Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Portscanner with no installer?

From: Ron <ron () skullsecurity net>
Date: Thu, 24 Jul 2008 14:31:19 -0500
So it looks like that one doesn't like running without administrator 
mode, but it's a nice one nevertheless.

Another one we found is:
http://www.bluebitter.de/portscn2.htm

Seems to run scans fairly quickly without root (presumably connect scans).

I still might be interested in an nmap-based one, though. :)

Ron

Ron wrote:

So it looks like one of my minions answered my question; Foundstone has 
a tool called scanline that does exactly what I need (I think):
http://www.foundstone.com/us/resources/proddesc/scanline.htm
* No installer
* Command-line interface
* Parallel scanning in a single thread
* Banner grabbing
* Doesn't appear to require admin privileges (could be wrong)

I'd still like to find something similar for Linux, though. nmap is 
nice, but requires some libraries to be installed (maybe it's possible 
to do it all without root, I'm not really sure?)

I wonder if this might be an interesting idea for a project, though, 
stripping down nmap to as small/portable as possible, to act as a 
payload for penetration tests?

Ron wrote:

Hi guys,

I'm looking for a tool to use when pen-testing Windows (or even Linux) 
machines. Basically, a single executable file that can do a fairly quick 
portscan without being installed. The scenario is like this:

1) Exploit a Windows/Linux host to gain (possibly non-root) shell
2) Dump the tool onto the host
3) Scan deeper into the network with the tool

Nmap is a great portscanner from a fully controlled machine, but I don't 
think the .exe can be used standalone. Does anybody know of a tool that 
can, or a way to build nmap so it can?

If there isn't a convenient tool, then I'll probably just throw one 
together. For a simple host enumeration/portscan, it should be easy.

Thanks!
Ron

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: