Optimization

How do I optimize scans for a small amount of IP addresses?

This article describes the best way to perform a targeted scan on a specific set of IP addresses, such as a small branch office or a critical infrastructure component. 

Learn more about optimizing scans 
To better understand the settings mentioned in this article, we recommend reading the main article on optimizing scans. This will provide valuable information on making the most of your scans and ensure efficient and accurate results.
https://support.holmsecurity.com/knowledge/how-do-i-optimize-scans

Recommended scan profile settings

Port Selection: Use a "Full" port list that ensures the most comprehensive coverage of potential entry points and vulnerabilities within the limited IP range, optimizing the scan's effectiveness. 

Customizable Scanner Configurations:

  • Scan Intensity: Choose "Standard Intensity" to minimize disruption, especially if the IP addresses belong to critical infrastructure. 
  • Hosts to Scan in Parallel: Opt for "Standard" to scan a few hosts simultaneously, ensuring precision. 
  • Processes to Run in Parallel: Select "Standard" to run four tests simultaneously, focusing on the specific IP addresses. 
  • Packet Delay: Use "Low" to maintain a slow and non-disruptive scan. 
  • Host Timeout: Use "Low" to keep the host timeout at 8 hours. That should be enough to scan for all TCP and Standard UDP ports. 

Speed of the scan
Performing a scan on a small number of IP addresses can be done quickly and efficiently, enabling you to identify vulnerabilities with minimal impact on your network. However, it is important to note that the speed of the scan will depend on the ports you have selected for scanning.