Re: [NSE] Script Idea: nmap last run

[Robin Wood <robin () digininja org>]

On 23 July 2012 12:54, Vikas Singhal <vikas.programmer () gmail com> wrote:
> Ohok.. I think nmap will throw an error anyways if -sT / -sS both are
> specified.
>
> About your comment:
> > You would then have to remember to specify it or set it up as an alias
> > which I think you can already do with -oA
>
> Script scan is common and -oA is not. If -sC was specified nmap will tell us
> that the output was saved in a FILE. Alias is difficult as Toni pointed out
> that there is no default filename generation.
>
> Or may be.. Option 3: if we could just add -oA and it generated the file
> with default naming convention. This way we are restricting default saving
> and still able to save output without much hassels. That being said, this is
> not what I wanted in first place though. :(
>
> Or.. we can do something like this to save last output..
> http://stackoverflow.com/questions/5955577/bash-automatically-capture-output-of-last-executed-command-into-a-variable

I was thinking something like Kismet has where you can specify the
format of the output file. In the rc file you would then have
something like:

-oA nmap-%d-%p

where %d is date and %p is either the IP, range or filename. Sure you
can come up with better ideas than that though.

Robin

> Vikas
>
> On Mon, Jul 23, 2012 at 5:16 PM, Robin Wood <robin () digininja org> wrote:
> > On 23 July 2012 12:42, Vikas Singhal <vikas.programmer () gmail com> wrote:
> > > Hi Robin,
> > >
> > > I am sorry, I am unable to understand when you say if -sT/sS is there in
> > > the
> > > rc file. What difference does it make?
> >
> > The file would be saying to run a Syn and TCP scan at the same time
> > which can't be done so you could either chose one (first, last or
> > specify somewhere one has priority), reject the file because it
> > contains invalid options, or, if the user is not root, chose -sT
> > because -sS is not a valid scan option for a non-root user.
> >
> > Robin
> >
> >
> > > Vikas
> > >
> > >
> > > On Mon, Jul 23, 2012 at 4:55 PM, Robin Wood <robin () digininja org> wrote:
> > > > On 23 July 2012 12:22, Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar>
> > > > wrote:
> > > > > Cmdline overrides rc, I think.
> > > >
> > > > Definitely but what if rc has -sT -sS in it. Or -sT and -sU and the
> > > > user is normal user, not root.
> > > >
> > > > It isn't hard to implement a solution just have to be definite over
> > > > what priority things get.
> > > >
> > > > Robin
> > > >
> > > > > Nmap asking, halting execution? Please no!
> > > > >
> > > > >
> > > > > On 7/23/12, Robin Wood <robin () digininja org> wrote:
> > > > > > On 23 July 2012 07:36, Ron <ron () skullsecurity net> wrote:
> > > > > > > -----BEGIN PGP SIGNED MESSAGE-----
> > > > > > > Hash: SHA1
> > > > > > >
> > > > > > > On Sun, 22 Jul 2012 20:27:46 +0100 Robin Wood <robin () digininja org>
> > > > > > > wrote:
> > > > > > > > What about if there were a resource/config script in the users
> > > > > > > > home
> > > > > > > > directory like other tools have? You couldn't set things like -sT
> > > > > > > > but
> > > > > > > > you could add things like -oA and have a way to specify something
> > > > > > > > to
> > > > > > > > do with the date and/or IP range.
> > > > > > > >
> > > > > > > > Robin
> > > > > > > I was gonna suggest the same thing - Nmap could read a .nmaprc file
> > > > > > > where
> > > > > > > you can specify options that you want to affect every scan. You
> > > > > > > could
> > > > > > > do
> > > > > > > -sT or -sS if you wanted, though it'd be kinda silly.
> > > > > >
> > > > > > The only reason I was thinking of not having -sT and -sS in the
> > > > > > resource file would be working out which takes priority if both are
> > > > > > specified. You might also want to support it falling back two
> > > > > > options
> > > > > > are provided and one is only available when running as root while
> > > > > > the
> > > > > > other works as a normal user.
> > > > > >
> > > > > > Robin
> > > > > >
> > > > > > > Perhaps that already exists?
> > > > > > >
> > > > > > > Ron
> > > > > > > -----BEGIN PGP SIGNATURE-----
> > > > > > > Version: GnuPG v2.0.17 (GNU/Linux)
> > > > > > >
> > > > > > > iEYEARECAAYFAlAM8Q4ACgkQ2t2zxlt4g/Ry8gCfetF3pGoRD4NF8KbtP+GqyUW3
> > > > > > > IlgAoKIszRTUXI52zV7lSUQTji/ocUg7
> > > > > > > =koGT
> > > > > > > -----END PGP SIGNATURE-----
> > > > > > > _______________________________________________
> > > > > > > Sent through the nmap-dev mailing list
> > > > > > > http://cgi.insecure.org/mailman/listinfo/nmap-dev
> > > > > > > Archived at http://seclists.org/nmap-dev/
> > > > > > _______________________________________________
> > > > > > Sent through the nmap-dev mailing list
> > > > > > http://cgi.insecure.org/mailman/listinfo/nmap-dev
> > > > > > Archived at http://seclists.org/nmap-dev/
> > > > >
> > > > > --
> > > > > Sent from my mobile device
> > > > _______________________________________________
> > > > Sent through the nmap-dev mailing list
> > > > http://cgi.insecure.org/mailman/listinfo/nmap-dev
> > > > Archived at http://seclists.org/nmap-dev/
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/