Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Nmap SoC Ideas?

From: Ron <ron () skullsecurity net>
Date: Fri, 26 Mar 2010 09:37:42 -0500
Another idea that has been rolling around in my head, that may or may not be useful for GSoC is:
o Firewalk-like functionality in Nmap

I'm not sure if this would work as a script, or if it needs to be in the core, but I'll explain it a bit. 

Basically, it does a traceroute on every filtered port (or important ports, anyways), and looks at where the traceroute 
stops responding. This tells you where the firewall is -- whether you're being blocked by a local firewall or a remote 
one, and whether certain packets are bouncing off a target's perimeter firewall or off a host-based firewall. 

On Sat, 13 Mar 2010 16:10:07 -0800 Fyodor <fyodor () insecure org> wrote:

Hi Folks.  It is that time of the year again for the Summer of Code!
I filled out the Google application yesterday.  Given that Nmap has
been accepted for all five previous Summers of Code, chances are that
we'll be accepted again.  But that is only the very beginning!  The
most important work right now is identifying the projects we want
accomplished this summer.  I already have some ideas, which I've
posted here:

http://nmap.org/soc/

That page has all the details, but here is a summary of the projects:

o Nmap Scripting Engine--Script Developer
o Nmap Cloud Scanning Platform
o Zenmap GUI Developer
o Feature Creepers and Bug Wranglers
o Nmap and Zenmap on Mobile Devices (iPhone, Android, Maemo, etc.)
o Nmap Scripting Engine--Infrastructure manager
o Ncrack Developer
o Nping Developer 

Those are all well and good, but I'd love to hear from the community
where you would like Nmap to go!  This is your chance to specify a
feature you've wanted and we may be able to find a college/grad
student to get it done!  The Summer of Code lasts just under 3 months,
but we can usually fit smaller tasks into larger projects (or "feature
creeper" appointments), and we have a long history of large projects
which take multiple years (Zenmap, NSE).

We're even willing to consider separate applications as long as they
fit with the rest of the Nmap suite.  After all, the latest SVN
version of Nmap now offers 5 utilities: Nmap, Zenmap, Ndiff, Ncat, and
(alpha version) Nping!  Plus we have the (alpha) Ncrack distributed
from http://nmap.org/ncrack/.

So let's hear your ideas!  I also welcome comments on the existing
projects listed on the page.  Remember that even the best students are
only as good (or at least as useful to the project) as the tasks we
put them to.

Cheers,
Fyodor
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/



-- 
Ron Bowes
http://www.skullsecurity.org
http://www.twitter.com/iagox86
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: