• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 461
  • Last Modified:

Recommendation for public IP scanning tool

Looking for a hosted or on premises solution (I can built a server to host it) that will let me schedule public IP scans of my clients networks (about 50 networks with different public IP ranges) to make sure no unnecessary ports are open and also show me changes from previous scans. I can run nmap on as needed basis but I'd like it be done in a more cleaner way with reporting and maybe even alerting of ports get opened.

Would appreciate some inexpensive recommendations

Thank you

6 Solutions
use nmap and just script it. You can use cli and run it as a scheduled task.
Yes, nmap can be scripted and give you the desired result. If you are not good/aware of scripting, this would be difficult.

What we did is : scheduled nmap as cron, after each execution throw the output to a csv, in the next run compare the latest with the old and mail the difference once in 24hrs to specified emails.

piotrmikula108Author Commented:
yeah, not my strongest skill. would like an out of box solution

thx thou!
Become an IT Security Management Expert

In today’s fast-paced, digitally transformed world of business, the need to protect network data and ensure cloud privacy has never been greater. With a B.S. in Network Operations and Security, you can get the credentials it takes to become an IT security management expert.

One thought on this would be to use nmap in conjunction with Splunk. There is a nmap plugin that allows pinging, portscans, ......

you would need to use the cli commands for nmap, but you look them up once and are done. using the free version of splunk you would have a record of all of this, be able to run quick searches against it, and pull reports. this may be more than what you are looking for, but splunk is easy to setup and once you have the syntax for the port scan down once, you are done.

here is a simpler one off tool, but you will have to run it each time. http://www.whatsupgold.com/free-software/network-tools/port-scanner.aspx
for a totally out of the box solution, there are any number of vulnerability scanners, but along with the simplicity of these solutions comes a cost. Is this something that you are able to spend money on, or does it have to be free?
piotrmikula108Author Commented:
I can pay a little bit - if it's good, but not too much
here are a few products to start. I have used Nessus before. These will give you beyond port scans. They will also scan for know vulnerabilities as well.

Manage Engine - used other products of theirs, pretty good

https://store.manageengine.com/security-manager/index.html  -pricing

Nessus - I have used version 4 and thought it was good

http://www.tenable.com/products/nessus/nessus-faq#anchor60 - pricing

Eeye - never heard of them before this search

Rapid 7 - never used it.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now