Nmap Development mailing list archives

Re: GSoC 2011: NSE Script Development

From: Gorjan Petrovski <mogi57 () gmail com>
Date: Sun, 10 Apr 2011 05:26:00 +0200

On Thu, Apr 7, 2011 at 12:46 AM, Toni Ruottu <toni.ruottu () iki fi> wrote:

On Wed, Apr 6, 2011 at 9:36 PM, Gorjan Petrovski <mogi57 () gmail com> wrote:

Here is the updated script, it should run good now. Comments are welcome.


Good job! Probably needs some polish, but we can look at that once you
have sent your proposal. Just to mention one thing that caught my
attention.

I think you should be able to do
portrule = shortport.port_or_service (31337, "BackOrifice", "udp")
instead of
portrule = shortport.port_or_service (31337, {"BackOrifice"}, "udp")

You only need to wrap the values in a list if you define multiple values.

Yes, thanks, I skipped that, I was experimenting with multiple
signatures, and the brackets just stayed there. Here's the updated
script. I also updated some of the logic. Now the script doesn't
return output if it doesn't get a decent PING reply.

Good luck with proposal writing!

Thanks! I hope I'm getting in :-)

Any more tips on the GSOC proposal are welcome too. :-)

That's fine if it only runs on the default port. Usually we rely on
version detection to detect services running on non-default ports. We
don't seem to have a match for BackOrifice in nmap-service-probes. So if
you can make a service probe or match line, or a backorifice-version
script, we can solve this problem. But consider it as a separate task
from making backorifice-info work.

David Fifield


A BackOrifice probe first, and then on to write my GSOC proposal.

Cheers,
Gorjan

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Attachment: backorifice-info.nse
Description:

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

Re: BackOrifice service probe, (continued)
- - - Re: BackOrifice service probe Toni Ruottu (Apr 06)
    - Re: BackOrifice service probe Brandon Enright (Apr 06)
    - Re: BackOrifice service probe Toni Ruottu (Apr 06)
    - Re: BackOrifice service probe David Fifield (Apr 06)
    - Re: BackOrifice service probe Toni Ruottu (Apr 06)
    - Re: BackOrifice service probe David Fifield (Apr 18)
    - Re: BackOrifice service probe Gorjan Petrovski (Apr 19)
    - Re: BackOrifice service probe David Fifield (Apr 19)
    - Re: BackOrifice service probe Gorjan Petrovski (Apr 20)
    - Re: GSoC 2011: NSE Script Development Toni Ruottu (Apr 06)
    - Re: GSoC 2011: NSE Script Development Gorjan Petrovski (Apr 09)
    - Re: GSoC 2011: NSE Script Development Gorjan Petrovski (Apr 06)
    - Re: GSoC 2011: NSE Script Development Toni Ruottu (Apr 06)
    - Re: GSoC 2011: NSE Script Development Gorjan Petrovski (Apr 06)