Nmap Development mailing list archives

Re: Proposal for adding new option to nmap

From: David Fifield <david () bamsoftware com>
Date: Thu, 1 Jul 2010 09:30:02 -0600

On Thu, Jul 01, 2010 at 11:14:06AM -0400, Patrick Donnelly wrote:

On Thu, Jul 1, 2010 at 3:04 AM, kirubakaran S <kirubakaran1989 () gmail com> wrote:

Proposed solution:
    To include a command line option in nmap,  "--script-list" that
prints the list of scripts that meets the specification criteria.


nse_main.lua already prints out the list of scripts chosen if
debugging is at two or higher:

batrick@batbytes:~/nmap/svn/nmap$ ./nmap --datadir . --script *http* -d2

NSE: Loaded 14 scripts for scanning.
NSE: Loaded 'http-auth.nse'.
NSE: Loaded 'http-date.nse'.
NSE: Loaded 'http-enum.nse'.
NSE: Loaded 'http-favicon.nse'.
NSE: Loaded 'http-headers.nse'.
NSE: Loaded 'http-iis-webdav-vuln.nse'.
NSE: Loaded 'http-malware-host.nse'.
NSE: Loaded 'http-methods.nse'.
NSE: Loaded 'http-open-proxy.nse'.
NSE: Loaded 'http-passwd.nse'.
NSE: Loaded 'http-php-version.nse'.
NSE: Loaded 'http-trace.nse'.
NSE: Loaded 'http-userdir-enum.nse'.
NSE: Loaded 'http-vmware-path-vuln.nse'.
Read from .: nmap-services.
WARNING: No targets were specified, so 0 hosts scanned.
Nmap done: 0 IP addresses (0 hosts up) scanned in 0.07 seconds

No targets needed to be specified. Is this sufficient?


We're looking for something easily parseable and more formal (guaranteed
not to change). Parsing from -d2 would work though. What would be
different about --script-list is that it wouldn't allow any scanning,
and wouldn't produce output other than the script list. Command-line
users could use it to see what scripts are installed or preview what
scripts are going to be run.

As Kirubakaran said, the point of this is to get Nmap to do the script
matching for Zenmap, so the algorithm only has to be in one place.
Thanks for bringing up -d2; we may end up using that.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

Proposal for adding new option to nmap kirubakaran S (Jul 01)
- Re: Proposal for adding new option to nmap Patrick Donnelly (Jul 01)
  - Re: Proposal for adding new option to nmap David Fifield (Jul 01)
    - Re: Proposal for adding new option to nmap David Fifield (Jul 04)
    - Re: Proposal for adding new option to nmap kirubakaran S (Jul 05)
    - Re: Proposal for adding new option to nmap David Fifield (Jul 05)
    - Re: Proposal for adding new option to nmap Kris Katterjohn (Jul 05)
    - Re: Proposal for adding new option to nmap Fyodor (Jul 06)
- Re: Proposal for adding new option to nmap Fyodor (Jul 06)