Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Nmap SoC Ideas?

From: Rahul Golwalkar <rahulgolwalkar () gmail com>
Date: Sun, 21 Mar 2010 09:45:18 +0530
      I was thinking that adding a Proxy support for nmap would enhance its
use greatly, as a arge portion of users are behind proxies these days. This
would also support anonymous port scanning. Can you suggest whether this
will be a good GSoC proposal?
I have also demonstrated  how a simple TCP scan would work via a proxy.

       After establishing a connection with a proxy server(HTTP-to be
specific), if we send the message
"CONNECT (destination add.):(dest. port)" to the proxy,
we get the following reply
"HTTP/1.0 200 Connection established"
from the proxy server in case of an open port.
In the case of a closed port we don't get any reply.
Thus we have scanned for a single port to be open or not. We can loop it
through for all the port.
This will give us the TCP connect scan(of NMAP) via proxy. I suppose that
the other scans via proxy shall be similar.

     As a demonstration I have used netcat(nc) to check the open ports of
google.com via  an HTTP proxy at 10.8.20.186:807 in the following video. In
the video, I check out for port number 80,443 and 441
http://www.youtube.com/watch?v=FTIwf_eWJsY

Opinions please.

On 21 March 2010 02:58, Ron <ron () skullsecurity net> wrote:


On Sat, 20 Mar 2010 14:22:58 -0700 Fyodor <fyodor () insecure org> wrote:

Thanks to everyone who has been contributing on this thread!  I've
seen many great ideas, and I'm planning to update the ideas page
accordingly.  You can keep those ideas coming!

Also, I'm happy to announce that Google has accepted Nmap as a SoC
2010 project!  So we will be doing it for sure this year.  The next
step will be recruiting talented students to perform these tasks we've
devised.

Cheers,
Fyodor

There have been quite a few people in the #nmap irc channel asking about
GSoC. Since there are only a couple active people there, I generally send
them to nmap-dev. Are there any pages I can send them to for more info, or
is the list the best resource?

--
Ron Bowes
http://www.skullsecurity.org
http://www.twitter.com/iagox86
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: