> From: James Levine <jdl_at_vinecorp.com>
> Subject: Announce: ndiff-0.02 is available
> To: nmap-hackers_at_insecure.org
>
> NDiff 0.02 is available.
>
> NDiff compares two nmap scans and outputs the differences. It
> allows monitoring of your network(s) for interesting changes in
> port states and visible hosts.
>
> NDiff should be useful to network administrators, security
> analysts, and other interested parties who need to monitor
> large networks in an organized fashion.
>
> NDiff may be retrieved from:
> http://www.vinecorp.com/ndiff/NDiff-0.02.tar.gz
> ftp://ftp.vinecorp.com/pub/ndiff/NDiff-0.02.tar.gz
FYI FWIW,
I wrote nmap-web-CLI (a command line interface to nmap-web)
for the express purpose of doing periodic diffs to see if any
port configurations have changed. My stuff was super-duper simple,
but looks like James has done a much more extensive job than I did.
>From personal experiece, this type of tool to automatically
baseline/check/audit your network(s) is a REALLY SMART thing to do;
basically Tripwire" type functionality for nmap! ;-)
Kudo's to James for writing this and making it available,
alek
--------------------------------------------------
For help using this (nmap-hackers) mailing list, send a blank email to
nmap-hackers-help_at_insecure.org . List run by ezmlm-idx (www.ezmlm.org).
Received on Sep 21 2000
Intro
