Nmap Development mailing list archives
Re: do we really need all these SNMP scripts?
From: Patrik Karlsson <patrik () cqure net>
Date: Sat, 5 Feb 2011 22:10:06 +0100
On 4 feb 2011, at 21.53, mike bickett wrote:
i was curious. i noticed there are now about 4 or 5 different scripts that each dump different info related to SNMP. i was wondering why we needed to go this route. it seems to me a tool like SNMP-utils (snmpwalk to be specific) would simply be able to accomodate what everyone was trying to do with their scripts. why not have a complete NSE script like an SNMP walk utility that dumps everything at once and walks all MIBS, instead of going through and making each individual script for specific MIB info. you could simply set a verbosity range and have flags for each output you wanted, instead of a bunch of scipts that really all do the same thing, just dumping different info. i hope this doesn't sound too confusing and i hope it makes sense. it does to me anyway m|ke _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Being the author of some of the SNMP scripts my thoughts have been to create a bunch of scripts that: * each do a specific isolated task that is described in the scripts description * do not require the user of the script to know a lot about the protocol, MIBS or other SNMP specific information * produce output that can be easily parsed in order to extract data that can be used by other tools or scripts The same applies for the ms-sql scripts which are also task oriented running different queries against the target database. I guess that some of the SNMP scripts could be combined into a single one that would allow different script arguments to control the output eg: snmp.filter={users} or snmp.filter={users,processes} As I see it, simplicity is the key. It's important to be able to control the output in a easy comprehensible way and not require the user to know stuff like MIBS to run them. I don't see the point of implementing a replacement of the snmpwalk or osql commands as NSE scripts as I would much rather use the original tools to perform their tasks. //Patrik -- Patrik Karlsson http://www.cqure.net http://www.twitter.com/nevdull77 _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- do we really need all these SNMP scripts? mike bickett (Feb 04)
- RE: do we really need all these SNMP scripts? Rob Nicholls (Feb 04)
- Re: do we really need all these SNMP scripts? Patrik Karlsson (Feb 05)
- Re: do we really need all these SNMP scripts? Rob Nicholls (Feb 05)
- Re: do we really need all these SNMP scripts? Patrik Karlsson (Feb 05)
- Re: do we really need all these SNMP scripts? Rob Nicholls (Feb 05)
- <Possible follow-ups>
- Re: do we really need all these SNMP scripts? Bob Radvanovsky (Feb 04)