nmap 7.40

Nmap ("Network Mapper") is a network utility for service discovery, monitoring and security auditing. Nmap utilizes raw IP packets for host discovery, port scanning, OS fingerprinting, firewall probing, and generating various statistics. It permits inspecting large network ranges but also works for single server checks. It's cross-platform compatible and also provides a X11 reporting GUI with Zenmap, and Ncat for data transfer and debugging, Ndiff for result comparison, and Nping for response analysis.

Tags c network-scanner nmap monitoring networking
License GNU GPL
State stable

Recent Releases

7.4021 Dec 2016 11:45 major feature: o Windows Updated the bundled Npcap from 0.10r9 to 0.78r5, with an Improved installer experience, driver signing updates to work with Windows 10 build 1607, and for WiFi connectivity. Problems. Yang Luo, Daniel Miller o Integrated all of your IPv4 OS fingerprint submissions from April to September (568 of them). Added 149 fingerprints, bringing the new total to 5,336. Additions include Linux 4.6, macOS 10.12 Sierra, NetBSD 7.0, and more. Highlights: http://seclists.org/nmap-dev/2016/q4/110 Daniel Miller . o Integrated all of your service/version detection fingerprints submitted from April to September (779 of them). The signature count went up 3.1 to 11,095. We now detect 1161 protocols, from airserv-ng, domaintime, and mep to. Nutcracker, rhpp, and usher. Highlights: http://seclists.org/nmap-dev/2016/q4/115 Daniel Miller . o reverse DNS on Windows which was failing with the message "mass_dns: Warning: Unable to determine any DNS servers." This was because the interface GUID comparison needed to be case-insensitive. Robert Croteau . o NSE Added 12 NSE scripts from 4 authors, bringing the total up to 552! They are all listed at https://nmap.org/nsedoc/, and the summaries are below: Cics-enum enumerates CICS transaction IDs, mapping to screens in TN3270. Services. Soldier of Fortran Cics-user-enum brute-forces usernames for CICS users on TN3270 services. Soldier of Fortran . Fingerprint-strings will print the ASCII strings it finds in the service. Fingerprints that Nmap shows for unidentified services. Daniel Miller + GH#606 ip-geolocation-map-bing renders IP geolocation data as an image. Via Bing Maps API. Mak Kolybabi + GH#606 ip-geolocation-map-google renders IP geolocation data as an image. Via Google Maps API. Mak Kolybabi + GH#606 ip-geolocation-map-kml records IP geolocation data in a KML file. For import into other mapping software Mak Kolybabi Nje-pass-brute brute-forces the password to a NJE node, given a valid
7.3122 Oct 2016 21:45 minor bugfix: o Windows Updated the bundled Npcap from 0.10r2 to 0.10r9, bringing Increased stability,, and raw 802.11 WiFi capture. Further details on these changes can be found at Https://github.com/nmap/npcap/releases. Yang Luo o the way Nmap handles scanning names that resolve to the same IP. Due to. Changes in 7.30, the IP was only being scanned once, with bogus results Displayed for the other names. The previous behavior is now restored. Tudor Emil Coman . o Nping GH#559 Nping's ability to use Npcap on Windows. A privilege. Check was performed too late, so the Npcap loading code assumed the user had no Rights. Yang Luo, Daniel Miller o GH#350 an assertion failure due to floating point error in equality. Comparison, which triggered mainly on OpenBSD: Assertion "diff
7.3001 Oct 2016 06:25 minor feature: o Integrated all 12 of your IPv6 OS fingerprint submissions from June to September. No new groups, but several classifications were strengthened. Especially Windows localhost and OS X. Daniel Miller o NSE Added 7 NSE scripts, from 3 authors, bringing the total up to 541! They are all listed at https://nmap.org/nsedoc/, and the summaries are below. (authors are listed in brackets): + GH#369 coap-resources grabs the list of available resources from CoAP. Endpoints. Mak Kolybabi Fox-info retrieves detailed version and configuration info from Tridium Niagara Fox services. Stephen Hilt . Ipmi-brute performs authentication brute-forcing on IPMI services. Claudiu Perta . Ipmi-cipher-zero checks IPMI services for Cipher Zero support, which