Nmap Announce mailing list archives

RE: nmap-2.03 DNS address scanner

From: "Brown, Mark" <mbrown () visa com>
Date: Fri, 5 Feb 1999 11:27:33 -0800

Actually, I think it makes more sense to leave stuff *out* of nmap that is
already trivially available (host -l?) lest nmap become fat.  Attempting a
zone transfer of a domain is a sure-fire way to draw attention to yourself
if the other side's hostmaster has two brain-cells to rub together.  

-----Original Message-----
From: johann sebastian bach [mailto:jsb4ch () hotmail com]
Sent: Thursday, February 04, 1999 10:03 PM
To: nmap-hackers () insecure org
Subject: Re: nmap-2.03 DNS address scanner

cool.  someone should do a better implementation that doesnt use 
gethostbyaddr() (maybe use res_mkquery(), and send multiple queries at a 
time.. ) determining hosts are *UN*resolvable takes a long time, and 
going serially is very slow..

another cool thing to add to nmap might be DNS AXFR query capability 
(have it transfer all the ip addresses in the zone and then scan them or 
whatever) so that you could scan based on domain and not ip address, or 
bypass firewalls (maybe in a very obscure case :)))

Current thread:

nmap-2.03 DNS address scanner Dion Stempfley (Feb 04)
- <Possible follow-ups>
- Re: nmap-2.03 DNS address scanner johann sebastian bach (Feb 04)
- RE: nmap-2.03 DNS address scanner Brown, Mark (Feb 05)
  - RE: nmap-2.03 DNS address scanner Matthew Franz (Feb 05)
- RE: nmap-2.03 DNS address scanner johann sebastian bach (Feb 05)
- RE: nmap-2.03 DNS address scanner wanb0y (Feb 05)