February 8th, 2008 09:53 PM
As I pointed out on your main blog, the real fault here was in your CPU's TSC (a common problem on systems with power management like laptops). If you had used -d2 (GTOD timer) instead, you would have had 0 missed ports, and scan times that matched the default pps of 300. Instead your results showed non-deterministic scan times and missed ports. The fact that you went on and published the results as such without doing any fact finding to understand the tool shows that you completely lacked any knowledge of the tool.
Originally Posted by HTRegz
If you haven't seen it yet, go out and rent Buffalo '66:
[Trying to start Layla's car]
Billy Brown: Is this a shifter car? I cannot drive a shifter car, alright, so we got a little situation here. I can't drive these kinda cars! What the **** is goin' on! You think that's funny? Would you like to know, smartass? Would you like to know why I can't drive this kinda car? I'll tell you why, I'm used to *luxury* cars. Have you ever heard of a luxury car? You know what luxury means? Ever heard of Cadillac, Cadillac Eldorado? That's what I drive. I drive cars that *shift* themselves.
I figured you were well intentioned and wanted help from the various projects. Now I'm just confused by your close minded nature. As I've said before, if you use the options I did on a similar network, you will find the same results. One can't say the same about your "test".
When I started this challenge, I wasn't sure what the outcome would be... the only prediction I had was that unicornscan would be defeated by both PortBunny and nmap. This proved to be true...
February 8th, 2008 10:53 PM
Forgetting about the rest of it... and just looking at this.. You're right.. you did tell me to use -d2, and I did redo the tests with -d2... it didn't provide any additional assistance, the results were no better and in one case the results were worse... I didn't post the results since they didn't benefit unicornscan in anyway.
Originally Posted by jeneral
IT Blog: .:Computer Defense:.
(Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".
February 11th, 2008 08:49 PM
Personally I think the 'tests' where fundamentally flawed from the outset due to your lack of knowledge of when to employ the two very different scanners and how to use unicornscan competently.
I have been testing both Nmap and unicornscan for the past few weeks in work after noticing anomaly's in Nmaps' results, which is why I took an interest in your 'tests'.
I aim to post the results of these tests, ran on a variety of different networks and through some IDS's/IPS's (mainly snort) within the next 10 days or so, after making the results available to both authors if they so wish me to.
By ThePreacher in forum Miscellaneous Security Discussions
Last Post: December 14th, 2006, 08:37 PM
By Jubei_Yagyu_14 in forum Newbie Security Questions
Last Post: February 19th, 2004, 07:42 PM
By hatebreed2000 in forum AntiOnline's General Chit Chat
Last Post: March 14th, 2003, 05:36 AM
By LordChaos in forum Firewall & Honeypot Discussions
Last Post: October 4th, 2002, 11:58 AM
By Badassatchu in forum Other Tutorials Forum
Last Post: March 23rd, 2002, 02:18 AM