http://blog.clearnetsec.com/articles/2006/02/03/quick-list-of-cool-new-things-in-nmap-4-00 en-us 40 <p>I'm catching up on the new features in <a href="http://www.insecure.org/nmap/download.html">Nmap 4.00</a> from this <a href="http://www.securityfocus.com/columnists/384">Security Focus interview with Fyodor</a>. Some good things to remember:</p> <ul> <li>press <em>[enter]</em> anytime to get an estimate of when nmap will finish</li> <li>press 'v' anytime to enable verbose mode / press 'V' anytime to disable verbose mode</li> <li>there are now 3,153 signatures to detect an application or service (and possibly version) of a listening port</li> <li>there is a new <em>--version-intensity </em>option which specifies how hard nmap will interrogate a listening port<img src="http://www.clearnetsec.com/roller/resources/cns/Insecurelogo-eye-90x168.gif" alt="nmap" align="right" /></li> <li>new <em>--badsum</em> option which tells nmap to use invalid TCP or UDP checksums (can give you more information about a FW/IPS) <ul> <li>Here is the <a href="http://www.phrack.org/show.php?p=60&amp;a=12">link to Phrack #60</a> which gives the why and how of this new feature (written by <a href="http://www.antifork.org/">Ed3f</a>) </li> </ul> </li> <li>much faster (although this depends on things like bandwidth, latency, and which command line options you specified) </li> <li>better OS detection (uses more tests to gain accuracy) </li> </ul> <p>Here is a <a href="http://www.insecure.org/nmap/data/nmap.usage.txt">link to the official quick list of options for Nmap 4.00</a> </p> <p> Fri, 03 Feb 2006 11:57:00 -0700 urn:uuid:6e3d6965-3fed-4790-b364-9e7f60ab748b tate@ClearNetSec.com (Tate Hansen) http://blog.clearnetsec.com/articles/2006/02/03/quick-list-of-cool-new-things-in-nmap-4-00 nmap