Nmap Development mailing list archives

Re: [NSE] firewalking

From: Henri Doreau <henri.doreau () gmail com>
Date: Tue, 17 Aug 2010 21:21:40 +0200

Hi,

here is an updated version of my firewalk script.

I've changed a few things:
  - checking the validity of catched replies
  - removed the sleep() after a timeout
  - use the new stdnse.get_script_args() function

I also re-send the patch that makes traceroute results available from nse
but it is unchanged.

The script is still a PoC with UDP support missing, because I'm not sure
about the best way to add a firewalking feature to nmap.
My approach was to do it as a nse script, that requires the gateway IP
address in argument, and the --traceroute switch to to be supplied in the
command line. Do you have ideas to improve it? I'm also wondering whether a
C++ implementation would be more interesting or not...

Any thought about this, or about the script itself?


Please report and forgive any English mistake/typo, I'm not a native English
speaker.


Regards

-- 
Henri Doreau

Attachment: nse_traceroute.diff
Description:

Attachment: firewalk.nse
Description:

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

[NSE] firewalking Henri Doreau (Aug 10)
- Re: [NSE] firewalking Henri Doreau (Aug 17)
  - Re: [NSE] firewalking: NSE traceroute patch David Fifield (Aug 26)
    - Re: [NSE] firewalking: NSE traceroute patch Henri Doreau (Aug 28)
    - Re: [NSE] firewalking: NSE traceroute patch David Fifield (Aug 28)
  - Re: [NSE] firewalking David Fifield (Aug 26)
    - Re: [NSE] firewalking Henri Doreau (Aug 27)
    - Re: [NSE] firewalking David Fifield (Aug 27)
    - Re: [NSE] firewalking David Fifield (Aug 27)
    - Re: [NSE] firewalking David Fifield (Aug 27)
    - Re: [NSE] firewalking Henri Doreau (Aug 27)
    - Re: [NSE] firewalking Henri Doreau (Aug 28)

(Thread continues...)