Slashdot Mirror

← Back to Stories (view on slashdot.org)

Nmap 4.00 Released

Posted by Zonk on from the enjoy-mapping-those-n's dept.

NoExec writes "Hot off the nmap-hackers list comes news that the Nmap Security Scanner version 4.00 has been released. Dozens of major changes since 3.50 (2 years ago) are listed in the announcement. These include a rewritten (for speed and memory efficiency) port scanning engine, ARP scanning, a brand new man page and install guide, 'l33t ASCII art, runtime interaction, massive version detection improvements, MAC address spoofing, increased Windows performance, 500 new OS detection fingerprints, completion time estimates, and much more."

9 of 43 comments (clear)

  1. Sweet! by daeley · · Score: 5, Funny

    I wonder if Trinity has had a chance to try it out. ;)

    --
    I watched C-beams glitter in the dark near the Tannhauser gate.
    1. Re:Sweet! by hobbit · · Score: 5, Funny


      Trinity is dead, you insensitve clod!

      --
      "Wise men talk because they have something to say; fools, because they have to say something" - Plato
  2. Re:No raw sockets in XP? by slavemowgli · · Score: 4, Informative

    I wonder what's the logic in disabling raw sockets...

    Oh! Can't you see? It's all done to protect you from the evil intarweb hackers!

    That being said, the lowest level you can use now is raw ethernet frames, and that's just what nmap does - in other words, the disabling of raw sockets is completely useless...

    --
    quidquid latine dictum sit altum videtur.
  3. SecurityFocus Interview by yesnoyes · · Score: 5, Informative

    SecurityFocus just posted an excellent interview with Fyodor about the 4.00 release. Topics include speed benchmarks, version detection improvement details, the upcoming new OS detection system, and reactions to Nessus going proprietary.

  4. Comparison to Nessus by yesnoyes · · Score: 5, Insightful
    My favorite part of the release announcement actually relates to Nessus:

    A popular open source security scanner recently went proprietary, complaining that their community never contributes much. We are sorry to hear that, but happy to report that the Nmap community is as vibrant and productive as ever! We would like to acknowledge and thank the many people who contributed ideas and/or code to this release (since 3.50). Special thanks go out to Adam Kerrison, Adam Morgan, Adriano Monteiro Marques, Alan Bishoff [ huge list goes on and on ... ]

    So if Nessus can't get enough help, maybe that says more about how they run the project than their suggestion of an open source community of leeches who don't contribute back.

  5. Re:No signed source code? by Anonymous Coward · · Score: 5, Informative
    Would be nice if he signed the tarball with a pgp key.

    He did. See Verifying the integrity of Nmap downloads.

  6. Re:Gaaah! by menkhaura · · Score: 4, Funny

    You, boy, should be grateful for your backspace key. When I was a lad there were no such things as keys; we used our very own fingers to close the 12000V contacts. Our programs were entered in binary, and we were lucky when we did it all right the first time, for so Dad wouldn't bang our heads with a baseball bat. Furthermore, in order to get 12000V (lower tensions didn't pass through our fingers) on the patch-panel contacts, we had to bring in our own 300lb transformers. On our backs. Uphill both ways.

    --
    Stupidity is an equal opportunity striker.
    Fellow slashdotter Bill Dog
  7. Awesome! by Slashcrap · · Score: 4, Funny

    I just noticed that Nmap 4.0 has a new OS detection fingerprint. It's for the Sony AIBO.

    I don't know how we ever got by without that one! Although I suppose you'd want to know if you had one on your corporate LAN. Sony probably rootkits the little fuckers before they leave the factory.

  8. Re:No raw sockets in XP? by archeopterix · · Score: 4, Interesting
    I wonder what's the logic in disabling raw sockets...
    Stupidity + historical reasons, which I am recalling from memory:

    1. Microsoft implements raw sockets, with some efforts to restrict access to them - only Administrators can use them.
    2. On XP all users are Administrators by default.
    3. Some people point this out, the stupidest being the loudest . ("Full Raw Sockets were created as a potent research tool. They were NEVER INTENDED to be shipped in a mass-market consumer operating system." )
    4. Microsoft thinks it's a good idea.