Re: [SCRIPT] NetBIOS name and MAC query script

[Brandon Enright <bmenrigh () ucsd edu>]

Hey Eddie, All,

After reading the NSE documentation (why didn't I look for this in the
first place?) I've updated/enhanced this NBSTAT script (attached):

* When data is received from port U137 the state is changed to open.

* Only hosts that have 135|139|445|U137 open are queried.  This should cut
down on the number of hosts that timeout.

* Comments that revealed a lack of understanding of NSE on my part have
been updated.

* I've added the script to the "safe" category.

* A couple more error conditions are checked.


In updating this script, I noticed the NSE documentation doesn't talk about
scripts that use hostrule at all.  It doesn't make sense to me for host
based scripts to pass the port parameter to either hostrule() or action().
The ripeQuery script is the only example though and it does specify
the port parameter on both.

Brandon


On Sat, 24 Mar 2007 14:49:37 +0000
"Eddie Bell" <ejlbell () gmail com> wrote:

> Hi brandon,
>
> I tested it over on a couple of thousand host and it seemed to work great.
>
> Host script results:
> |_ NBSTAT: NetBIOS name: WM_ADMINISTRAT2, NetBIOS MAC: ..:..:38:76:B9:53
>
> thanks
> - eddie

Attachment: nbstat.nse
Description:

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org