Tuesday, June 22, 2010

Using AMAP to Cross-Check NMAP

So, your NMAP results gives you a good list of open ports, but it is obvious that NMAP has lost its mind, trying to figure out what service you are looking at? Sounds like a good time to fire up AMAP, but there's all these ports to type..

Well, it's a common enough problem for me that I wrote a script. (Which means it has happened at least twice; it doesn't take much to provoke me into automating a problem.)

namap.py

Use it in good health, and much thanks to the devs of both NMAP and AMAP for writing nice, orthogonal tools with bizarre interfaces that require glue scripts like this..

Sunday, June 13, 2010

It's That Time Again..

Wes and I are preparing to send off an ISO for a new version of MalNet in preparation for HitB Amsterdam. Because I am a relentless tease, here is a small screenshot of the new LiveCD:



Still using OpenBox and Conky for the desktop, we've moved to Ubuntu Lucid Lynx for the operating system, and there's a whole load of fun new goodies for malware analysts. Even better, we are also including the source in this one, so put the python decompiler down and back away slowly.