News - Main Page
Whitepapers
Tools and Download
Presentations

related links

summary

Author
: Ian
Tags
: service enumeration Tools

Banner Grab

BannerGrab is a tool that performs connection, trigger-based and basic information collection from network services. The program has two modes of operation; simple connection banner grabbing and the default mode which makes use of service triggers to enumerate additional information.

BannerGrab can connect to TCP services, UDP services and can connect to SSL services. SSL service banner grabbing will also return the SSL connection details.

Requirements

BannerGrab requires the GNU C compiler and has been tested on Linux, but should work on other UNIX type systems. It has even been known to run from an iPhone.

BannerGrab has an optional requirement of the OpenSSL library to perform SSL-based grabs. However, SSL support can be disabled.

Download

BannerGrab can be downloaded from the Source Forge project site at sourceforge.net/projects/bannergrab.

Compiling

BannerGrab includes a Makefile, so it can be built in the usual way:

  • make
  • make install (as root)

However, it can be manually compiled as follows:

gcc -lssl -o bannergrab bannergrab.c

On Mac OS-X systems it can be compiled as follows:

gcc -lssl -lcrypto -o bannergrab bannergrab.c

It can be compiled without OpenSSL support as follows:

gcc -DNOSSL -o bannergrab bannergrab.c

Running

BannerGrab can be run in its simplest form by specifying a host and port as the parameters. For example:

bannergrab 127.0.0.1 80

More advanced options can be shown using the online help with the following command:

bannergrab --help

License

BannerGrab is covered by the GPL v3 license with the following exception:

In addition, as a special exception, the copyright holders give
permission to link the code of portions of this program with the
OpenSSL library under certain conditions as described in each
individual source file, and distribute linked combinations
including the two.
You must obey the GNU General Public License in all respects
for all of the code used other than OpenSSL. If you modify
file(s) with this exception, you may extend this exception to your
version of the file(s), but you are not obligated to do so. If you
do not wish to do so, delete this exception statement from your
version. If you delete this exception statement from all source
files in the program, then also delete it here.

Last Updated : 02/04/2008 12:36:30


Related Applications

  • Apache UsersEnumerate the usernames on any system that uses Apache and the UserDir module.
  • nbtscan-1.5.2NBTscan is a program for scanning IP networks for NetBIOS name information.
  • udp-proto-scannerudp-proto-scanner.pl discovers UDP services by sending triggers to a list of hosts.