Scan* Series For Linux

GovernmentSecurity.org > System Security > Beginners Section

jead99

Feb 29 2004, 05:43 PM

Does the scan100 etc. exist for the linux platform. I've tried searching but only found windows versions.

Thanks.

DumpZ

Mar 1 2004, 10:19 AM

I don't think so, cuz i also searched allot on the inet but no result. And i don't think i would run under wine either cuz (correct me if im wrong) scan*.exe uses winsock to create SYN packets and *NIX doesn't

cornstalk

Mar 1 2004, 06:53 PM

There are many other nice scanning tools for unix out there

Just have a look at this page:
http://www.antiserver.it/Unix/scanner/Unix-Scanner/

R0x0r

Mar 2 2004, 12:30 PM

Use Nmap.. Wery good scannertool for linux:)

DumpZ

Mar 2 2004, 12:32 PM

Nmap is very good i agree, but the output really sucks

cornstalk

Mar 2 2004, 01:10 PM

Nmap is very good for single hosts, but imo not for portscanning a range... because it lists every host, even if the port is closed.

-Anders

Mar 2 2004, 02:26 PM

You can just -oX it and make a stylesheet (What are they called again? XST?) that only shows the ones that are up and open. I did that.
It's here for your viewing pleasure. (This only works when scanning a single port, but you can easily adapt it)
Add this string of code as the second line of the generated xml file from nmap:

CODE

<?xml-stylesheet type="text/xsl" href="index.xsl"?>

And this is the index.sxl file:

CODE

<?xml version="1.0" encoding="ISO-8859-1"?>
<xsl:stylesheet version="1.0"
xmlns:xsl="http://www.w3.org/1999/XSL/Transform">

<xsl:template match="/">
<html>
<body>
<h1>Nmap portscan, agrs: <xsl:value-of select="nmaprun/@args" /></h1>
<table>
<tr>
<th>Ip</th>
<th>Status</th>
</tr>
<xsl:for-each select="nmaprun/host[status/@state='up']">
<xsl:sort select="ports/port/state/@state" />
<tr>
<td><xsl:value-of select="address/@addr" /></td>

<td><xsl:value-of select="ports/port/state/@state" /></td>
</tr>
</xsl:for-each>
</table>
</body>
</html>
</xsl:template>
</xsl:stylesheet>

(Sorry if it's a tad long)

usch

Mar 2 2004, 02:37 PM

ur all that hot about nmap but it is nothing against the scan* series,or can yxou perform a printer or media scan with nmap?so i think nmap isn`t a good help for him

cornstalk

Mar 2 2004, 02:39 PM

Thank you

That is what i have been looking for.

cornstalk

Mar 2 2004, 02:41 PM

QUOTE (usch @ Mar 2 2004, 02:37 PM)

ur all that hot about nmap but it is nothing against the scan* series,or can yxou perform a printer or media scan with nmap?so i think nmap isn`t a good help for him

Well, that are exploits for Windows, so you normally scan and "hack" it with Windows.

-Anders

Mar 2 2004, 03:04 PM

QUOTE (usch @ Mar 2 2004, 03:37 PM)

ur all that hot about nmap but it is nothing against the scan* series,or can yxou perform a printer or media scan with nmap?so i think nmap isn`t a good help for him

Well nmap is more or less just a 'Port-scanner on steroids' as it's commonly called.
It's not made for exploiting anything really, just to portscan, and map networks.
It's a nice, and very powerfull tool though, special software should be used for cracking other peoples computers, this is not what nmap is for.
I'm sure scan100 or scan* or whatever it's called (I have no idea, I have never used it, nor seen it or heard of it) is perfect for the job, I'm simply demonstrating that nmap has it's purposes, and CAN infact produce nice, easily readable output.
-oG is very nice for grep'ing what you need for instance (Well the G stands for greppable, heh).
But I'm sure you're right, scan* whatever is most likely the best option for him, so I guess it's back to windows for him if he want's that.

Oh, and I forgot, here's a demo of the xsl:
Clickey

DumpZ

Mar 2 2004, 04:30 PM

Well my problem with nmap is like i said before is the output, cuz for instance when I want to scan/hack sql I first scan win scan1000.exe en then check the results with xscan, because xscan is to slow.

And i would like it if i could do the same with a linux box. I don't know if te TS want the same or that he just want scan*.exe for linux

-Anders

Mar 2 2004, 04:39 PM

QUOTE (DumpZ @ Mar 2 2004, 05:30 PM)

I don't know if you can, as I have no idea as to how scan1000 works.
I'll try and see if it works under wine in a little while, but if you could try to explain what exactly it is that you want it to do, I might be able to find/create something that does just that.

-Anders

Mar 2 2004, 04:44 PM

CODE

usernamehere.~$ wine -- Scan1000.exe -p 21-23 192.168.0.0 192.168.0.6

=========Modded Sfind=========
========1000 threads version) By MaXxX ========

192.168.0.3 Port:21 listening
Please wait 5 Thread end.....
192.168.0.4 Port:21 listening
6 Host search complete. Find 2 port(s)!
usernamehere.~$

Well I guess this qualifies as working right?
Looks like quite a nifty little tool, it sure has it uses.
Well knock yourself out with wine, it appears to be working perfectly here.

cornstalk

Mar 2 2004, 05:11 PM

Yep, seems to work right. I tried it with my NetBSD box, it doesnt work here.. but with my gentoo box, it works perfectly

-Anders

Mar 2 2004, 05:22 PM

QUOTE (cornstalk @ Mar 2 2004, 06:11 PM)

Yep, seems to work right. I tried it with my NetBSD box, it doesnt work here.. but with my gentoo box, it works perfectly

I wish I had a spare box, so I could try out NetBSD, It seems very interesting, everyone says I should go for FreeBSD, but for one reason or another, it just dosen't appeal to me..
Does anyone know somewhere I could get a shell on a NetBSD box, rather cheap?

Ehm, but yeah - On topic, I'm running gentoo aswell, and it just sails here.
I'm not going to try it on my laptop (Running slackware 9.1), I don't have enough harddrive space to install it, hehe.
I can post my wine config here if anyone needs it to get it running.

prog

Mar 3 2004, 08:52 AM

I would have to give nmap props on being a very good a versitile scanner for the nix os

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.