On Fri, 2007-01-19 at 10:45 +0000, Hari Sekhon wrote:
> I would very much like it if nmap could update it's signature database
> for fingerprinting remote hosts.
>
> For example
> nmap --update
> fetching latest fingerprints....
> done
After seeing some proposals on here about embedding a custom web client
into nmap, I thought it was worthwhile pointing out that the
functionality already (mostly) exists. In general all you have to do is:
svn export --username guest --password '' svn://svn.insecure.org/nmap/nmap-os-fingerprints
Obviously the biggest limitation in this approach is that it depends on
subversion, but for many deployments I don't think that's a real
show-stopper.
If simply calling subversion isn't sufficient, then the other
observation is that rather than embedding a custom facility to update
the fingerprints, it really seems to make much more sense to just
implement this functionality into an NSE script. If we already have a
general facility for coding up small extensions, why not make use of it
rather than hacking the core?
-- William
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Received on Jan 19 2007
Intro