allows. Connection without a password. Claudiu Perta Ipmi-version retrieves protocol version and authentication options from ASF-RMCP (IPMI) services. Claudiu Perta . + GH#352 mqtt-subscribe connects to a MQTT broker, subscribes to topics. And lists the messages received. Mak Kolybabi Pcworx-info retrieves PLC model, firmware version, and date from Phoenix Contact PLCs. Stephen Hilt . o Upgraded Npcap, our new Windows packet capturing driver/library. From version to 0.09 to 0.10r2. This includes many, with a Particular on emphasis on concurrency discovered by running Hundreds of Nmap instances at a time. More details are available From https://github.com/nmap/npcap/releases. Yang Luo, Daniel Miller, Fyodor . o New service probes and match lines for DTLS, IPMI-RMCP, MQTT, PCWorx, ProConOS, and Tridium Fox, Stephen Hilt, Mak Kolybabi, Daniel Miller . o Improved some output filtering to remove or escape carriage returns (' r'). That could allow output spoofing by overwriting portions of the screen. reported by Adam Rutherford. Daniel Miller o NSE a few bad Lua patterns that could result in denial of service due to excessive backtracking. Adam Rutherford, Daniel Miller . o a discrepancy betw
7.1204 Apr 2016 03:15 minor feature: o Zenmap Avoid file corruption in zenmap.conf, reported as files containing Many null (" x00") characters. Example exceptions: TypeError: int() argument must be a string or a number, not 'list' ValueError: unable to parse colour specification. o NSE VNC updates including vnc-brute support for TLS security type and. Negotiating a lower RFB version if the server sends an unknown higher Version. Daniel Miller o NSE Added STARTTLS support for VNC, NNTP, and LMTP Daniel Miller . o Added new service probes and match lines for OpenVPN on UDP and TCP.
7.1019 Mar 2016 03:15 minor feature: o NSE Added 12 NSE scripts from 7 authors, bringing the total up to 527! They are all listed at https://nmap.org/nsedoc/, and the summaries are below. (authors are listed in brackets): + GH#322 http-apache-server-status parses the server status page of Apache's mod_status. Eric Gershman . Http-vuln-cve2013-6786 detects a XSS and URL redirection vulnerability in Allegro RomPager web server. Also added a fingerprint for detecting CVE-2014-4019 to http-fingerprints.lua. Vlatko Kosturjak . + GH#226 http-vuln-cve2014-3704 detects and exploits the "Drupalgeddon". Pre-auth SQL Injection vulnerability in Drupal. Mariusz Ziulek Imap-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled IMAP services. Justin Cacak . Ipv6-multicast-mld-list discovers IPv6 multicast listeners with MLD probes. The discovery is the same as targets-ipv6-multicast-mld, but the subscribed. Addresses are decoded and listed. Alexandru Geana, Daniel Miller + ms-sql-ntlm-info extracts OS version and sometimes hostname from MS SQL Server instances via the NTLM challenge message. Justin Cacak . Nntp-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled NNTP services. Justin Cacak . Pop3-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled POP3 services. Justin Cacak . Rusers retrieves information about logged-on users from the rusersd RPC. Service. Daniel Miller + GH#333 shodan-api queries the Shodan API (https://www.shodan.io) and. Retrieves open port and service info from their Internet-wide scan data. Glenn Wilkinson . Smtp-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled SMTP and submission services. Justin Cacak . Telnet-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled Telnet services. Justin Cacak . o Updated the OpenSSL shipped with our binary builds (Windows, OS X, and Linux RPM) to 1.0.2g with SSLv2 enabled. o Integrated all
6.4724 Aug 2014 21:22 major bugfix: More IPv4 OS fingerprints incorporated, upgraded OpenSSL to version 1.0.1i, Python to 2.7.8, removed external XML entities. Nmap fixes for installation on Windows, ndiff.bat wrapper fixed. Zenmap .dmg installed fixed. Ncat SOCKS5 auth adapted. Avoid formatting NULL as " s" when running nmap --iflist. Avoid crashes with old PyXML packages. Fix for handling of ICMP admin-prohibited messages Bugfix for HTTP HEAD requests with redirects. Gtk crash in Zenmaps DiffViewer fixed.