Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Enabling DEP and ASLR on Nmap for Windows

From: Rob Nicholls <robert () robnicholls co uk>
Date: Mon, 12 Jul 2010 16:03:47 +0100
On Mon, 12 Jul 2010 14:04:24 +0200 (CEST), George Orwell
<nobody () mixmaster it> wrote:

I check always with http://www.erratasec.com/lookingglass.html if DEP
and ALSR are set and if not I enable it in EMET.


I've been using LookingGlass to check for ASLR and DEP too, it's a good
tool.

I've tried building some versions of Nmap (and Ncat and Nping) after
changing a couple of settings in Visual Studio, and LookingGlass says it
supports ASLR and DEP now (sadly py2xe built stuff and the vcredist
installer don't, and the OpenSSL DLLs don't either). I tried the binaries
on Windows 7, 2008, XP and even 2000* (although I hit the interface issue
in 2000 that is probably the same as the one Luis has recently reported).
If people want to give it a try, I've temporarily uploaded binaries at:

https://www.robnicholls.co.uk/files/nmap-svn/nmap-5.30BETA1-18712-aslr-dep-winpcap412-setup.exe
https://www.robnicholls.co.uk/files/nmap-svn/nmap-5.30BETA1-18712-aslr-dep-winpcap412-win32.zip

I was hoping to do a little bit more testing before submitting a small
patch to enable ASLR and DEP, but it looks like everything is fine so far,
and with this information about working with EMET I might try and send
something out later today.

*I was wondering if it was worth installing/patching/testing on 2000 given
that Microsoft stop supporting it tomorrow.

Rob

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: