In nmap is this possible?

[mike <dmciscobgp () hotmail com>]

Hello again guys...
 
Can this be done in nmap---specify EXACT bytes when using --data-length option, as opposed to it being just random 
ones? I understand we have scripting ability and service probes, but what about when someone wants to simply mucky 
about with data bytes/strings they think might work on a given service? Does anyone else think we should be able to set 
--data-length to a variable of what we want for bytes being specified by the user?
 
Say i wanna just sweep an ip list i have and check for RIP responses and i have no script or service probe available 
for it but i can hex out a quick 21 byte request to get the job done. If nmap gave me the ability to set my own bytes 
(size and data) i then can crudely come up with a quick way of getting what i need by sending the exact data i want. Do 
we agree this is quite useful here and easy to implement? Again, simply setting --data-length option to instead of 
RANDOM as it is now, ANYTHING THE USER SPECIFIES. 
 
an example would be if you ran nmap in windows using type (string/file data to inject) then | and the nmap command and 
it's flags. you could basically scan multiple hosts as you are, at the same time, injecting your request out. The only 
thing needed on your end would be a packet sniffer, since nmap would not have a way to handle the raw data coming back. 
Again, this idea would be for testing/probing purposes when you have your OWN data you wish to send
 
Thanks
M|ke
_________________________________________________________________
Get thousands of games on your PC, your mobile phone, and the web with Windows®.
http://clk.atdmt.com/MRT/go/108588800/direct/01/

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org