Re: I need a replacement for AutoScan Network

[Daniel Miller <bonsaiviking () gmail com>]

Todd,

Thanks for inquiring. I'm not sure exactly how AutoScan Network does this,
so I don't know the best way to replace that function. But here are some
ideas:

* The targets-sniffer script will sniff for packets on the network
interface and report the IPs it detects. This can be done without
specifying IP addresses on the command line. If you add `--script-args
newtargets` these IPs will be added to the scan queue, but if they are
outside the configured network they will not route properly.
https://nmap.org/nsedoc/scripts/targets-sniffer.html

* The broadcast-listener script is a similar concept, but does decoding of
broadcasts received. https://nmap.org/nsedoc/scripts/broadcast-listener.html

* You may be able to make broadcast-ping work, but it may not because of
network prefixes. https://nmap.org/nsedoc/scripts/broadcast-ping.html

* You can do IPv6 discovery, which is not dependent on IPv4 network
configuration. The various targets-ipv6-multicast-* scripts can get IPv6
responses from many systems. Those link-local addresses can then be fed
back into Nmap (or the newtargets script-arg used) for host discovery
(-sn), which will produce the MAC address of each. Comparing these MAC
addresses with ones you get from an IPv4 scan of your intended network
space will show devices that are not configured for that IPv4 network.
https://nmap.org/nsedoc/scripts/targets-ipv6-multicast-mld.html and others.

If AutoScan Network is using some other method for doing this discovery,
I'd be very interested to know. I downloaded the source, but all the
identifiers and comments are in French, so I have a harder time figuring
out what's going on than usual.

Dan

On Fri, Dec 23, 2016 at 7:44 PM, ToddAndMargo <ToddAndMargo () zoho com> wrote:

> Hi All,
>
> Try as I may, I am not finding a decent substitute for Auto Scan
> Network, which is abandoned.
>
> http://autoscan-network.com/
>
> Auto Scan Network stopped working as of Fedora Core 24
> and Windows 7.  And Auto Scan has not been maintained
> since 2010.  :'(
>
> I have used Auto Scan Network to find double routers installed
> on networks where customers have changed ISP and never
> removed the old routers. Auto Scan instantly showed I had
> devices on 192.168.254.0/24  and on  192.168.1.0/24.
>
> Auto Scan finds everything in a matter of about half
> a minute.
>
> All the other scanners I come across, only find
> things on your network block.  Other devices residing on
> your physical network that are not on your address block
> are not found.
>
> "arp-scan -l" only gives your those devices with an IP
> on your network block (and can't find itself -- chuckle).
>
> NMap is a marvelous (understatement) tool, but it requires
> IP range(s).
>
> I want to find EVERYTHING including those devices without
> an IP, not just those devices that are on my network block.
>
> Anyone know a substitute for Auto Scan Network?  Any
> way to get NMap to do what Auto Scan Network does?
>
> Many thanks,
> -T
>
> --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Computers are like air conditioners.
> They malfunction when you open windows
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
>
> _______________________________________________
> Sent through the dev mailing list
> https://nmap.org/mailman/listinfo/dev
> Archived at http://seclists.org/nmap-dev/
_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/