Show 96 – Hack the Hackers: Fyodor On Nmap & The Security Industry


Michele Chubirka (our very own Mrs. Y), Greg Ferro, and Ethan Banks gather *in person* with very special guest Gordon “Fyodor” Lyon. Fyodor is the author of Nmap, for many years the tool of choice to perform network scanning. The four of us chat about Nmap, being a security practitioner, and goings-on in the security business.

What We Discuss

  • Nmap’s 15th birthday.
  • The new version of Nmap 5.61 test 5 soon to be released.
  • What does Nmap do?
  • Host detection.
  • OS detection using heuristics and fingerprinting.
  • What’s Zenmap?
  • NSE, the Nmap scripting engine.
  • Is it a good or bad thing that other folks bundle Nmap with their products?
  • Nmap’s dual licensing scheme (open source vs. commercial entities).
  • Who’s working on Nmap these days?
  • What language do you have to know to use NSE?
  • What are the new features we’ll see in the upcoming version of Nmap?
  • The trouble with scanning IPv6 address ranges.
  • Why is there a perception that IPv6 is less secure than IPv4?
  • IPv5 trivia.
  • Why have we had so many big security breaches lately?
  • Is there a disconnect between application developers and IT practitioners?
  • Greg’s pet theory of active security and passive security.
  • Did you know that Nmap has an tool called Ndiff that will show you variances in scan results from one day to the next?
  • Evading the notice of intrusion detection devices & firewalls.
  • Does it make sense to patrol outside of the perimeter (i.e. an IDS outside the firewall)?
  • The challenge of sorting through huge amounts of log data.
  • Just how do we protect our intellectual property from hackers with abilities like Fyodor’s?
  • Are honeypots useful?
  • How well are OS vendors patching themselves, and how much is it helping?
  • Why do we keep working around our own security tools?

Links

Sponsors

NEC ProgrammableFlow

OpenGear – This week’s show was sponsored in part by Opengear, experts in out-of-band management.  Visit www.opengear.com to learn about secure, next generation management appliances that provide lights out access to network equipment even when the primary link is down.  Tell them you heard of their solutions from Packet Pushers for a free t-shirt.

Leave a Reply

Your email address will not be published. Required fields are marked *