Nmap Development (nmap-dev) Mailing List

UDP payloads

Fri, 3 Jul 2009 17:45:34 -0600

Posted by David Fifield on Jul 3

During the ping probe effectiveness research, we found that UDP probes
that have a payload work better than those without, and probes with a
payload specific to the protocol work better still. As well as being
more effective for host discovery, meaningful payloads sometimes allow a
port to be...

Re: Ncrack output

Sat, 4 Jul 2009 00:36:55 +0300

Posted by Toni Ruottu on Jul 4

I just read L0pht is back in business. So is their cracking product L0phtcrack.
See http://www.l0phtcrack.com/

On Fri, Jul 3, 2009 at 11:59 PM, David Fifield<david_at_bamsoftware.com> wrote:
> On Sat, Jun 27, 2009 at 02:03:06AM +0300, ithilgore wrote:
>> I have already...

Re: Ncrack output

Fri, 3 Jul 2009 14:59:54 -0600

Posted by David Fifield on Jul 3

On Sat, Jun 27, 2009 at 02:03:06AM +0300, ithilgore wrote:
> I have already began building Ncrack's output engine and I am at the
> point where I need to decide about the output format. Ncrack is going
> to support normal(plain), greppable and XML modes of output. For the
> time...

Re: Ncat with ssl using 100 cpu (PATCH)

Fri, 3 Jul 2009 14:28:37 -0600

Posted by David Fifield on Jul 3

On Fri, Jun 19, 2009 at 12:00:59PM -0600, David Fifield wrote:
> On Thu, Jun 04, 2009 at 05:30:46PM -0600, David Fifield wrote:
> > On Tue, May 19, 2009 at 04:30:32PM -0300, el draco wrote:
> > > Hi everyone, i was testing ncat a little bit and found that under
> >...

--packet-trace errors on BSD

Fri, 3 Jul 2009 12:28:47 -0600

Posted by David Fifield on Jul 3

Hi,

Running OS detection on Mac OS X with --packet-trace gives this
anomalous output. Note the ?? in the T2, T4, and T6 probes (subid 1, 3,
and 5; the "Send probe" line follows the SENT it refers to).

SENT (1.1530s) TCP 127.0.0.1:?? > 127.0.0.1:?? ?? ttl=51 id=10632 iplen=15360...

Re: http.lua not handling malformed HTTP response gracefully

Thu, 2 Jul 2009 15:30:50 -0600

Posted by David Fifield on Jul 2

On Thu, Jul 02, 2009 at 03:19:19PM -0600, Patrick Donnelly wrote:
> On Thu, Jul 2, 2009 at 2:41 PM, Brandon Enright<bmenrigh_at_ucsd.edu> wrote:
> > Hey all, I ran into a machine on campus (Cannon Printer) that causes
> > NSE to hang forever in a busy-loop. Â Since the...

Re: http.lua not handling malformed HTTP response gracefully

Thu, 2 Jul 2009 15:19:19 -0600

Posted by Patrick Donnelly on Jul 2

Hi Brandon,

On Thu, Jul 2, 2009 at 2:41 PM, Brandon Enright<bmenrigh_at_ucsd.edu> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hey all, I ran into a machine on campus (Cannon Printer) that causes
> NSE to hang forever in a busy-loop. Â Since the...

Re: Two ideas for NSE

Thu, 2 Jul 2009 15:17:50 -0600

Posted by David Fifield on Jul 2

On Thu, Jul 02, 2009 at 05:13:48PM -0400, Michael Pattrick wrote:
> On Wed, Jul 1, 2009 at 12:21 PM, David Fifield<david_at_bamsoftware.com> wrote:
> > There's a TODO item to allow doing script scanning without port or ping
> > scanning. I needed to run whois.nse...

Re: Two ideas for NSE

Thu, 2 Jul 2009 17:13:48 -0400

Posted by Michael Pattrick on Jul 2

On Wed, Jul 1, 2009 at 12:21 PM, David Fifield<david_at_bamsoftware.com> wrote:
> There's a TODO item to allow doing script scanning without port or ping
> scanning. I needed to run whois.nse against a bunch of IPs without ping
> scanning them first, and I had to hack the...

http.lua not handling malformed HTTP response gracefully

Thu, 2 Jul 2009 20:41:17 +0000

Posted by Brandon Enright on Jul 2

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hey all, I ran into a machine on campus (Cannon Printer) that causes
NSE to hang forever in a busy-loop. Since the script never yields even
host timeout doesn't help.

Thanks to David's sharp eye and troubleshooting genius, I have...

Re: [PATCH] Re: 4.90RC1 doesnt compile on FreeBSD

Thu, 2 Jul 2009 12:24:13 -0600

Posted by David Fifield on Jul 2

On Thu, Jul 02, 2009 at 07:23:01PM +0200, Daniel Roethlisberger wrote:
> David Fifield <david_at_bamsoftware.com> 2009-07-01:
> > On Mon, Jun 29, 2009 at 05:09:49PM -0500, Kris Katterjohn wrote:
> > > Daniel Roethlisberger wrote:
> > > > Fyodor...

Re: configure is not checking for g in Debian Lenny

Thu, 2 Jul 2009 10:25:21 -0300

Posted by MostaÃo-Guidolin Luiz C. B. on Jul 2

Oh ok, I think it is minor indeed . Sorry I coundn't help more!

Cheers

Re: [PATCH] Re: 4.90RC1 doesnt compile on FreeBSD

Thu, 2 Jul 2009 19:23:01 +0200

Posted by Daniel Roethlisberger on Jul 2

David Fifield <david_at_bamsoftware.com> 2009-07-01:
> On Mon, Jun 29, 2009 at 05:09:49PM -0500, Kris Katterjohn wrote:
> > Daniel Roethlisberger wrote:
> > > Fyodor <fyodor_at_insecure.org> 2009-06-29:
> > >> On Sat, Jun 27, 2009 at...

Re: nmap-dev Digest, Vol 51, Issue 32

Thu, 2 Jul 2009 09:50:54 -0600

Posted by David Fifield on Jul 2

On Fri, Jun 26, 2009 at 10:11:52PM +0530, à¤°à¤¾à¤¶à¤¿à¤¦ à¤à¤à¥à¤ à¤¨à¤°à¤ à¤® wrote:
> Kashmiri Trnaslation almost complete.. i will release that very soon!

That's good news! Is it a Zenmap translation? Just send the .po file to
the list when it's ready.

David Fifield

Re: [Zenmap] New Host Search GUI

Wed, 1 Jul 2009 23:55:33 -0700

Posted by Fyodor on Jul 1

On Wed, Jul 01, 2009 at 07:22:31PM -0600, David Fifield wrote:
> On Wed, Jul 01, 2009 at 06:34:07PM -0600, David Fifield wrote:
> > On Wed, Jul 01, 2009 at 08:13:44PM -0400, J Marlow wrote:
>
> http://www.bamsoftware.com/wiki/Nmap/ZenmapHostFiltering
>
> My idea is...