topic Nmap vs Firesight in Network Security

Nmap vs Firesight

oyeroshe — Sun, 10 Mar 2019 13:31:24 GMT

How can I enable Firesight to detect Nmap activity. It detects only with specific nmap keys. Thanks

This really depends on what

Dennis Perto — Tue, 17 May 2016 06:45:43 GMT

This really depends on what you want do detect.
NMAP is not ment to be detectable. There is no "application detector" for custom crafted packages on a network. 🙂

Hello ,

Jetsy Mathew — Tue, 17 May 2016 08:08:38 GMT

Hello ,

You should probably give some more details here.

What you mean by nmap activity here ?

We dont have any application detector specifically for nmap.

Regards

Jetsy

I have the same problem, I'm

guibarati — Wed, 07 Sep 2016 19:32:09 GMT

I have the same problem, I'm using NMAP to do port scan on a single host and I can get all the information of all ports open on that specific host.

I enabled the pre-processor for port scan and enabled the IPS rules with GIP 122:1-122:27. But I can still scan hosts going thought the firepower.