Posts tagged nmap

Nmap是一个网络连接端扫描软件，用来扫描网上电脑开放的网络连接端，并能推断出对方运行的操作系统。现在Nmap正式发布了5.20版，包含了GUI前端Zenmap的一个更新版。Nmap 5.20现在能识别出Snow Leopard，Android Linux智能手机，以及Chumby、HW group、Icom、Lyngsoe和NEC等生产的打印机、宽带路由器和其它设备，共收集了1349个指纹。Nmap 5.20还新增了31个Nmap Scripting Engine脚本，预写好脚本总数达到了80个。脚本包括了X11访问检查，观察系统上的X.org是否允许远程访问；检索并打印SSL证书的脚本；设计检查主机是否有恶意程序的脚本等等。下载源代码和二进制包”

开源网络安全扫描工具Nmap正式发布了5.00版，这是自1997年以来最重要的发布，代表着Nmap从简单的网络连接端扫描软件变身为全方面的安全和网络工具组件。Nmap于1997年9月推出，支持Linux、Windows、Solaris、BSD、Mac OS X、AmigaOS系统，采用GPL许可证，最初用于扫描开放的网络连接端，确定哪服务运行在那些连接端，它是评估网络系统安全的重要软件，也是黑客常用的工具之一。新的Nmap 5.00版大幅改进了性能，增加了大量的脚本。例如Nmap现在能登录进入Windows，执行本地检查(PDF)，能检测出臭名昭著的Conficker蠕虫。其它的主要特性包括：用于数据传输，重定向和调试的新Ncat工具，Ndiff快速扫描比较工具，高级GUI和结果浏览器Zenmap等。

Hello everyone. I’m delighted to announce the release of Nmap 5.00!
This is the first major release since 4.50 in 2007, and includes about
600 significant changes since then! We consider this the most
important Nmap release since 1997, and we recommend that all current
users upgrade.

Top 5 Changes

1) The new Ncat tool aims to be your Swiss Army Knife for data
transfer, redirection, and debugging. We released a whole users’
guide (http://nmap.org/ncat/guide/index.html) detailing security
testing and network administration tasks it made easy with Ncat.
Details: http://nmap.org/5/#changes-ncat

2) The addition of the Ndiff scan comparison tool completes Nmap’s
growth into a whole suite of applications which work together to
serve network administrators and security practitioners. Ndiff
makes it easy to automatically scan your network daily and report
on any changes (systems coming up or going down or changes to the
software services they are running). The other two tools now
packaged with Nmap itself are Ncat and the much improved Zenmap GUI
and results viewer. Details: http://nmap.org/5/#changes-ndiff

3) Nmap performance has improved dramatically. We spent last summer
scanning much of the Internet and merging that data with internal
enterprise scan logs to determine the most commonly open
ports. This allows Nmap to scan fewer ports by default while
finding more open ports. We also added a fixed-rate scan engine so
you can bypass Nmap’s congestion control algorithms and scan at
exactly the rate (packets per second) you specify. Details:

http://nmap.org/5/#changes-performance

4) We released Nmap Network Scanning, the official Nmap guide to
network discovery and security scanning. From explaining port
scanning basics for novices to detailing low-level packet crafting
methods used by advanced hackers, this book suits all levels of
security and networking professionals. A 42-page reference guide
documents every Nmap feature and option, while the rest of the book
demonstrates how to apply those features to quickly solve
real-world tasks. More than half the book is available in the free
online edition at http://nmap.org/book/toc.html. Details:

http://nmap.org/5/#changes-book

5) The Nmap Scripting Engine (NSE) is one of Nmap’s most powerful and
flexible features. It allows users to write (and share) simple
scripts to automate a wide variety of networking tasks. Those
scripts are then executed in parallel with the speed and efficiency
you expect from Nmap. All existing scripts have been improved, and
32 new ones added. New scripts include a whole bunch of
MSRPC/NetBIOS attacks, queries, and vulnerability probes; open
proxy detection; whois and AS number lookup queries; brute force
attack scripts against the SNMP and POP3 protocols; and many
more. All NSE scripts and modules are described in the new NSE
documentation portal. Details: http://nmap.org/5/#changes-nse

Learn more here http://nmap.org/5/
Windows users download here http://nmap.org/dist/nmap-5.00-setup.exe