Re: Scripting NMAP -> or maybe NSE?

["Joshua D. Abraham" <jabra () ccs neu edu>]

umm,


take a look at PBNJ.

http://pbnj.sf.net

http://www.samag.com/documents/s=10112/sam0702a/0702a.htm

Let me know what you think,

Regards,
Josh

On 26.Feb.2007 05:34PM -0500, Jess wrote:

> Hello,
>   Reposting this in the nmap-dev list per suggestion from Fyodor.
>
> I wrote a perl script several years ago that would catalog all of the open 
> ports on our network (the network I worked on at the time).  I was perusing my 
> code recently, and noticed that I had originally built this to run as root. 
> With the newer operating systems, specifically the Linux distro's, most are 
> using sudo.  So I was looking through the mailing list archives at insecure.org,
> and noticed that there is now a NSE.
>
> The overall idea of this app is to run daily, and catalog all of the open ports,
> then run the next day and compare the results.  Kind of like a AIDE for the
> network.
>
> So, I guess I have two questions:
>
> 1.> Is sudo safe for this?  I would like to run my scripts (I am rewriting now)
> as monitor, but make a call to nmap to get port information for the current
> host in the scan.  Is sudo a good method?  Any suggestions around the best way
> to implement this?  It seems I have read articles/man pages saying that sudo is
> not so good as it "remembers" the credentials for a given user. Thoughts?
>
> 2.> NSE.  Is this better/worse for scripting of nmap?   Pros/Cons?
>
> Thanks Everyone!
>
> Jess
>
>
> _______________________________________________
> Sent through the nmap-dev mailing list
> http://cgi.insecure.org/mailman/listinfo/nmap-dev
> Archived at http://SecLists.Org

-- 
Joshua D. Abraham
Northeastern University
College of Computer and Information Science
www.ccs.neu.edu/home/jabra

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org