GSoC/GCI Archive
Google Summer of Code 2013

Nmap Security Scanner

Web Page: http://nmap.org/soc/

Mailing List: http://seclists.org/nmap-dev/

Nmap ("Network Mapper") is a free and open source utility for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. It was designed to rapidly scan large networks, but works fine against single hosts. Nmap runs on all major computer operating systems, and official binary packages are available for Linux, Windows, and Mac OS X. In addition to the classic command-line Nmap executable, the Nmap suite includes an advanced GUI and results viewer (Zenmap), a flexible data transfer, redirection, and debugging tool (Ncat), a utility for comparing scan results (Ndiff), and a packet generation and response analysis tool (Nping).

Projects

  • Bringing Lua to ncat. The proposal is about adding the support for Lua programming language scripting for ncat network tool. I have done some "proof of concept" efforts which can be seen here: https://github.com/d33tah/nmap/compare/3550b77f8e0bbe2210f6204a592f624dce840eca...master A PDF version of the proposal can be found here: http://kolos.math.uni.lodz.pl/~d33tah/gsoc-nmap.pdf
  • Improve WinPcap library for Nmap This proposal is about improving the WinPcap library currently used by Nmap with some new features, including support for the new NDIS 6 API, privileges support, No-install DLL support and so on.
  • Nmap Scripting Engine - Web scanning specialist Extending Nmap's web scanning capabilities in order to perform even better security testing and analysis of web applications.