maemo.org - Talk - The Nmap Thread

maemo.org - Talk (https://talk.maemo.org/index.php)

- Applications (https://talk.maemo.org/forumdisplay.php?f=41)

- - The Nmap Thread (https://talk.maemo.org/showthread.php?t=48673)

Re: The Nmap Thread

Quote:

Originally Posted by tuxsavvy (Post 1090807)

*technical bump* for users with nmap 5.59beta1 installed (from extras-devel repository), the issue is with nmap itself. I have kernel-power48, mp-fremantle-community-pr=20.2010.36-2maemo16.8, busybox-power=1.19.2power1 installed.

When I ran nmap=5.59beta1 with exactly the same configuration above. I got:

Code:

Nokia-N900:~# nmap -sS xxx.xxx.xxx.xxx



Starting Nmap 5.59BETA1 ( http://nmap.org ) at 2011-09-18 13:35 EST

route_dst_netlink: can't find interface "wlan0"

I ran the `nmap --iflist' command:

Code:

Nokia-N900:~# nmap --iflist



Starting Nmap 5.59BETA1 ( http://nmap.org ) at 2011-09-18 13:38 EST

INTERFACES: NONE FOUND(!)

ROUTES: NONE FOUND(!)

So I decided to downgrade nmap 5.59beta1 back to 5.50 as it worked in the case of casketizer's post:

Code:

Nokia-N900:~# apt-get install nmap=5.50-2

Reading package lists... Done

Building dependency tree       

Reading state information... Done

The following packages were automatically installed and are no longer required:

  supertux-data-stable

Use 'apt-get autoremove' to remove them.

The following packages will be DOWNGRADED:

  nmap

0 upgraded, 0 newly installed, 1 downgraded, 0 to remove and 35 not upgraded.

Need to get 0B/3469kB of archives.

After this operation, 1454kB disk space will be freed.

Do you want to continue [Y/n]? 

dpkg - warning: downgrading nmap from 5.59BETA1 to 5.50-2.

(Reading database ... 70405 files and directories currently installed.)

Preparing to replace nmap 5.59BETA1 (using .../nmap_5.50-2_armel.deb) ...

Unpacking replacement nmap ...

Processing triggers for catoriseplus ...

###########################################################################################################################################################################################################################################################

No changes to hildon menu.

Setting up nmap (5.50-2) ...

Now when I test nmap again, this time running 5.50-2 and it works:

Code:

Nokia-N900:~# nmap -sS -vv xxx.xxx.xxx.xxx



Starting Nmap 5.50 ( http://nmap.org ) at 2011-09-18 13:50 EST

Initiating ARP Ping Scan at 13:50

Scanning xxx.xxx.xxx.xxx [1 port]

Completed ARP Ping Scan at 13:50, 0.04s elapsed (1 total hosts)

Initiating Parallel DNS resolution of 1 host. at 13:50

Completed Parallel DNS resolution of 1 host. at 13:50, 0.17s elapsed

Initiating SYN Stealth Scan at 13:50

Scanning xxx.xxx.xxx.xxx [1000 ports]

Discovered open port 53/tcp on xxx.xxx.xxx.xxx

Discovered open port 23/tcp on xxx.xxx.xxx.xxx

Discovered open port 80/tcp on xxx.xxx.xxx.xxx

Discovered open port 5431/tcp on xxx.xxx.xxx.xxx



Nokia-N900:~#

Downgrading worked well for me

Re: The Nmap Thread

Nathan
(terminal3, author of 5.59beta1 port) is MIA (last seen in april) - meantime, upstream nmap6 got released, and bugfixed already.

Maybe someone skilled enough, could compile and package it for Maemo (with chance, that "root bug" won't be still present)? Pretty please?

/Estel

Re: The Nmap Thread

I made a new version of nmap - 6.25.
It's fully working, also with zenmap and other goodies.
Package is optified. After the migration finish, when garage.maemo will be available I'll upload it to the repo.

Re: The Nmap Thread

Spoofy, can you upload the deb in the meantime?

Re: The Nmap Thread

Ugh. I would like to wait and upload it into repository or wait until PPP (the polishpwniephone image) release.

Re: The Nmap Thread

Will all programms found in PPP be uploaded in the repository too? I mean we already have dozens of tools in the repositories but updated tools in repositories are much more prefered than 1 big image packed with all tools. It gives freedom of choice. Ofcourse not all programs can be uploaded, I guess. Metasploit is a bit hard in the repos but updated Nmap, aircrack-ng and ettercap are great examples of tools which easily can go into the repositories (and some of the already are).
Is hamster and ferret for example included in PPP? While it's maybe to be included in PPP only, it would be even better if these tools are in the repositories, given that they work....

Where can I find some info about PPP and about included tools ?

Re: The Nmap Thread

First of all - Sorry for my english - It's not my primary language :)

We don't know already how the PPP will be released. In fact all of tools that can be "debd" will be available with sources, but for the moment we prefer to focus on updating (and MAKING) as much as we can. Yesterday I spoke with Doc on irc and there is such a possibility that all .debs will not be uploaded into maemo.org repo but on our own repo. Metasploit will NOT be available on .deb package but all of updated dependencies (We found out the solution to run newest metasploit updated via subversion, fully functionall - loaded less then 3 minutes and not freezing whole system). However all of info about PPP and our work will be available on www.meegoforum.pl or (when we finish our project and website) on other subpage like www.meegoforum.pl/PolishPwniePhone/ .

Ugh. I think we start an offtopic about pentesting tools here :P

All maemo users are one big family and we should stick together and share our work, but IMO we focus too much on newer "core" of maemo (like new release of CSSU) and forget about the functionality.
The n900 is still the best phone to do some real-life "hacky" things.

However, I'll upload the nmap package soon and give you an url ;)

Edit:
Description:
nmap - Command line open-source network and security scanning tool

Format: 1.0
Source: nmap
Version: 6.25-1
Binary: nmap
Maintainer: Sp00Fy <spoofy@os.pl>
Architecture: any
Standards-Version: 3.7.2
Build-Depends: debhelper (>= 5), autotools-dev, openssl, libssl-dev, libssl0.9.8, bluez, python, python-central [some python-gtk for zenmap :) ]

DOWNLOAD

Re: The Nmap Thread

First of all your english is fine to me ;) English isn't my first language either but as long as we can comprehend eachother, we are fine :)

About the polish part, I really hope it's targeted at the whole maemo community and that all tools + documentation will be in english. (I can volunteer to help on this matter.) Just that the polish part of PPP is because the authors are polish. Anyway good luck, you are doing a great job!

An new repostory for all tools sound awesome to me. With enabling of one repository on your N900 you could turn your N900 to pwnie phone yourself and skip the tools you don't need or want. I have quite a few pentesting programs on my N900 and I like the idea of the image but I never bothered to install the full image. If you know what I mean ;) Sure there are some things that won't fit easy in a repository so it will be better in tarball or indeed, a image.
My wish would be that everything could be installable by using 3 tools: apt(dpkg), wget and tar

Re: The Nmap Thread

I just wonder, have it got anywhere? Migration ended long time ago, and I haven't noticed new nmap in repos (correct me if I'm wrong, just stumbled accidentaly into this thread, again.

Thanks for efforts, no matter what.

/Estel

Re: The Nmap Thread

Quote:

Originally Posted by Estel (Post 1356663)

For the past half year, the work took me all the free time.
I think I'll take care of the PPP right now ;)