Nmap Development mailing list archives
Re: dhcp script!
From: Walt Scrivens <walts () gate net>
Date: Tue, 8 Sep 2009 19:36:08 -0400
On Sep 8, 2009, at 7:27 PM, Ron wrote:
This time we got a DCHP ACK back from the router and then - nothing. Maybe a timing issue?On 09/08/2009 06:15 PM, Walt Scrivens wrote:That didn't help. (We ARE looking for a list of the addresses the server has assigned, right? Something like this list produced by the router's>...Actually, we're looking for details from the dhcp server (subnet mask, default gateway, etc). But that isn't there, either.Can you try --script-args=dhcptype=DHCPREQUEST? -- Ron Bowes http://www.skullsecurity.org/ _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Walt ************************sh-3.2# nmap --send-ip -d -sU -p67 -PN --script=dhcp-inform --script- args=dhcptype=DHCPREQUEST 192.168.1.1
Starting Nmap 5.00 ( http://nmap.org ) at 2009-09-08 19:33 EDT --------------- Timing report --------------- hostgroups: min 1, max 100000 rtt-timeouts: init 1000, min 100, max 10000 max-scan-delay: TCP 1000, UDP 1000, SCTP 1000 parallelism: min 0, max 0 max-retries: 10, host-timeout: 0 min-rate: 0, max-rate: 0 --------------------------------------------- NSE: Loaded 1 scripts for scanning. Warning: Unable to open interface vmnet8 -- skipping it. Warning: Unable to open interface vmnet1 -- skipping it. mass_rdns: Using DNS server 208.67.222.222 mass_rdns: Using DNS server 208.67.220.220 Initiating Parallel DNS resolution of 1 host. at 19:33 mass_rdns: 0.07s 0/1 [#: 2, OK: 0, NX: 0, DR: 0, SF: 0, TR: 1] Completed Parallel DNS resolution of 1 host. at 19:33, 0.07s elapsedDNS resolution of 1 IPs took 0.07s. Mode: Async [#: 2, OK: 0, NX: 1, DR: 0, SF: 0, TR: 1, CN: 0]
Initiating UDP Scan at 19:33 Scanning 192.168.1.1 [1 port]Packet capture filter (device en1): dst host 192.168.1.144 and (icmp or ((tcp or udp or sctp) and (src host 192.168.1.1)))
Completed UDP Scan at 19:33, 2.01s elapsed (1 total ports)
Overall sending rates: 0.99 packets / s, 27.79 bytes / s.
NSE: Script scanning 192.168.1.1.
NSE: Starting runlevel 1 scan
Initiating NSE at 19:33
NSE: NSE Script Threads (1) running:
NSE: Starting dhcp-inform against 192.168.1.1:67.
NSE: Finished dhcp-inform against 192.168.1.1:67.
Completed NSE at 19:33, 3.00s elapsed
NSE: Script Scanning completed.
Host 192.168.1.1 is up, received user-set.
Scanned at 2009-09-08 19:33:08 EDT for 5s
Interesting ports on 192.168.1.1:
PORT STATE SERVICE REASON
67/udp open|filtered dhcps no-response
Final times for host: srtt: -1 rttvar: -1 to: 1000000
Read from /usr/local/share/nmap: nmap-services.
Nmap done: 1 IP address (1 host up) scanned in 5.18 seconds
Raw packets sent: 2 (56B) | Rcvd: 0 (0B)
sh-3.2#
Attachment:
dhcp-inform2.cap
Description:
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- Re: dhcp script!, (continued)
- Re: dhcp script! Ron (Sep 08)
- Re: dhcp script! jah (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 08)
- Re: dhcp script! Ron (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 08)
- Re: dhcp script! David Fifield (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 08)
- Re: dhcp script! Ron (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 08)
- Re: dhcp script! Ron (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 08)
- Re: dhcp script! Brandon Enright (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 08)
- Re: dhcp script! Ron (Sep 08)
- Re: dhcp script! David Fifield (Sep 08)
- Re: dhcp script! Walt Scrivens (Sep 09)
- Re: dhcp script! David Fifield (Sep 09)
- Re: dhcp script! Brandon Enright (Sep 09)
- Re: dhcp script! Walt Scrivens (Sep 09)
- Re: dhcp script! Walt Scrivens (Sep 09)
- Re: dhcp script! Brandon Enright (Sep 09)