Nmap Development mailing list archives
[NSE] broadcast-igmp-discovery
From: Hani Benhabiles <kroosec () gmail com>
Date: Thu, 26 Jul 2012 14:59:59 +0100
Hi list, description = [[Discovers targets listening for multicast queries and their groups through IGMP.
The scripts works by sending IGMP Membership Query packets to the 224.0.0.1 All multicast address and listening for IGMP Membership Report packets. It extracts
after that all the interesting information such as the version, group, the mode, source addresses (depending on the version). The script defaults to sending an IGMPv2 Query but this could be changed toanother version or queries of all three version. If no interface was specified as a script argument or with the -e option, the script will proceed to sending
queries through all the valid ethernet interfaces. ]] ----- @args broadcast-igmp-discovery.timeout Time to wait for responses in seconds.
-- Defaults to <code>10</code> seconds. -- -- @args broadcast-igmp-discovery.version IGMP version to use. Could be-- <code>1</code>, <code>2</code>, <code>3</code> or <code>all</code>. Defaults to <code>2</code>
-- --@usage -- nmap --script broadcast-igmp-discovery -- nmap --script broadcast-igmp-discovery -e wlan0 -- nmap --script broadcast-igmp-discovery-- --script-args 'broadcast-igmp-discovery.version=all, broadcast-igmp-discovery.timeout=5'
-- --@output --Pre-scan script results: -- | broadcast-igmp-discovery: -- | 192.168.2.2 -- | Interface: tap0 -- | Version: 3 -- | Group: 239.1.1.1 -- | Mode: EXCLUDE -- | Group: 239.1.1.2 -- | Mode: EXCLUDE -- | Group: 239.1.1.44 -- | Mode: INCLUDE -- | Sources: -- | 192.168.31.1 -- | 192.168.1.3 -- | Interface: wlan0 -- | Version: 2 -- | Group: 239.255.255.250 -- | 192.168.1.3 -- | Interface: wlan0 -- | Version: 2 -- | Group: 239.255.255.253 -- |_ Use the newtargets script-arg to add the results as targets --This discovery method is amazing, I am getting very good information even in small/home networks with no prior or fancy setups. Tests and feedback are very welcome.
Cheers, Hani. -- Hani Benhabiles Twitter: https://twitter.com/#!/kroosec Blog: http://kroosec.blogspot.com
Attachment:
broadcast-igmp-discovery.nse
Description:
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] broadcast-igmp-discovery Hani Benhabiles (Jul 26)
- Re: [NSE] broadcast-igmp-discovery David Fifield (Jul 26)
- Re: [NSE] broadcast-igmp-discovery Daniel Miller (Jul 26)
- Re: [NSE] broadcast-igmp-discovery Hani Benhabiles (Jul 26)
- Re: [NSE] broadcast-igmp-discovery Hani Benhabiles (Jul 27)
- Re: [NSE] broadcast-igmp-discovery Hani Benhabiles (Jul 26)