Nmap Hackers of the world Unite!


A few days ago Fyodor of Nmap fame (yes, that Fyodor) posted to the nmap-hackers mailing list that he was making nmap 4.20 ALPHA 9 available for download on the Nmap download page.

So, why is this important?

In the new 4.20 version Fyodor and Zhao Lei have completely re-written the OS detection engine of Nmap. As a result the new OS detection database only contained 71 OS signatures (at the time of his post), compared to 1684 in the previous version. He’s asking for our help in submitting new signatures, when you know what the target machine is. He’s also happily accepting corrections when Nmap makes guesses.

Now, we all love and use Nmap, right? Go download the 4.20ALPHA9 and give it a go. This is the perfect opportunity of us to help the project along with new OS detection signatures.

Don’t forget to check out all of the other new features as well, and check out the paper/documentation on how the new OS detection works in Nmap.

Thanks Fyodor!

– Larry

Larry Pesce

Larry’s core specialties include hardware and wireless hacking, architectural review, and traditional pentesting. He also regularly gives talks at DEF CON, ShmooCon, DerbyCon, and various BSides. Larry holds the GAWN, GCISP, GCIH, GCFA, and ITIL certifications, and has been a certified instructor with SANS for 5 years, where he trains the industry in advanced wireless and Industrial Control Systems (ICS) hacking. Larry’s independent research for the show has led to interviews with the New York Times with MythBusters’ Adam Savage, hacking internet-connected marital aids on stage at DEFCON, and having his RFID implant cloned on stage at Shmoocon. Larry is also a Principal Instructor and Course Author for the SANS Institute for SEC617: Wireless Penetration Testing and Ethical Hacking and SEC556: IoT Penetration Testing. When not hard at work, Larry enjoys long walks on the beach weighed down by his ham radio, (DE KB1TNF), and thinking of ways to survive the impending zombie apocalypse.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.