Hi. I have been reading the forum for some time, but I have a question of my own now. What I am hoping to achieve is an automated network scan that I can send on a USB stick for managers etc to use when they are visiting branch locations. What I would like to have is an application (or a script/application combo).  What this should do is take the IP from the host (local IP on the connected network), us this to determine the local ip/subnet, and then do a scan of the network. The result is the saved on the USB stick for me to look when they get back (or might use an send-mail function). Anybody knows about such a tool, or a tool that can be scripted to do something like that?

I was thinking of Nessus or even Nmap. I might have been a bit unclear in my request I guess. Since the persons who is going to use this are a rather technically challenged the tool/script need to be able to automatically determine the IP/subnet on the host it is running from, and generate an log for this. I will then review this log a a later point to determine if I should investigate the site further.
I could do the scan over the WAN, but my understanding is that a local scan will give me even more information.

What I would like to see is the types of devices on the local LAN (hopefully so that I can discover rough AP's etc). So if it possible top combine it with netstumbler or something similar it would be great. Then a "light" vulnerability scan of the hosts as well. Basically I would like it to do as much as possible while being automatic. I work for a range of stores, and one of my headaches is how to get a good control over a lot of locations geographically spread over a large area.

Thanks. I know about the output options, my main concern is how to automate the process of starting the scans etc without the user having to input the subnet that I need to scan. The persons I want to do this are management people without any technical knowledge, but they happen to visit a lot of our stores, and is such in a good position to physically  do the scan. But I doubt that they will be able to input the necessary info to start the scan unless it done automatically.
A switchblade was mentioned, that might do the trick. does anybody have a good suggestion for one? 

Hey j0rDy!

On the BT4 suggestion, I was thinking the same thing, and ALMOST suggested it, except that, as the original post noted, they want a way to automatically get an IP on the network.  IF DHCP isn't there, and if they're not working in a NAT'd VM or anything, they won't have a way to 'automatically' give BT an address, and any managers he referred to, if less than technical folks, would have a difficult time with it.  You could put a script on there which asked them for an IP, but they'd still have to manually get it from someone.  If they truly want an automated way, they might need to script up some things for a USB switchblade or something, so that it can utilize and existing host, or grab it's IP, at a minimum, before starting it's work.

I'd agree.  Was simply giving some info in relation to what was asked for... 

Yeah... if his sole intention was running an nmap scan or something, then it wouldn't be so bad.  Bud to do a full sweep and testing against a subnet, via script, is going to be a lot of work.  A switchblad could do the job, but if they want any depth from it, there's going to be a lot of prep work to get it to where they want, for a heavy gather job.

Dunno.  orca, let us know what you end up doing, although I think Ketchup and I both are on the same page, that you're in for a lot more work than you might want to get into, for this...

Thanks for all the suggestions. On of the reasons that I ant to do the scan locally is that I want to catch any unwanted equipment that is deployed there without a default-gw, I will not catch those if I scan remotely. I guess an nmap scan would do in most cases. I will try to look into the switchblade option.


regards
Orca