Nmap Development mailing list archives

Re: dns test scripts

From: David Fifield <david () bamsoftware com>
Date: Thu, 20 Dec 2012 18:56:51 -0800

On Thu, Dec 20, 2012 at 02:34:07PM -0800, Brian Milliron wrote:

The scripts dns-random-srcport and dns-random-txid don't appear to do anything.
The example listed in the documentation "nmap -sV
--script=/usr/local/share/nmap/scripts/dns-random-srcport.nse
192.168.0.1"
yields no results other than the standard port scan

Starting Nmap 6.25 ( http://nmap.org ) at 2012-12-19 19:23 EST
Nmap scan report for my-dns-server.com (192.168.0.1)
Host is up (0.012s latency).
Not shown: 993 closed ports
PORT     STATE    SERVICE    VERSION
22/tcp   open     ssh        OpenSSH 5.2 (protocol 2.0)
53/tcp   open     domain     ISC BIND hostmaster
443/tcp  open     ssl/https?
873/tcp  filtered rsync
7911/tcp open     omapi      ISC (BIND|DHCPD) OMAPI
9000/tcp filtered cslistener
9999/tcp filtered abyss
1 service unrecognized despite returning data. If you know the
service/version, please submit the following fingerprint at
http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
SF-Port443-TCP: <undetected http response snipped>

Are script args required?  Is the porttest.dns-oarc.net service down?


You need to do a UDP scan to activate the portrules of those scripts.
Try
        nmap -sU -p53

David Fifield
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

Current thread:

dns test scripts Brian Milliron (Dec 20)
- Re: dns test scripts David Fifield (Dec 20)
  - Re: dns test scripts Brian Milliron (Dec 21)