Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

[NSE Script] Skype v2 service detection

From: "Brandon Enright" <bmenrigh () ucsd edu>
Date: Fri, 18 Aug 2006 00:40:21 -0000
Here is a NSE/Lua script for detecting if a service is opened by Skype v2.
This implements the technique discussed last month about probing the service
with a get request and another random request and comparing answers between
the two.

The port rule for this script is *very* liberal -- it is meant to catch the
high numbered port Skype services too.  Because the check is so fast this
doesn't seem to be a big deal.

The Lua regular expression engine seems rather limited compared to PCRE so
it would be nice to see PCRE bindings added.

This script has been well tested by me but should still be looked over for
style and robustness.  I have attached the script as well as sample output
from Nmap with the script in use.

Enjoy!

Brandon


-- 
Brandon Enright
Network Security Analyst
UCSD ACS/Network Operations
bmenrigh () ucsd edu

Attachment: skype_v2.lua.txt
Description:

Attachment: sample_skype.nmap.txt
Description: 


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: