Nmap 7.95, a network security scanner designed to perform network audits and detect active network services, has been released. The project code is delivered under the NPSL (Nmap Public Source License), based on the GPLv2 license, which is supplemented with recommendations (not requirements) for using the OEM licensing program and purchasing a commercial license if the manufacturer does not want to open the code of its product in accordance with the copyleft license requirements or intends to integrate Nmap into products that are incompatible with the GPL.
The terms of the NPSL license apply only to parties who have accepted the license in exchange for obtaining special rights, such as the right to redistribute Nmap. At the same time, the participating party can do whatever it needs to do in accordance with copyright provisions, such as fair use, and Nmap developers will not attempt to establish control over their work.
Major changes:
• More than 2,500 app and service version IDs have been added, and the total ID database size has reached 1,089 entries. The number of defined protocols increased from 1,237 to 1,246. Added support for grpc, mysqlx, essnet, remotemouse, and tuya protocols.
• Added 336 operating system IDs. The total number of detected OS versions has been increased to 6036. iOS 15 and 16, macOS 12 and 13, Linux kernel 6.1, OpenBSD 7.1, and lwIP 2.2 versions are detected.
• It includes 4 new NSE scripts for automating various actions with Nmap. The new scripts are prepared by the DINA community and are aimed at sending requests to various industrial controllers:
about hartip-info-request information using the Highway Addressable Remote Transducer protocol.
about iec61850-mms-Sending Manufacturing Message Specification requests.
about multicast-profinet-discovery-sending multicast messages "PROFINET DCP Identify All" and displaying a response.
about profinet-cm-lookup-sending requests to DCERPC handlers via the PNIO-CM service.
* Versions of Lua 5.4.6, libpcre2 10.43, zlib 1.3.1, libssh2 1.11.0 and liblinear 2.47 have been updated in ready-made builds.
* When creating packages with Zenmap and Ndiff, the setuptools utilities are used instead of distutils.
* Improved the signature mapping code for defining operating systems, and changed the nmap-os-db syntax to support ranges in strings with TCP options.
* Improved the operating system detection engine, which now changes the source network port number every time you try again.
* The port scanning engine uses some optimizations based on profiling results.
The terms of the NPSL license apply only to parties who have accepted the license in exchange for obtaining special rights, such as the right to redistribute Nmap. At the same time, the participating party can do whatever it needs to do in accordance with copyright provisions, such as fair use, and Nmap developers will not attempt to establish control over their work.
Major changes:
• More than 2,500 app and service version IDs have been added, and the total ID database size has reached 1,089 entries. The number of defined protocols increased from 1,237 to 1,246. Added support for grpc, mysqlx, essnet, remotemouse, and tuya protocols.
• Added 336 operating system IDs. The total number of detected OS versions has been increased to 6036. iOS 15 and 16, macOS 12 and 13, Linux kernel 6.1, OpenBSD 7.1, and lwIP 2.2 versions are detected.
• It includes 4 new NSE scripts for automating various actions with Nmap. The new scripts are prepared by the DINA community and are aimed at sending requests to various industrial controllers:
about hartip-info-request information using the Highway Addressable Remote Transducer protocol.
about iec61850-mms-Sending Manufacturing Message Specification requests.
about multicast-profinet-discovery-sending multicast messages "PROFINET DCP Identify All" and displaying a response.
about profinet-cm-lookup-sending requests to DCERPC handlers via the PNIO-CM service.
* Versions of Lua 5.4.6, libpcre2 10.43, zlib 1.3.1, libssh2 1.11.0 and liblinear 2.47 have been updated in ready-made builds.
* When creating packages with Zenmap and Ndiff, the setuptools utilities are used instead of distutils.
* Improved the signature mapping code for defining operating systems, and changed the nmap-os-db syntax to support ranges in strings with TCP options.
* Improved the operating system detection engine, which now changes the source network port number every time you try again.
* The port scanning engine uses some optimizations based on profiling results.
