Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re: Banner Grabbing
From: alek () ast lmco com
Date: Thu, 27 Jun 2002 07:37:47 -0600 (MDT)

From nmap-dev-return-359-alek=goose.ast.lmco.com () insecure org Thu Jun 27 06:43 MDT 2002
From: Sean Donner <seand () maximus homelinux net>

I think the one thing that this scanner is really missing is banner grabbing.  With this option implemented into 
nmap, you could scan your network and see which services are giving up too much info, telnet is espeically guilty of 
this. I would imagine that this option would not be too hard to implement, although it would require a full tcp 
handshake and thus toss stealth scanning out the door with this on.  A good idea would to also send a "HEAD / 
HTTP/1.0" command if a timeout occured while trying to grab a banner.  Im new to this mailing list, so im not sure if 
this has been talked about before but I did not see it in any of the archives.  Feedback is much appreciated. Thanks


In addition to NMAP+V (which was allready mentioned), there is also nmap-web, 
which provides a web interface to nmap and also does some banner grabbing on
some interesting ports. There is a link from the nmap web to it or go to:
   http://www.komar.org/
      -> Misc. Tech Stuff
      -> nmap-web

I find it pretty useful for checking to make sure we have the right versions
of software on all of our machines ... but then again, I wrote it!    ;-)

alek

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]