Slashdot Mirror

← Back to Stories (view on slashdot.org)

Nmap 5.20 Released

Posted by Soulskill on from the more-and-better dept.

ruphus13 writes "Nmap has a new release out, and it's a major one. It includes a GUI front-end called Zenmap, and, according to the post, 'Network admins will no doubt be excited to learn that Nmap is now ready to identify Snow Leopard systems, Android Linux smartphones, and Chumbies, among other OSes that Nmap can now identify. This release also brings an additional 31 Nmap Scripting Engine scripts, bringing the total collection up to 80 pre-written scripts for Nmap. The scripts include X11 access checks to see if X.org on a system allows remote access, a script to retrieve and print an SSL certificate, and a script designed to see whether a host is serving malware. Nmap also comes with netcat and Ndiff. Source code and binaries are available from the Nmap site, including RPMs for x86 and x86_64 systems, and binaries for Windows and Mac OS X. '"

36 comments

  1. Zenmap by Jesus_Corpse · · Score: 4, Informative

    If I remember correctly, Zenmap was already the default GUI for Nmap from the 4.x series.

    But happy with a new version nonetheless :)

    1. Re:Zenmap by phillips321 · · Score: 1

      For those that wish for the debian build they can get it from here

    2. Re:Zenmap by jseale · · Score: 1

      Yeah, but it wasn't built in like it's being hyped up to be now. If that appears to be the case, it would be an awfully big thing. Especially if the GUI software were cross-platform.

  2. NMap GUI? by Grey+Loki · · Score: 1, Funny

    I wonder if they'll feather -this- in movies...

    1. Re:NMap GUI? by Anonymous Coward · · Score: 0

      I wonder if they'll feather -this- in movies...

      Depends on the movie - some might even tar AND feather it...

  3. Thanks Fyodor! by Anonymous Coward · · Score: 0

    In honor of this release, I think I will make a donation to the OpenBSD project.

    1. Re:Thanks Fyodor! by heras · · Score: 2, Interesting

      Silly question here: what does nmap have to do with the OpenBSD project?

    2. Re:Thanks Fyodor! by Selivanow · · Score: 1

      I believe that the poster is referencing that OpenBSD touts itself as secure out of the box and NMap would find no unsecure open ports in its scan....of cource i am most likely wrong.

      --
      -- ...trying to make digital files uncopyable is like trying to make water not wet. -Bruce Schneier
  4. This is the real story! by adese · · Score: 5, Informative

    5.20 was released 4 days ago. Of note, Nmap 5.21 is already going to be released within 7 days due to some bugs. That's news! Also Zenmap has been stable since September 2008 and its first inception was released in a dev build in July 2007. Not news!

    1. Re:This is the real story! by adese · · Score: 5, Informative

      Another note : the current SVN build of nmap fixes all the known bugs being addressed in 5.21. So if you like dev builds... there you go.

  5. ssl by planckscale · · Score: 2, Interesting

    what would be the purpose of printing an sl cert? it has been a long time since i'e used nmap an now i'm cuirious to see the gui. thanks for the post.

    --
    Namaste
    1. Re:ssl by linopop · · Score: 2, Informative

      checking the valdiationperiode of the SSL-cert on the fly. e.g. 30 ssl servers on the subnet. scan -> ah, 1 expires next week (that one I forgot about, I have to renew), 10 other show the wrong FQDN in their CN (that changed last month) etc.

  6. Great News! by Voulnet · · Score: 3, Funny

    Great to hear of this new update. And about the new GUI, is it going to include some cheesy, bizarre movie effects like annoying sounds and red "Hack this website" buttons?

    1. Re:Great News! by slimjim8094 · · Score: 2, Informative

      You should check the nmap website. It's been used in countless movies, from Matrix Reloaded to Die Hard 4. In general, they even use it correctly!

      --
      I have developed a truly marvelous proof of this comment, which this signature is too narrow to contain.
  7. Nmap? by AmberBlackCat · · Score: 0, Redundant

    Does somebody want to say what it is?

    1. Re:Nmap? by Anonymous Coward · · Score: 0

      not really, no

    2. Re:Nmap? by shadowbolt · · Score: 1

      It's a popular port scanning utility.

    3. Re:Nmap? by Winckle · · Score: 2, Funny

      Hand in your nerd card please.

    4. Re:Nmap? by Stoian+Ivanov · · Score: 1

      A network scanner plus port scanner. The definitive tool for the job :)

    5. Re:Nmap? by D+Ninja · · Score: 4, Informative

      Now, normally, I don't like to be a jerk. But, I'm sick. So I feel justified. Is it really so hard to look this up when you have an entire internet to help you search plus an article linked above?!

      Seriously.
      (I'm being an anonymous jerk.)

    6. Re:Nmap? by D+Ninja · · Score: 4, Funny

      Ah well. -1 point for me for not clicking the anonymous button. Ah well. Like I said, I'm sick. Stupid flu. :: grumbles ::

    7. Re:Nmap? by Anonymous Coward · · Score: 0

      That's some funny stuff

    8. Re:Nmap? by Anonymous Coward · · Score: 1, Funny

      That's some real funny stuff.

