Nmap Development mailing list archives

Timing templates and nat-t/IKE payloads


From: Gutek <ange.gutek () gmail com>
Date: Thu, 14 Oct 2010 21:37:35 +0200


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mail from Mike Bickett :

- --BEGIN QUOTE--
this is just something i noticed that i was wondering if anyone has
taken a look at:

is there any documentation or templates for what the best timing to use
on scanning is that one can use with the type of network he is on? an
example would be a person is running on wireless or ethernet
respectively, and they set the timing options for
max-rate/host-timeout/etc. has anyone already wrote up anything that one
could use to set the many timing features that one would use on a given
type of network wire? i understand networks and bandwidth are all
subject to constant change, i was just hoping someone had already done
the work and tested out various numbers that would best correspond with
what one would use in a given environment

last thing i would like to mention:

i noticed that someone included a payload for IKE port 500/udp in the
payloads file. i was wondering if anyone planned to integrate the
aggressive mode option along with the already available main mode? if i
was reading correctly, this option will force the server to send it's
pre-shared keys to the user that can later be cracked with psk-crack. i
alo noticed, with reguards to IKE scanning, nmap does not include the
payload support for port 4500/udp. this is the NAT-T service used for
traversal of protocols that can be sent through NAT. if you set ike-scan
to (-nat-t -dport 4500) it will send the IKE initiation attempt through
the NAT-T server. could someone care to include this? i feel that the
whole point of nmap and it's constant contributions over the years
should try to be the one tool that can communicate with almost any
service we come in contact with. is it not? this would be just another
protocol to consider

thank you
m|ke
- --END OF QUOTE--
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org/

iEYEARECAAYFAky3W/8ACgkQ3aDTTO0ha7iQgQCfQDUE/VpB6JyOzJ7oFyuTVdGX
ZaEAnjej1mBrWQOfsFdgIoJnq6gMB3iw
=/gMq
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


Current thread: