Hi Jack - On Tue, 2 Jul 2002, Yaakov Bezalel wrote:
> I may have missed this one, but seems there is no way to scan a network > based on IP range, just names or DNS Zone transfer. Can we have network > scan as well (1.1.1.0 for example) ? I added a small chunk of code to Nessus about a year ago that allows both of these, in addition to standard CIDR-style network specifications (e.g. 192.168.0.0/16). As is my nature, I didn't get round to contributing any documentation for the feature! ;-] Things you can do:- 192.168.1.1-255 (scan from 192.168.1.1 to 192.168.1.255 inclusive) 192.168.1-255.1-254 (scan from 192.168.1.1 to 192.168.255.254, excluding broadcast addresses (assuming /24), but including addresses such as 192.168.37.54) 192.168.1-255.1 (scan all hosts with final octet==1 - useful if you have a well-structured network and all your routers, DNS servers or whatever are always numbered .1) Ranges can be specified for any or all octets. Hopefully that's sufficiently lucid. ;-) Renaud, where would be a good place for me to document this? Hugo, perhaps you'd like to add this to the FAQ? > Thanks, > Jack. Best Regards, Alex. -- Alex Butcher Brainbench MVP for Internet Security: www.brainbench.com Berkshire, UK Need reliable and secure network systems? PGP/GnuPG ID:0x271fd950 <http://www.assursys.com/>
