Devin's Status Report #2 of 13

[devin bjelland <devinbjelland () gmail com>]

My main project this week was to integrate the lpeg library. lpeg parses
parses pattern expression grammars, which are more expressive than regular
expressions. This allows us to simplify various parts of nmap and aid in
writing scripts.

Accomplishments:
-Got lpeg integration working on my branch. Lpeg is a lua library for
parsing
 expression grammars. I amalgamated the lpeg source files
 into single file lpeg.c, compiled it into nmap.cc, and modified a patch
 Patrick wrote while back to use lpeg to simplify Json parsing and script
 selection.
-Wrote proposal on how to modify the tty in preparation for writing a NSE
 debugger.
-Started writing prototype of NSE debugger (demonstrates ability to capture
 input from tty and surpress output from the rest of Nmap)
-Modified/committed changes to the NSE enhanced output patch based on
Patrick's
 suggestions.
-Did more research on libssh2 integration. Main takeaways: It would make it
 simple to write several scripts that have already been proposed (like
 bruteforcing, checking whether a given key is accepted, and checking for
 weak Debian hostkeys). Downside: Although you can specify nonblocking
sockets,
 it looks like libssh2 insists on handling the sockets itself.

Priorities:
-Finish NSE debugger prototype.
-Introduce lpeg, merge into it into /nmap
-Test if libssh2 works when handed a pipe instead of a socket (this would
allow
 us to still use nsock to handle the sockets)

Cheers,
Devin Bjelland
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/