... Usually done by a bad guy (a.k.a Black Hat). Its not magic. It has a methodology. Many different Techniques (often change over time). New vulnerabilities are found (therefore new attacks over time).
by a white hat from a hacker’s (a.k.a black hats) point of view. A “simulated attack” with a predetermined goal. Telling too many people may invalidate the test.
factors can lead to a security breach. Know the tools COTS Shareware/Freeware Gets management’s attention. Great educational opportunity for audit staff.
a taxonomy of network scanning techniques. In Proceedings of the 2008 Annual Research Conference of the South African institute of Computer Scientists and information Technologists on IT Research in Developing Countries: Riding the Wave of Technology (Wilderness, South Africa, October 06 - 08, 2008). SAICSIT '08, vol. 338. ACM, New York, NY, 1-7. Teo, L. 2000. Port Scans and Ping Sweeps Explained. Linux J. 2000, 80es (Nov. 2000), 2.