Home page logo

nmap-dev logo Nmap Development mailing list archives

RE: Helping NMap Get Better OS Detection
From: Craig Humphrey <Craig.Humphrey () ChapmanTripp com>
Date: Tue, 6 Apr 2004 14:31:06 +1200

I'm just guessing, but I think the answer to your problem is to get both
devices, let nmap scan them, and report the two signatures to Fyodor.
If the signatures are the same, then you'll need to start digging into the
Nmap code to see how it generates it's signature, then design a similar
style probe that will differentiate the two devices..

But that's just my 2c :)


-----Original Message-----
From: Alan S. Jones [mailto:asj () ipa net]
Sent: Tuesday, April 06, 2004 2:24 PM
To: nmap-dev () insecure org
Subject: Helping NMap Get Better OS Detection

I was wondering does in NMap have a scan setting that says tell me all
about this device from the perspective that if we captured 
that data we
could send it in to be included in future NMap releases?

For example today I had Nmap scan our Sharp copier/printer 
and it reported
it as an Okidata printer.  So a future version could say 
Sharp or Okidata etc?

I have often wondered though as the scanning process gets 
better if you had
two boxes like two printers that normally might be reported 
as the same if
in the future they could be reported as being different if we 
could get
enough details into NMap's database.

On a side note will we see a final binary of NMap 3.51 etc 
anytime soon?

Keep up the good work.


For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List archive: http://seclists.org

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]