Re: 2 Projects for Google's Summer Of Code 2010

[Ron <ron () skullsecurity net>]

> > Yes these days I'm kin'of working more with HTTP, though I'm
> > interested in entire Network Security and Security related
> > development. Regarding that NSE Script, do you have anything in
> > mind that you would love to have in Nmap, otherwise I'll look for
> > something.
>
> We're looking at extending NSE's scripts with some of the abilities of
> tools like http://w3af.sourceforge.net/. You can look around at other
> web frameworks and suggest things that you think would fit well with
> NSE. At this point we're looking for new and creative ideas from
> students.
One thing that's desperately needed for HTTP, in my opinion, is an http-spider script. Once every page/form/etc is 
discovered, there's a lot we can do in terms of w3af/sqlmap/etc functionality. I'd love to implement some sqlmap stuff 
in Nmap at some point -- that'd be super cool. :)

Batrick worked on http-spider awhile ago. I'm not sure how far he got or if somebody could potentially take up the 
work. But once the spider script is working, the possibilities are endless.

-- 
Ron Bowes
http://www.skullsecurity.org
http://www.twitter.com/iagox86
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/