Re: Scanning through SOCKS

[Fyodor <fyodor () insecure org>]

On Mon, Oct 27, 2003 at 04:53:07PM -0000, testic wrote:
> connect to the internal network through the same proxy. I was wondering
> would there be any way of using Nmap to scan the network through the proxy
> to find out what machines are behind it? Also, I dont what what IP address

I agree that this would be a valuable feature for Nmap to have.  The
libnsock include with Nmap 3.45+ should make it easier to implement.
Unfortunately, I have not had time to write the code.  Given my
present priorities (version detection, etc), I may not get around to
adding proxy-bounce scan until well into 2004.  Or maybe I'll find a
spare weekend to do so earlier.  There are several versions of SOCKS,
although perhaps most/all support some early version.  We might want to
support other proxy protocols as well.  For some reason, this feature
proposal was not enthusiastically received in the latest Nmap user
survey ( http://seclists.org/lists/nmap-hackers/2003/Apr-Jun/0011.html
).  Anyone is welcome to submit a patch which adds this functionality.

Cheers,
Fyodor


---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List archive: http://seclists.org