Hello – I’m trying to follow the CIS controls and one of the items is – *’Utilize a passive discovery tool to identify devices connected to the organization’s network and automatically update the organization’s hardware asset inventory.’*

It looks like Nmap and Ndiff can possibly accomplish this. Nmap can save scan results in a folder and then Ndiff can compare results – and with Windows scheduled tasks can email you results. Some of the articles I read were for Linux, not Windows. Has anyone accomplished this with Windows and willing to share info?

Is there another tool (paid is fine, too) that can do network discovery? What is everyone using?

Thanks for any help!

Share This Discussion


  • elatllat

    November 2, 2021

    nmap is not passive, pcap is.

  • SpawnDnD

    November 2, 2021

    One item that comes to mind.

    QUALYS has a network background tool where it sees traffic from hosts that might be outside the subscription…aka…IPs it doesn’t track, so you can see assets that are new…


Leave a Comment

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.