Re: [SINGLEWORD] radialnet

[Brandon Enright <bmenrigh () ucsd edu>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 16 Sep 2008 16:27:23 +0300 or thereabouts "sara fink"
<sara.fink () gmail com> wrote:

> I am scanning a large network  xxx.xxx.0-255.0-255. This should scan
> 65536 hosts. Why does it show
>
> Initiating Parallel DNS resolution of 4096 hosts. at 16:02
> Completed Parallel DNS resolution of 4096 hosts. at 16:03, 36.63s
> elapsed Initiating SYN Stealth Scan at 16:03
> Scanning 64 hosts [1000 ports/host]
>
> My second question is that the scan appears to be stuck at 0.99%.
> Zenmap is not build to search such a large range?
> I need it for topology visualization of the net with radialnet.
>
> The command I run is nmap  --traceroute -v -sS -sV -T4 -PN
> xxx.xxx.0-255.0-255 .

Hi Sara,

You're going to have to settle for a sample of your /16.  I already
tried this and Zenmap ran my box out of memory.

If you want an even sample, try something like:

nmap --traceroute -v -sS -n -T4 -PA22,23,80,135,139,3389 -p22,80,135,139,3389 aaa.bbb.*.43,83,123,163,203,243

If you want a good random sample try something like:

nmap -n -sL 132.239.0.0/16 | egrep '^Host' | awk '{print $2}' | sort -R | head -n 1000 | nmap -iL - --traceroute -v -sS 
-n -T4 -PA22,23,80,135,139,3389

Brandon

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)

iEYEARECAAYFAkjP2EEACgkQqaGPzAsl94JbxACfUgoO0+YBdjTWe5gySDVa8M1h
IkgAniFWiqejrcb3RBJG4/sF/OIH+1uA
=J8dN
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org