Nmap 5.61 TEST2 - IPv6 OS detection Added
The Hacker News
Nmap Added IPv6 OS detection, CPE, 30 more scripts, and more features in latest release Nmap 5.61 TEST2.
Change Log for Nmap 5.61TEST2

  • Added IPv6 OS detection system! The new system utilizes many tests similar to IPv4, and also some IPv6-specific ones that we found to be particularly effective. And it uses a machine learning approach rather than the static classifier we use for IPv4. We hope to move some of the IPv6 innovations back to our IPv4 system if they work out well. The database is still very small, so please submit anyfingerprints that Nmap gives you to the specified URL (as long asyou are certain that you know what the target system isrunning). Usage and results output are basically the same as withIPv4, but we will soon document the internal mechanisms athttps://nmap.org/book/osdetect.html, just as we have for IPv4. For anexample, try "nmap -6 -O scanme.nmap.org". [David, Luis]
  • [NSE] Added 3 scripts, bringing the total to 246! You can learnmore about them at https://nmap.org/nsedoc/. Here they are (authorslisted in brackets):
    • + lltd-discovery uses the Microsoft LLTD protocol to discover hostson a local network. [Gorjan Petrovski]
    • + ssl-google-cert-catalog queries Google's Certificate Catalog forthe SSL certificates retrieved from target hosts. [Vasiliy Kulikov]
    • + quake3-info extracts information from a Quake3-like gameserver. [Toni Ruottu]
  • Improved AIX support for raw scans. This includes some patchesoriginally written by Peter O'Gorman and Florian Schmid. It alsoinvolved various build fixes found necessary on AIX 6.1 and 7.1. Seehttps://nmap.org/book/inst-other-platforms.html. [David]
  • [NSE] Moved our brute force authentication cracking scripts(*-brute) from the "auth" category into a new "brute"category. Nmap's brute force capabilities have grown tremendously!You can see all 32 of them athttps://nmap.org/nsedoc/categories/brute.html. It isn't clearwhether dns-brute should be in the brute category, so for now itisn't. [Fyodor]
  • Made the interface gathering loop work on Linux when an interfaceindex is more than two digits in /proc/sys/if_inet6. Joe McEacherntracked down the problem and provided the fix.
  • [NSE] Fixed a bug in dns.lua: ensure that dns.query() always return two values(status, response) and replaced the workaround in asn-query.nse by the properuse. [Henri]
  • [NSE] Made irc-info.nse handle the case where the MOTD is missing.Patch by Sebastian Dragomir.

Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.