Security

Reply
MVP Expert

Anyone using NMAP in anger as part of a CPPM Service definition?

Just defined a generic NMAP service in CPPM 6.8.1 and added it to our (dev) eduroam, wired dot1x wired macauth services.

 

NMAP set up using defautls, port scan and detect operating system

 

So, for a macauth of a Windows VM  that cppm fingerprint says is a win 10  system, nmap audit sayts its "Microsoft Windows Server 2008 SP1 or Windows Server 2008 R2"

 

Another system that the fingerprint says is :"Windows" NMAP thinks is XP SP2, whoichI doubt 

 

As a 1st stab at using NMAP, doesn't instill a lot of confidence 

Pointing it at my macOS desktop ( 10.14.x) it says 

 

Avenda:Audit:Audit-StatusAUDIT_SUCCESS
Avenda:Audit:Device-Typeproxy server
Avenda:Audit:Network-Appsssh, kerberos-sec, apple-xsrvr-admin,
Avenda:Audit:Open-Ports22, 88, 625,
Avenda:Audit:OS-InfoBlue Coat proxy server (SGOS 6.3.2.201)
Avenda:Audit:Output-Msgs

 

Appreciate theres gonig to be . a bit of a learning curve here , but initial glance says ... why would I use this ?

 

A

Guru Elite

Re: Anyone using NMAP in anger as part of a CPPM Service definition?

The NMAP and NESSUS plugins are deprecated and should not be used.

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
MVP Expert

Re: Anyone using NMAP in anger as part of a CPPM Service definition?

But they are there and there's nothing to say you shouldn't use them ... and I can;t see anything in the release notes to say its depreciate ... but I might have missed it

 

Was just trying to see why we have a whole batch of mac addresses with Device name="Windows"  and not "Windoews 7" or 8 or 10  or whatever

 

 

 

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: