the scan, the Finish window will appear. The Finish window indicates that the scan is complete and enables you to review the scan output file’s location and the scan’s Results Summary.

Click Done to close the Network Detective Data Collector window. Note the location where the scan’s output file is stored.

Step 3 — Upload LAN Scan into your Assessment

When you complete the LAN Scan, upload the scan file (.ndf). To do this:

    1. Return to your Network Detective Pro assessment. From Upload LAN Scan, click Upload.

    1. Select the .ndf file and upload it into your assessment. It will appear at the bottom of the page with the Uploaded status.

  • 0 Utenti hanno trovato utile questa risposta
Hai trovato utile questa risposta?

Articoli Correlati

Generate Report

Generate Reports Network Detective Pro allows you to use your scan data to quickly generate a...