Home page logo
/
nmap-dev logo
Nmap Development Mailing List

Unmoderated technical development forum for debating ideas, patches, and suggestions regarding proposed changes to Nmap and related projects. Subscribe here.

List Archives

Jan–MarApr–JunJul–SepOct–Dec
201435857351592
2013422534664337
20127399931068533
201111481303925638
201012481035916793
20099288461116732
20085689111038809
2007305509479832
2006410497447326
2005175257202251
200417380131178
20035811314191
200258905977
20011835146
20007720

Latest Posts

New VA Modules: MSF: 1, Nessus: 24, OpenVAS: 46 New VA Module Alert Service (Oct 23)
This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Metasploit modules (1) ==

e4064279
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/fileformat/ms14_060_sandworm.rb
MS14-060 Microsoft Windows OLE Package Manager Code Execution

== Nessus plugins (24) ==

78628 hp_operations_agent_CVE-2014-2647.nasl...

Re: New NSE script for POODLE vulnerability discovery Henri Doreau (Oct 23)
2014-10-21 18:47 GMT+02:00 Daniel Miller <bonsaiviking () gmail com>:

Hello,

thanks Dan for the script.

Regarding vulns.lua IIRC the reason why we don't display the fields
you mention when in NOT_VULN state is to prevent from flooding the
output with too much information. Feel fee to change it if you think
it makes more sense. Maybe based on the verbosity level?

Automatically handle description formatting sounds good and safe....

Re: New German zenmap translation (6.47) Daniel Miller (Oct 23)
Chris,

Danke! Now that I've exhausted my German vocabulary, I'd like to ask a
question. Why are so many of the changes lower-casing the initial
letter of a sentence? Here are a couple examples:

msgid "Unknown Host"
-msgstr "Unbekannter Rechner"
+msgstr "unbekannter Rechner"

msgid "Cannot open selected file"
-msgstr "Ausgewählte Datei kann nicht geöffnet werden"
+msgstr...

Nmap has stopped working - Windows 8.1 Elrich De Villiers (Oct 22)
Hey, today I tried to install Nmap with Zenmap on my surface pro 3 running windows 8.1, but every time I try to scan an
IP I get the message Nmap has stopped working and the scan fails. Any ideas on what I could do to fix this would be
greatly appreciated.

Thanks!

Sent from Surface_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

[NSE] Minecraft Stephen J. Hilt (Oct 22)
Based on Shodan results, I set out to replicate what he was doing with a
Nmap NSE.

https://www.shodan.io/search?query=port%3A25565

https://github.com/sjhilt/Nmap-NSEs/blob/master/minecraft-info.nse

.
..:

app crash in 6.47.0.0 Finfrock, Gary L (DHQ) (Oct 22)
Fresh install on Win2008 R2 enterprise server -
I can repeatedly get it to crash.
[cid:image001.png@01CFEC65.7C6157C0]
[cid:image002.png@01CFEC65.7C6157C0]

Gary Finfrock | Lead Network Engineer
Dover Corporation
3005 Highland Parkway, Suite 200 | Downers Grove, IL 60515
O: (630) 743-5137 | M: (630) 779-9200 | F: (630) 743-2671
GFinfrock () dovercorp com<mailto:GFinfrock () dovercorp com> |
www.dovercorporation.com<...

Re: Problems in idle-scan Daniel Miller (Oct 22)
I committed this patch (and a length check on the argument to -sI) as
r33746. Sorry my initial reply was sent off-list!

Dan

New VA Modules: NSE: 1, Nessus: 17 New VA Module Alert Service (Oct 22)
This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Nmap Scripting Engine scripts (1) ==

r33745 ssl-poodle http://nmap.org/nsedoc/scripts/ssl-poodle.html
https://svn.nmap.org/nmap/scripts/ssl-poodle.nse
Author: Daniel Miller
Checks whether SSLv3 CBC ciphers are allowed (POODLE)

== Nessus plugins (17) ==

78604 websphere_7_0_0_35.nasl...

New NSE script for POODLE vulnerability discovery Daniel Miller (Oct 21)
Hey list,

I just pushed a new script, stripped down from ssl-enum-ciphers,
called ssl-poodle [1]. People have been recommending ssl-enum-ciphers
for detecting POODLE, since it affects all implementations of SSLv3
that allow CBC ciphersuites, but between enumerating *all*
ciphersuites for 4 different SSL/TLS versions and sorting those by
server preference, ssl-enum-ciphers needs to send at least 24 and
usually many more requests to finish....

Problems in idle-scan Gisle Vanem (Oct 21)
I'm trying to understand the idle-scan and was trying an example
from the Nmap book at:
http://nmap.org/book/idlescan.html

For example, I used this just to try it:
nmap -Pn -p- -sI 10.0.0.1:22 www.riaa.com

But there seems to be some errors in the use of 'proxy->host.setHostName(name)'.
By adding some trace-code, I see that 'name' on entry of
void Target::setHostName(const char *name) is:...

Re: [Patch] nse_fs.cc Gisle Vanem (Oct 21)
"Daniel Miller" <bonsaiviking () gmail com> wrote:

No problems now.

--gv

New VA Modules: MSF: 1, Nessus: 7 New VA Module Alert Service (Oct 21)
This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Metasploit modules (1) ==

e4064279
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/fileformat/ms14_060_sandworm.rb
MS14-060 Microsoft Windows OLE Package Manager Code Execution

== Nessus plugins (7) ==

78587 palo_alto_PAN-SA-2014-0004.nasl...

New VA Modules: Nessus: 23 New VA Module Alert Service (Oct 20)
This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Nessus plugins (23) ==

78580 oraclelinux_ELSA-2014-3083.nasl
http://nessus.org/plugins/index.php?view=single&id=78580
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2014-3083)

78579 oraclelinux_ELSA-2014-3082.nasl
http://nessus.org/plugins/index.php?view=single&id=78579
Oracle Linux 5 / 6 : Unbreakable...

Nmap crashes on win8.1 64bit Saro Hayan (Oct 19)
I have nmap 6.47 on a win8.1 64 bit machine. Using cygwin/mintty, it
immediately kicks a segfault. I've also tried in windows command shell, it
crashes without the segfault message.

$ nmap -d9 192.168.1.1

Starting Nmap 6.47 ( http://nmap.org ) at 2014-10-19 17:06 ric
Fetchfile found C:\Program Files (x86)\Nmap/nmap-services
PORTS: Using top 1000 ports found open (TCP:1000, UDP:0, SCTP:0)
Trying to initialize WinPcap
Winpcap present,...

New VA Modules: NSE: 1, MSF: 6 New VA Module Alert Service (Oct 19)
This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Nmap Scripting Engine scripts (1) ==

r33739 http-avaya-ipoffice-users http://nmap.org/nsedoc/scripts/http-avaya-ipoffice-users.html
https://svn.nmap.org/nmap/scripts/http-avaya-ipoffice-users.nse
Author: Paulino Calderon <calderon () websec mx>
Attempts to enumerate users in Avaya IP Office systems 7.x.

== Metasploit...

More Lists

Dozens of other network security lists are archived at SecLists.Org.


[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]