Home page logo
/
nmap-dev logo
Nmap Development Mailing List

Unmoderated technical development forum for debating ideas, patches, and suggestions regarding proposed changes to Nmap and related projects. Subscribe here.

List Archives

Jan–MarApr–JunJul–SepOct–Dec
2016356269310174
2015429376384308
2014358573515390
2013422534664337
20127399931068533
201111481302925638
201012481035916793
20099288461116732
20085689111038809
2007305509479832
2006410497447326
2005175257202251
200417380131178
20035811314191
200258905977
20011835146
20007720

Latest Posts

Re: I need a replacement for AutoScan Network ToddAndMargo (Dec 23)
Hi Jasey,

EtherApe is a Monitor. I am looking for something
that goes actively looking.

Thank you anyway!

-T

Re: I need a replacement for AutoScan Network Jasey DePriest (Dec 23)
Have you looked at EtherApe?
http://etherape.sourceforge.net/

It would probably do the detection for you although the interface is
entirely different.

-Jasey DePriest

Re: I need a replacement for AutoScan Network ToddAndMargo (Dec 23)

Re: I need a replacement for AutoScan Network Daniel Miller (Dec 23)
Todd,

Thanks for inquiring. I'm not sure exactly how AutoScan Network does this,
so I don't know the best way to replace that function. But here are some
ideas:

* The targets-sniffer script will sniff for packets on the network
interface and report the IPs it detects. This can be done without
specifying IP addresses on the command line. If you add `--script-args
newtargets` these IPs will be added to the scan queue, but if they are...

I need a replacement for AutoScan Network ToddAndMargo (Dec 23)
Hi All,

Try as I may, I am not finding a decent substitute for Auto Scan
Network, which is abandoned.

http://autoscan-network.com/

Auto Scan Network stopped working as of Fedora Core 24
and Windows 7. And Auto Scan has not been maintained
since 2010. :'(

I have used Auto Scan Network to find double routers installed
on networks where customers have changed ISP and never
removed the old routers. Auto Scan instantly showed I had
devices...

Re: smb-enum-shares Barry Dragoon (Dec 23)
I can't get it to work either. I believe it has to do with the script
smbauth.lua not being able to create a valid ntlmv2 hash to pass to the
windows operating system (OS).

The newer windows OSes are validating the request for access with a
different methodology than the earlier versions. It seems that changing
the default security policy on the local machine might work by allowing
ntlmv1 credentials to pass, but then you're...

Who uses the Nmap Windows silent install feature, and why? Fyodor (Dec 22)
Hi folks! We were thinking of making some changes to the little-known
"silent" install feature of the Nmap Windows installer (the /S command-line
option), but I wanted to check first who (if anyone) is using it now, and
why? Basically there are a couple problems with having this feature:

1) This doesn't happen a lot, but sometimes malware/rootkits/botnets will
either include Nmap or have the compromised system download it as...

smb-enum-shares Louis Sanchez (Dec 22)
I cannot get this to work, I'm not sure if it's a bug. See below, I
verified that the share is open using smbmap. The account I made is smbuser
with a password smbuser.

root@kali:~# nmap --script smb-enum-shares --script-args
smbuser=smbuser,smbpass=smbuser -p445 192.168.2.247

Starting Nmap 7.01 ( https://nmap.org ) at 2016-12-22 20:55 EST
Nmap scan report for Louis-Surface (192.168.2.247)
Host is up (0.00088s latency).
PORT STATE...

Pull Request - Allow the RMI script to connect using SSL Adith Sudhakar (Dec 21)
Hi Nmap-Devs,
I recently submitted an enhancement to the rmi.lua script with the
following pull request:
https://github.com/nmap/nmap/pull/621

"The rmi-dumpregistry is a very popular nmap script which uses rmi.lua to
make a connection to a rmi registry. However, this script will not work for
RMI registries accepting only SSL connections. I've modified the rmi.lua
script to allow connections to the RMI registry over SSL. Now the RMI...

[NSE] tn3270 library review and minor updates Phil (Dec 20)
Hi All,

Finally got around to reviewing the changes/updates to the tn3270 library/scripts. Thanks for reviewing/updating them!
I’ve done some preliminary testing and the changes work great on a few systems I looked at.

I’ve submitted the following pull request: https://github.com/nmap/nmap/pull/619 <https://github.com/nmap/nmap/pull/619>

With the following changes:

In cics-user-enum.nse added support for RACF
Deleted uneeded...

RE: smb-enum-shares.nse Rob Nicholls (Dec 19)
Hi Barry,

Nmap’s SMB authentication library defaults to sending NTLMv1 only:

https://nmap.org/nsedoc/lib/smbauth.html

To use NTLMv2 instead you should be able to use script arguments to set the “smbtype” to “v2”, which sends LMv2 and
NTLMv2. Ron has mentioned a limitation that he couldn’t get signatures to work on v2 protocols, so if you require
signing (and I’m guessing you probably do if your environment requires NTLMv2) it...

smb-enum-shares.nse Barry Dragoon (Dec 19)
I'm unable to use the subject script, "smb-enum-shares.nse" when I attempt
to find the shares in our NTLMv2 environment. If I scan for open shares in
our network, the "service account" I'm using will get "locked out" after 6
bad password attempts (due to group policy). I have included debugging
info below. It looks to me that smbauth isn't able to convert the NTLMv1
hash to NTLMv2 and thus the bad...

Re: NSE script contribution - http-hsts-verify Ícaro Torres (Dec 19)
Hello Jah,

Thank you for all attention and tips.

I am sorry the delay in this response, I only saw this message yesterday in
the morning.

All the improvement recomended was done, please, see the code in the NSE
file attached.

Best Regards for all.

2016-12-16 8:22 GMT-03:00 jah <jah () zadkiel plus com>:

Re: Doubt about nmap -sP Sundhar (Dec 18)
Hi,
Thanks for replying. As you said I scanned my network again(both with
root and as a regular user), this time I ensured that the phone is not in
standby mode but still the problem seams to exist. I also tried -sn in this
mode nmap did not discover the phone when it is being operated as root (I
tried for 5 times) but it is able to detect with same problem as that of
-sP when it is not in root.I am attaching the screen shots of all the...

Re: Doubt about nmap -sP Jacek Wielemborek (Dec 17)
W dniu 16.12.2016 o 05:03, Sundhar pisze:

What conditions change? For example, do you get your phone up from
standby between tests? Like in first test (where the phone isn't
discovered) has the phone been in standby for a long period, then you
acivated it before the second attempt and it re-connected to the network?

Or could it be that you had one attempt as a regular user and the other
as root? I wouldn't be surprised if Nmap's...

More Lists

Dozens of other network security lists are archived at SecLists.Org.


[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]