[mothered]

Totally forgot this thread.

Regular scans to see or find any open ports that an attack has done or, has gotten access to your network.

Isn't that what Zenmap/Nmap does- Identifies open/vulnerable ports as well as hosts & services running on the network (IPs, hostnames etc), hence allows you to establish If and when an Intrusion has taken place?

Yep, pretty much but, this is automated scanning that stores logs of valuable information of what's happening.

Okay, thanks for confirming.