      Seriously.
      (I'm succeeding at being an anonymous jerk.)

    9. Re:Nmap? by indi0144 · · Score: 3, Funny

      Are you going to have Flu all week? : )

    10. Re:Nmap? by cenc · · Score: 1

      I don't think you can get one of those without using nmap.

      --
      Living in Chile
    11. Re:Nmap? by AmberBlackCat · · Score: 1

      I find it interesting how the people who just said what it is are all at +1 right now but the ass, who did everything but just answer the question, got to +5. A +5 Informative, no less...

    12. Re:Nmap? by Zero__Kelvin · · Score: 1, Insightful

      "Does somebody want to say what it is?"

      If you don't know how to use Google then you can safely ignore nmap

      --
      Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
    13. Re:Nmap? by Zero__Kelvin · · Score: 1
      Because it is better to teach a man how to fish than to give him one. Calling us asses doesn't help. Pointing him to Google rather than answering his question helps now and every time this problem comes up in the future. So to recap:
      • Helping someone learn to answer their own question: Good
      • Posting to Slashdot asking for an answer that is easily searchable via Google: Bad
      • Calling people who understand this asses: Very Bad
      --
      Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
  8. Nice little intro to nmap by Anonymous Coward · · Score: 0

    Theres a nice little intro to nmap over at 360, where they award it #1 on their list of top security tools. Its a good starting point for those who wonder what the fuss is about. AG

  9. I'll tell you what no one else will admit. by Anonymous Coward · · Score: 0, Informative

    The dirty secret that people won't admit to about nmap, here it is:

    Nmap, which is supposedly used by network admins to check their defenses, is used far more widely by hackers and scriptkiddies to attack and compromise systems.

    The first steps in any hack attempt is to determine the following;

    a) what OS, device, browser, software, or services you are using
    b) what ports you have open, which can also indicate what services can be exploited
    c) what exploits work for your platform, 0-day are almost always guaranteed to work, older hacks are hit and miss, but a majority of people don't really care about patching or security so most of them work, even older patched ones
    d) preparing and delivering a payload of arbitrary code to commit some nefarious succession of tasks on your machine

    Nmap fulfills the needs for the first two steps and helps make the third and fourth possible. How it does this is it fingerprints your system by looking for messages programmers leave in headers or responses from software, or for a common reaction to a certain request that is formed in a certain way uniquely on different platforms and software.

    For example, Apache and ISS web servers both report their brand, version, build number, and sometimes even their plugins when asked. If you know that version XX.XX of a service or software that is running on a remote machine is susceptible to exploit by viruses or exploit code ironically provided by "security researchers" and "security experts" who's goals are to protect people and businesses, they you can most likely break in and deliver your payload fairly easily. It doesn't help that hosting services like GoDaddy are both overwhelmed and incompetent and do not keep their software up to date, but reporting back your version is in my opinion the largest flaw of them all. But, even if they didn't report back a version, if you configured them not to which is possible to do, it might still be possible to identify quirks in the way they form responses. Maybe Apache throws an extra return carriage at the end of a certain header or response that other webservers don't, and that can be used to identify it for example. Or, a new version of IIS X.XX happens to respond on a certain port that it didn't in previous versions, or hosts a new plugin only available on that newer or an older version which is no longer available in the new version, and when it so kindly tells you which plugins its running remotely you can determine which brand and version they have.

    Likewise, this goes beyond just hacking web servers, web browsers report a vast array of details about your OS, browser, platform, etc in its header response every single time you load a resource or webpage on a web site. For that nmap isn't required, javascript can needle its way in unless you use noscript and do not trust any websites. Where nmap gets scary for the average consumer, besides allowing hackers to turn their machines into zombies or stealing your credit card and password information by slipping keyloggers and worms into your machine, is when they start identifying your cell phone as the latest version of nmap now allows. When they can pick out your android smartphone and slip an exploit in to listen to phone calls, voicemails, steal your phone book, and other nefarious procedures it gets plain creepy.

    Anyways, nmap is a useful tool both for and against hacking, but it is used more fruitfully by the hackers than the security experts. And, in most cases, the security experts are actually guiding and providing the exploits necessary for the hackers to do what they do. That is the dirty secret.

    Hope that helps.

  10. Nifty nmap trick by straponego · · Score: 1

    Haven't tried this version yet, but recent builds have some nice traceroute functionality-- very fast, and more informative when hosts along the route don't answer ICMP:

    nmap -T4 -p80 -PN --traceroute $DEST_HOST

    (This needs to be run with root privileges).

    Nmap rules.

    1. Re:Nifty nmap trick by Hurricane78 · · Score: 1

      Doesn’t that only work, when port 80 does respond (and does so fast enough)?

      --
      Any sufficiently advanced intelligence is indistinguishable from stupidity.
  11. New Zenmap Filter by Zero__Kelvin · · Score: 1

    Maybe they were thinking of this from fyodor's announcment: [Zenmap] After performing or loading a scan, you can now filter results to just the hosts you are interested in by pressing Ctrl+L (or the "Filter Hosts" button) to open the host filtering interface.

    --
    Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun