Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Nmap Development: Re: display local mac address in scan results

Re: display local mac address in scan results

From: Amit Kumar Saha <amitsaha.in_at_gmail.com>
Date: Sat, 19 May 2007 20:40:58 +0530

> Joe works as a network administrator in a small company. He uses nmap
> every now and then to map the company network. He is not familiar with
> the most advanced features, but knows how to use the most basic scan
> types, declaring port ranges as well as ip address ranges. He is also
> aware of the man-page and reads it when he encounters difficulties.
>
> Joe is currently documenting the network and needs to find out mac
> addresses of hosts currently present. Joe also needs to add network
> interface card manufacturers into the documentation. The manufacturer
> information is used in the company as reference when discussing about
> network interface card drivers or buying new cards.
>
> It is Friday afternoon and Joe has made an agreement to drink a
> few beers with his friend Peter once he is done with writing the
> documentation. Peter isn't working on Fridays so he is ready to go
> once Joe is done with his work. Joe is supposed to call him once he
> completes. Joe opens a terminal on his Ubuntu pc and executes...
>
> joe_at_joespc:~$ sudo nmap -sP 192.168.1.0/24
>
> Starting Nmap 4.21ALPHA4 ( http://insecure.org ) at 2007-05-19 15:11
> EEST
> Host 192.168.1.1 appears to be up.
> MAC Address: 00:18:39:33:B4:E8 (Cisco-Linksys)
> Host 192.168.1.101 appears to be up.
> Nmap finished: 256 IP addresses (2 hosts up) scanned in 5.848 seconds
>
> (In a real situation there would of course be more than two hosts ;-)
>
> Joe reads the results and notices that mac address of the local
> network interface was not included in the scanning results. He
> remembers that nmap is able to list local interfaces along with
> their type. Joe looks at the nmap man page and finds the --iflist
> option.
>
> Joe now executes...
>
> joe_at_joespc:~$ sudo nmap --iflist | grep ethernet
> eth0 (eth0) 192.168.1.101/24 ethernet up 00:02:B3:33:12:6B
>
> Joe now has all the mac addresses, but he is still missing the
> manufacturer. Joe searches a list of mac address ranges on the
> Internet. In the list he can find name of the manufacturer of
> his card. Joe writes the documentation and leaves to drink beer
> with Peter.
>

+1 

-- 
Amit Kumar Saha
http://amitsaha.in.googlepages.com
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Received on May 19 2007
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos