Nmap Development mailing list archives

Re: Can i tell nmap what to log and what not?

From: Martin Mačok <martin.macok () underground cz>
Date: Fri, 7 Jan 2005 18:29:48 +0100

On Fri, Jan 07, 2005 at 01:52:15PM +0100, Martin Contento wrote:

Hi, i frequently use nmap to scan for certain open ports in my dorm.


How many ports do you scan for? Which type of scan do you use? Do you
scan for UDP ports too?

Is there a way to tell nmap to "only log open ports"?


AFAIK it isn't.

Hint:
If you want just a list of TCP open ports and nothing else, you could
dump the entire nmap's output and instead use the output from

# tcpdump 'tcp[tcpflags] & (tcp-syn|tcp-ack) == (tcp-syn|tcp-ack)'

or

# p0f -l -A

while running the scan (in the later case, you also get the OS
fingerprint from the SYN+ACK packet for free).

Martin Mačok
ICT Security Consultant

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List archive: http://seclists.org

Current thread:

Can i tell nmap what to log and what not? Martin Contento (Jan 07)
- Re: Can i tell nmap what to log and what not? Ron (Jan 07)
- Re: Can i tell nmap what to log and what not? Martin Mačok (Jan 07)
- <Possible follow-ups>
- RE: Can i tell nmap what to log and what not? Pritchard, Adam (IDS EUC EMEA) (Jan 10)