RE: Tools for pen test,

From: Stephen McNaught (smcnaugh@comcast.net)
Date: Sat Aug 04 2007 - 18:57:03 EDT

A couple other examples:

for I in `seq 1 255`
  do ip="$1.$I"
      echo $ip
      e=`ping -c 1 $ip | grep "64 bytes"`
       if [[ X$e != X ]]
         then
           echo $e >> /tmp/$ip.output
           nslookup $ip >> /tmp/$ip.output
           traceroute $ip >> /tmp/$ip.output
       fi
 done

while read ip
 do echo $ip
    e=`ping -c 1 $ip | grep "64 bytes"`
       if [[ X$e != X ]]
         then
           echo $e >> /tmp/$ip.output
           nslookup $ip >> /tmp/$ip.output
           traceroute $ip >> /tmp/$ip.output
       fi
 done < /tmp/testis

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of IRM
Sent: Friday, August 03, 2007 11:43 PM
To: pen-test@securityfocus.com
Subject: Tools for pen test,

For the sake of completeness, every time I perform a penetration testing I
need to PING, NSLOOUKUP, TRACERT, etc. The problem is that tools like PING
only can accept single IP Address so every time I do a penetration testing
for multiple IPs, I need to execute the ping command manually and save all
the corresponding evidence. I knew tools like NMAP can perform ping for
multiple IP addresses with single command but I still wanted to use legacy
*Nix tools like ping, nslookup, etc.

I was wondering has anyone in here had a shell script that can execute tools
like ping, nslookup and pipe it into a file? Or knew a shell script that can
do this kind of job?

To give you an illustration, the shell script that I am looking for should
can perform this kind of job.

>Program 192.168.0.1-20 -> will ping (using *nix ping command from host ID
192.168.0.1 - 192.168.0.20 and save all the output into a file

Cheers,
John

 

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:59 EDT