Nmap 5.20 Released

ruphus13 writes "Nmap has a new release out, and it's a major one. It includes a GUI front-end called Zenmap, and, according to the post, 'Network admins will no doubt be excited to learn that Nmap is now ready to identify Snow Leopard systems, Android Linux smartphones, and Chumbies, among other OSes that Nmap can now identify. This release also brings an additional 31 Nmap Scripting Engine scripts, bringing the total collection up to 80 pre-written scripts for Nmap. The scripts include X11 access checks to see if X.org on a system allows remote access, a script to retrieve and print an SSL certificate, and a script designed to see whether a host is serving malware. Nmap also comes with netcat and Ndiff. Source code and binaries are available from the Nmap site, including RPMs for x86 and x86_64 systems, and binaries for Windows and Mac OS X. '"

Zenmap

[Jesus_Corpse]

If I remember correctly, Zenmap was already the default GUI for Nmap from the 4.x series.

But happy with a new version nonetheless :)

Re:

[phillips321]

For those that wish for the debian build they can get it from here [phillips321.co.uk]

New Zenmap Filter

[Zero__Kelvin]

Maybe they were thinking of this from fyodor's announcment [seclists.org]: [Zenmap] After performing or loading a scan, you can now filter results to just the hosts you are interested in by pressing Ctrl+L (or the "Filter Hosts" button) to open the host filtering interface.

Re:

[jseale]

Yeah, but it wasn't built in like it's being hyped up to be now. If that appears to be the case, it would be an awfully big thing. Especially if the GUI software were cross-platform.

NMap GUI?

[Grey Loki]

I wonder if they'll feather -this- in movies...

Re:

[heras]

Silly question here: what does nmap have to do with the OpenBSD project?

Re:

[Selivanow]

I believe that the poster is referencing that OpenBSD touts itself as secure out of the box and NMap would find no unsecure open ports in its scan....of cource i am most likely wrong.

This is the real story!

[adese]

5.20 was released 4 days ago. Of note, Nmap 5.21 is already going to be released within 7 days due to some bugs. That's news! Also Zenmap has been stable since September 2008 and its first inception was released in a dev build in July 2007. Not news!

Re:This is the real story!

[adese]

Another note : the current SVN build of nmap fixes all the known bugs being addressed in 5.21. So if you like dev builds... there you go.

ssl

[planckscale]

what would be the purpose of printing an sl cert? it has been a long time since i'e used nmap an now i'm cuirious to see the gui. thanks for the post.

Re:

[linopop]

checking the valdiationperiode of the SSL-cert on the fly. e.g. 30 ssl servers on the subnet. scan -> ah, 1 expires next week (that one I forgot about, I have to renew), 10 other show the wrong FQDN in their CN (that changed last month) etc.

Great News!

[Voulnet]

Great to hear of this new update. And about the new GUI, is it going to include some cheesy, bizarre movie effects like annoying sounds and red "Hack this website" buttons?

Re:

[slimjim8094]

You should check the nmap website. It's been used in countless movies, from Matrix Reloaded to Die Hard 4. In general, they even use it correctly!

Re:

[shadowbolt]

It's a popular port scanning utility.

Re:

[Winckle]

Hand in your nerd card please.

Re:

[cenc]

I don't think you can get one of those without using nmap.

Re:

[Stoian Ivanov]

A network scanner plus port scanner. The definitive tool for the job :)

Re:Nmap?

[D Ninja]

Now, normally, I don't like to be a jerk. But, I'm sick. So I feel justified. Is it really so hard [lmgtfy.com] to look this up [wikipedia.org] when you have an entire internet to help you search plus an article linked above?!

Seriously.
(I'm being an anonymous jerk.)

Re:Nmap?

[D Ninja]

Ah well. -1 point for me for not clicking the anonymous button. Ah well. Like I said, I'm sick. Stupid flu. :: grumbles ::

Re:

[Anonymous Coward]

That's some real funny stuff.

Seriously.
(I'm succeeding at being an anonymous jerk.)

Re:

[indi0144]

Are you going to have Flu all week? : )

Re:

[AmberBlackCat]

I find it interesting how the people who just said what it is are all at +1 right now but the ass, who did everything but just answer the question, got to +5. A +5 Informative, no less...

Re:

[Zero__Kelvin]

Because it is better to teach a man how to fish than to give him one. Calling us asses doesn't help. Pointing him to Google rather than answering his question helps now and every time this problem comes up in the future. So to recap:

• Helping someone learn to answer their own question: Good
• Posting to Slashdot asking for an answer that is easily searchable via Google: Bad
• Calling people who understand this asses: Very Bad

Re:

[Zero__Kelvin]

"Does somebody want to say what it is?"

If you don't know how to use Google then you can safely ignore nmap

Nifty nmap trick

[straponego]

Haven't tried this version yet, but recent builds have some nice traceroute functionality-- very fast, and more informative when hosts along the route don't answer ICMP:

nmap -T4 -p80 -PN --traceroute $DEST_HOST

(This needs to be run with root privileges).

Nmap rules.

Re:

[Hurricane78]

Doesn’t that only work, when port 80 does respond (and does so fast enough)?