Does anyone know of a good set of scripts to act as a frontend for nmap to scan and monitor my ho...

[G+_Drew Moseley]

Does anyone know of a good set of scripts to act as a frontend for nmap to scan and monitor my home network? I've used nessus in the past and I realize they have a free home-use version but it seems like all of the functionality is there in nmap if there was a decent set of wrapper scripts somewhere.

[G+_Eddie Foy]

what exactly do you want to scan for?

There is a TON of scripts in the /nse folder.

 

Zenmap is a nice front end for nmap (and should be bundled with nmap).  Comes with a few profiles already loaded.  And you can build all the ones you want to your heart's content. (pulling form the /nse folder too)

 

OpenVAS has found more stuff then Nessus free did for me, but was noticeably slower.

[G+_Travis Hershberger]

You mean something like....

 

#!/bin/bash

nmap -sP -n xxx.xxx.xxx.xxx >> /home/user/nmapscan%d%t.txt

 

mark that as executable and add it to a cron job.  Then if you want to check for changes just do a diff or xdiff on two of the files.  Depending on exactly what you want to do adding more to the script should be easy.

[G+_Eddie Foy]

Travis Hershberger   need that '  -0 s|

 

If not run as a cron job, i'd replace the IP for a $1 then you can pass it as an argument to the script (do a single or range.)  Add a $2 for the output file.

 

On Zenmap, I like the quickscn Plus  gives OS version (guesses) service versions and such.

[G+_Drew Moseley]

Thanks for the suggestions. I had not heard of OpenVAS so I'll definitely take a look at that. I think the suggestion by Travis Hershberger is more in-line with what I'm thinking but I'm not opposed to a more full featured vulnerability scanner as well.

 

I was unaware of NSE. I'll look into that as well.