In my country, simply scanning for hosts/IP addresses could get you implicated, since IP addresses are under certain circumstances regarded as PII according to the GDPR. So… stay safe xD
Unauthorized port scanning. If your job involves networking or cybersecurity, you’re contracted to do pen-testing, or your activities are limited to a network you own, you’ll be fine.
Definitely! But speaking of pen-testing, there are some “funny” stories about pen-testers getting temporarily apprehended and questioned by security or the authorities when communication between their employer and their client wasn’t done properly. I wonder if the IT Crowd at my agency would notice if I did an unsanctioned, unauthorized port scan from my office desktop…
Yep, true story. Besides from the particulars in the GDPR that affects EU citizens, I think there is a more generalized disclaimer in the nmap manual about doing certain scans.
In my country, simply scanning for hosts/IP addresses could get you implicated, since IP addresses are under certain circumstances regarded as PII according to the GDPR. So… stay safe xD
Wtf really?
Unauthorized port scanning. If your job involves networking or cybersecurity, you’re contracted to do pen-testing, or your activities are limited to a network you own, you’ll be fine.
Definitely! But speaking of pen-testing, there are some “funny” stories about pen-testers getting temporarily apprehended and questioned by security or the authorities when communication between their employer and their client wasn’t done properly. I wonder if the IT Crowd at my agency would notice if I did an unsanctioned, unauthorized port scan from my office desktop…
https://nmap.org/book/legal-issues.html
Yep, true story. Besides from the particulars in the GDPR that affects EU citizens, I think there is a more generalized disclaimer in the nmap manual about doing certain scans.
No US laws currently criminalize port scanning.
So go learn SEToolkit instead I guess.
The US isn’t the only country; this is a GDPR thing.