Home page logo

nmap-dev logo Nmap Development mailing list archives

Re: Scanning through SOCKS
From: Bo Cato <jcato73 () comcast net>
Date: Mon, 27 Oct 2003 18:16:48 -0500

Technically yes and no. No nmap does not support SOCKS. But yes nmap
can be made to use a proxy type server.

I've not used this and certainly not affiliated with them but the
people at this web site seem to offer an app that does just what you
are asking about.


Although I'm not sure how well this would play with WinPcap. Again...
I've not tried it (and I avoid nmap use from a windows box as much as
possible. Linux is the power-trippers OS).


Hello testic,

Monday, October 27, 2003, 11:53:07 AM, you wrote:

t> Hi all,

t> I have recently discovered a user using a SOCKS 4 proxy server on my
t> network. After a bit of packet monitoring at the networks gateway I estimate
t> that there are roughly six machines on a private network connecting to this
t> proxy. I have managed to connect to this proxy server and can use it to
t> access other resources on the internet, so theoretically I could also
t> connect to the internal network through the same proxy. I was wondering
t> would there be any way of using Nmap to scan the network through the proxy
t> to find out what machines are behind it? Also, I dont what what IP address
t> space this person is using, is there any way of determining this? Ideally I
t> would like as much information as I can gain regarding exactly what machines
t> are running through the proxy so I know exactly what is going on before I
t> close the proxy down (it is against company policy/user agreements).

t> Any suggestions? As far as I can see Nmap doesnt have any SOCKS capabilites,
t> although I may have overlooked them. I use Nmap-3.48.

t> Thanks,

t> testic

t> http://www.testic.co.uk

t> ---------------------------------------------------------------------
t> For help using this (nmap-dev) mailing list, send a blank email to 
t> nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).

For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]