Nmap Development mailing list archives

Re: Scripting NMAP -> or maybe NSE?

From: Jess <jess () thecharbneaus com>
Date: Thu, 1 Mar 2007 14:18:15 -0500

On Mon, Feb 26, 2007 at 11:12:18PM -0500, Joshua D. Abraham wrote:

umm,


take a look at PBNJ.

http://pbnj.sf.net

http://www.samag.com/documents/s=10112/sam0702a/0702a.htm

Let me know what you think,

Regards,
Josh

On 26.Feb.2007 05:34PM -0500, Jess wrote:

Hello,
  Reposting this in the nmap-dev list per suggestion from Fyodor.

I wrote a perl script several years ago that would catalog all of the open 
ports on our network (the network I worked on at the time).  I was perusing my 
code recently, and noticed that I had originally built this to run as root. 
With the newer operating systems, specifically the Linux distro's, most are 
using sudo.  So I was looking through the mailing list archives at insecure.org,
and noticed that there is now a NSE.

The overall idea of this app is to run daily, and catalog all of the open ports,
then run the next day and compare the results.  Kind of like a AIDE for the
network.

So, I guess I have two questions:

1.> Is sudo safe for this?  I would like to run my scripts (I am rewriting now)
as monitor, but make a call to nmap to get port information for the current
host in the scan.  Is sudo a good method?  Any suggestions around the best way
to implement this?  It seems I have read articles/man pages saying that sudo is
not so good as it "remembers" the credentials for a given user. Thoughts?

2.> NSE.  Is this better/worse for scripting of nmap?   Pros/Cons?

Thanks Everyone!

Jess


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


-- 
Joshua D. Abraham
Northeastern University
College of Computer and Information Science
www.ccs.neu.edu/home/jabra

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Hey Josh,
  This is more of a pet project, as I never got to see my idea realized with 
the previous project (They sold the network ops group), and so my code has just
sat there for the last several years.  I did take a look at your project though,
and will keep it in mind if someone asks for a "full featured" application.

Thanks,
Jess


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

Scripting NMAP -> or maybe NSE? Jess (Feb 26)
- Re: Scripting NMAP -> or maybe NSE? Joshua D. Abraham (Feb 26)
  - Re: Scripting NMAP -> or maybe NSE? Jess (Mar 01)
- Re: Scripting NMAP -> or maybe NSE?" Brandon Enright (Feb 26)
  - Re: Scripting NMAP -> or maybe NSE?" Jess (Mar 01)