Nmap Development mailing list archives

Re: How to contribute to Nmap

From: Wooyoung Chung <yakle1218 () gmail com>
Date: Sun, 28 Apr 2013 23:59:23 -0400

Thanks for advise, David.

I'm aware of GSoC and I'm interested in a position for DiscoveryScanning or Vulnerability and exploitationsince that is my study field in graduate school. But because I have twofinals in three days, I may not able to

do much work for it at this moment.

To get some experience of lua and nse scripting, I wrote a simple nsescript that was on the script idea list[1].


**Microsoft Version Table:

I think this is pretty straight forward to write a function forthis, but I need to clarify something.Basically, the function will take major, minor and build number asstring, and return long windows versionname if exists in the list[2]. However, there are some duplicateversion with different name such as

Windows 7, RTM (Release to Manufacturing)       6.1.7600.16385 (22.10.2009)

Windows Server 2008 R2, RTM (Release to Manufacturing) 6.1.7600.16385(22.10.2009)


 and I'm not sure how should I handle these cases.

Attachment is the script I wrote, I'd appreciate any advise.

Wooyoung







[1] https://secwiki.org/w/Nmap/Script_Ideas
[2] http://gaijin.at/en/lstwinver.php
On 4/26/13 6:44 PM, David Fifield wrote:

On Fri, Apr 26, 2013 at 02:24:04PM -0400, Wooyoung Chung wrote:

My name is Wooyoung Chung, and I'm currently graduate student
concentrating Digital Forensics in James Madison University. I've
used nmap for a while to play with it such as do some port scanning
on random website and tried to find a vulnerability if any exist.
What I would like to do for now is gaining some real experience on
open source and contributing starts from bug fixing. By all mean,
I'm looking forward to join the developer community and work on it
actively. I was looking for bug tracker for nmap but I couldn't find
it.
It will be great if I can find a mentor who can help me out actively
for contributing nmap.

Since you are a student, you should know about the Summer of Code:

http://nmap.org/soc/
http://nmap.org/soc/GeneralRequirements.html
http://nmap.org/soc/apply.html
https://www.google-melange.com/gsoc/org/google/gsoc2013/nmap

We don't have a bug tracker but we keep track of things to do in a
versioned file:

https://svn.nmap.org/nmap/todo/nmap.txt

A good place to start is by looking at the source code at a high level
in nmap_main.cc and seeing what functions get called. The easiest way to
get involved in development these days is in the scripting engine,
http://nmap.org/book/nse.html.

David Fifield



--
------------------------------------------------------------
Wooyoung Chung
Graduate Student, Computer Science, James Madison Universtiy
------------------------------------------------------------

Attachment: microsoft-version.nse
Description:

_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

Current thread:

How to contribute to Nmap Wooyoung Chung (Apr 26)
- Re: How to contribute to Nmap David Fifield (Apr 26)
  - Re: How to contribute to Nmap Wooyoung Chung (Apr 28)
    - Re: How to contribute to Nmap Chundi Sri Raghuram (Apr 28)
    - Re: How to contribute to Nmap David Fifield (Apr 30)
    - Re: How to contribute to Nmap David Fifield (Apr 30)
    - Re: How to contribute to Nmap Wooyoung Chung (Apr 30)