Nmap 26th Birthday Announcement: Version 7.94

[Gordon Fyodor Lyon <fyodor () nmap org>]

Dear Nmap community,

Today is Nmap’s 26th birthday, which reminded me that I hadn’t yet
announced our Nmap 7.94 release from May. And it’s a great one! The biggest
improvement was the Zenmap and Ndiff upgrades from the obsolete Python 2
language to Python 3 on all platforms. Big thanks to Daniel Miller, Jakub
Kulík, Brian Quigley, Sam James, Eli Schwartz, Romain Leonard, Varunram
Ganesh, Pavel Zhukov, Carey Balboa, and Hasan Aliyev for helping with this.

There were dozens of other improvements including:

o Upgraded Npcap (our Windows raw packet capturing and transmission driver)
from version 1.71 to 1.75. Npcap has its own detailed changelog at
https://npcap.com/changelog.

o Nmap now prints vendor names based on MAC address for MA-S (24-bit), MA-M
(28-bit), and MA-L (36-bit) registrations instead of the fixed 3-byte MAC
prefix used previously for lookups.

o Integrated many of the most-submitted IPv4 OS fingerprints for recent
versions of Windows, iOS, macOS, Linux, and BSD. We now have 5700
signatures!

o Added partial silent-install support (/S) to our Windows installer. It
works like Wireshark in that silent mode skips Npcap install, so make sure
you have Npcap installed first.  See https://nmap.org/nmap-silent-install

o Many profile-guided performance improvements, including OS fingerprint
matching, probe matching and retransmission lookups for large hostgroups,
and service name lookups.

o Added the tftp-version script which requests a nonexistent file from a
TFTP server and matches the error message to a database of known software.

o Ncat can now accept "connections" from multiple UDP hosts in listen mode
with the --keep-open option. This also enables --broker and --chat via UDP.

o Updated many libraries: OpenSSL, zlib, Lua, libpcap

o UDP port scan (-sU) and version scan (-sV) now both use the same data
source, nmap-service-probes, for data payloads. Previously, the
nmap-payloads file was used for port scan. Port scan responses will be used
to kick-start the version matching process.

o Nmap's service scan (-sV) can now probe the UDP service behind a DTLS
tunnel, the same as it already does for TCP services with SSL/TLS
encryption. The DTLSSessionReq probe has had its rarity lowered to 2 to
allow it to be sent sooner in the scan.

o Ncat in listen mode with --udp --ssl will use DTLS to secure incoming
connections.

o Handle Internationalized Domain Names (IDN) like Яндекс.рф on platforms
where getaddrinfo supports the AI_IDN flag.

o Dramatically speed up Ncat transfers on Windows by avoiding a 125ms wait
for every read from STDIN.

And that’s just a summary!  You can read the full list of changes at
https://nmap.org/changelog.
Nmap 7.94 source code and binary packages for Linux, Windows, and Mac are
available for free download from the usual spot:

https://nmap.org/download.html

We also have Nmap OEM builds available for companies that wish to embed
Nmap network discovery technology within their own products. That program
is described at https://nmap.org/oem

If you find any bugs in this release, please let us know on the bug tracker
or dev list as described at https://nmap.org/book/man-bugs.html.

Happy scanning,
-Gordon "Fyodor" Lyon
_______________________________________________
Sent through the announce mailing list
https://nmap.org/mailman/listinfo/announce
Archived at https://seclists.org/nmap-announce/