|
|
|
|
| |
Credit:
The program was created by: HD Moore.
NLog can be downloaded from:
http://nlog.ings.com/nlog-latest.tgz.
|
| |
NLog is a set of PERL scripts for managing and analyzing nmap 2.x log files. It allows you to keep all of your scan logs in a single database making it possible to easily search for specific entries. The CGI interface used for viewing the scan logs is completely customizable and easy to modify and improve. The core CGI script allows you to add your own extension scripts for different services, so all hosts running a certain service will have a hyperlink to the extension script.
Basically this is a multi-purpose web based nmap log browser. The extension scripts allow you to get detailed information about specific services like NetBios, the RPC services, the finger service, and BIND version of a DNS server. It is extremely easy to create your own extensions for things like a snmpwalk wrapper, a popper vulnerability check, etc.
NLog provides a standard database format to enable you to build your own scripts for any purpose. Whether to provide a graphical representation of a network or as a web based service gateway to an internal network. Included are the example CGI scripts, the nmap log to database conversion tool, a sample template for building your own PERL scripts and a couple of extra scripts for dumping IP's from a domain.
A possible use of nlog is for a network administrator who scans his local network regularly, to make sure none of the machines are listening on weird ports and that they all are running the services they should be. A cron script could scan the internal network, convert the log files to the database format and store them on a web server by time or date. The administrator could then load the nlog search form page (preferably protected by the normal http authentication methods) and run comparisons between databases collected on different dates or at different times from anywhere.
If the web server is on a gateway machine, it could be configured to run RPC or finger daemon thus removing the need to be on the actual network (which might be behind a firewall or masquerading application) in order to check a hosts status.
This code is being released under no type of copyright, enabling anyone to modify and improve the code, the only thing the author asks for is that his name will be mentioned in the source code.
|
|
|
| Subject:
|
ings.com not valid |
Date: |
7 Mar. 2008 |
| From: |
nips |
| ings.com is a click through site now. |
|
|
|
|
|
|
