Scanning Services

The OIT Security office will scan for known vulnerabilities on a regular basis. Currently, vulnerability scanning occurs on the first full week of each month.

We typically scan all of the University owned subnets. These scans are opt out - please contact us at security@duke.edu, if you do not wish to be scanned, or if you wish to set up alternate scanning arrangements for your machines.

To scan for vulnerabilities, we:


1.Scan from a machine in the oit.duke.edu domain.


2.Use nessus and nmap.


3.Due to the number of machines, and the nature of the scans, these scans are spread over four days.


4.We will be using a customized version of Nessus to scan for the SANS Top 20 Vulnerabilities

We run our vulnerability scans over the course of a week. We scan several subnets each day, and get the reports out as soon as possible after the scans have finished on Thursday. The current schedule is:

• Monday: subnets belonging to OIT, DataCom, Computer Operations, and Internal Audit
• Tuesday: subnets belonging to Arts & Sciences
• Wednesday: subnets belonging to Duke internal departments (i.e. Student Affairs, HR, Finance, Facilities, etc)
• Thursday: subnets belonging to Law, Fuqua, NSOE & Marine Lab, Divinity, Graduate School, and libraries