Nmap Development mailing list archives

Re: Summer of Code Script Ideas

From: "Eddie Bell" <ejlbell () gmail com>
Date: Mon, 24 Mar 2008 23:07:04 +0000

I like this idea. I went through a similar (manual) process when
writing the zone transfer script. Perhaps we could have a tool which
reads a pcap log and lists all the available packets. The user could
then pick any combination of packets to dump out in lua.

It would be impossible to autonomously generate scripts but with
wireshark and rfc's the development process would be substantially
quickened.

On 24/03/2008, Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
 Hash: SHA512


 Brandon Enright wrote:
 | I'd really like to see SNMP library support.  For static OIDs one can
 | just replay the same SNMP GET byte pattern.  For dynamic queries though


And now that we're talking about protocols, I'd really like a 3rd party tool to easily convert
 packet dumps (tcpdump format or whatever) easily into a piece of lua code, to speed up the creation
 of protocol-oriented scripts.

 Yeah, probably a silly idea, but I'd love to have a tool like... let me show you an example, out of
 my mind.

 ~ buanzo $ lua_pcap_scripter --output=somefile.lua CMD

 where CMD could be something like... "host -t mx somehost.net". The lua_pcap_scripter could get the
 packets sent, and received, and create a lua script that could mimic the 'host -t mx somehost.net'
 network behaviour using libpcap, or something like that.

 I'm probably not making much sense at all. Damn absinth.

 - --
 Arturo "Buanzo" Busleiman
 Reliable inter-continental Mail Relay Service - Ask me!
 Independent Security Consultant - SANS - OISSG
 http://www.buanzo.com.ar/pro/
 -----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.6 (GNU/Linux)
 Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org


iD8DBQFH6C2bAlpOsGhXcE0RCt5MAJ0aeT7xd1VoDwvoTpO5HNUQe9zlgwCeOy/C
 0J0jFhpyccwsUcth2FuFG1g=
 =/ft+

-----END PGP SIGNATURE-----

 _______________________________________________
 Sent through the nmap-dev mailing list
 http://cgi.insecure.org/mailman/listinfo/nmap-dev
 Archived at http://SecLists.Org


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

Summer of Code Script Ideas Z (Mar 20)
- Re: Summer of Code Script Ideas Kris Katterjohn (Mar 24)
  - Re: Summer of Code Script Ideas Shas bot (Mar 24)
  - Re: Summer of Code Script Ideas Brandon Enright (Mar 24)
    - Re: Summer of Code Script Ideas Arturo 'Buanzo' Busleiman (Mar 24)
    - Re: Summer of Code Script Ideas Eddie Bell (Mar 24)
    - Re: Summer of Code Script Ideas Arturo 'Buanzo' Busleiman (Mar 24)
    - Re: Summer of Code Script Ideas Eddie Bell (Mar 24)
    - Re: Summer of Code Script Ideas Arturo 'Buanzo' Busleiman (Mar 24)
- Re: Summer of Code Script Ideas Nelson (Mar 26)
  - Re: Summer of Code Script Ideas Brandon Enright (Mar 26)