Penetration Testing mailing list archives

Re: Comprehensive firewall test using Nmap?

From: "M.B.Jr." <marcio.barbado () gmail com>
Date: Fri, 22 Aug 2008 18:00:19 -0300

No CJ,
I guess Alexander means an automatic port alteration during your

nmap -g $srcport -oA blabla-$srcport etc

suggestion.



Regards,



On 8/21/08, Carl-Johan Bostorp <Carl-Johan.Bostorp () hps se> wrote:

Hi,

 Using simple scripting would be a good way to get things done quickly.  E.g.

 #!/bin/bash

 srcport=$1
 end=$2

 while [ $srcport -le $end ]; do
   nmap -g $srcport -oA blabla-$srcport etc
   $srcport = `expr $srcport + 1`
 done

 /CJ

 > -----Ursprungligt meddelande-----
 > Från: listbounce () securityfocus com
 > [mailto:listbounce () securityfocus com] För Alexander Sandström Krantz A
 > Skickat: den 21 augusti 2008 09:00
 > Till: pen-test () securityfocus com
 > Ämne: Comprehensive firewall test using Nmap?

 > Is it possible to automatically alter the source port when using Nmap
 > to test a firewall? It would be very nice if it was possible to provide
 > a port range instead of one single source port, even though I realise
 > that such as scan would take a long time to execute. Anyone knows of
 > any patches for Nmap that allows a source port range to be provided?
 >
 > If not, do you have any other suggestion on what application to use to
 > perform a more comprehensive firewall test?
 >
 > Thanks,
 > Alexander
 >
 > -----------------------------------------------------------------------
 > -
 > This list is sponsored by: Cenzic
 >
 > Top 5 Common Mistakes in
 > Securing Web Applications
 > Get 45 Min Video and PPT Slides
 >
 > www.cenzic.com/landing/securityfocus/hackinar
 > -----------------------------------------------------------------------
 > -


 ------------------------------------------------------------------------
 This list is sponsored by: Cenzic

 Top 5 Common Mistakes in
 Securing Web Applications
 Get 45 Min Video and PPT Slides

 www.cenzic.com/landing/securityfocus/hackinar
 ------------------------------------------------------------------------




-- 
Marcio Barbado, Jr.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

Current thread:

Comprehensive firewall test using Nmap? Alexander Sandström Krantz A (Aug 21)
- SV: Comprehensive firewall test using Nmap? Carl-Johan Bostorp (Aug 21)
  - Re: Comprehensive firewall test using Nmap? M.B.Jr. (Aug 25)
- Re: Comprehensive firewall test using Nmap? Tim Brown (Aug 21)
- Re: Comprehensive firewall test using Nmap? Joe Sechman (Aug 21)
- Re: Comprehensive firewall test using Nmap? Gabriele Brosulo (Aug 21)
  - Re: Comprehensive firewall test using Nmap? Bill Weiss (Aug 25)
    - Re: Comprehensive firewall test using Nmap? Gabriele Brosulo (Aug 26)
- <Possible follow-ups>
- Re: Comprehensive firewall test using Nmap? publists (Aug 25)