Run Scanner
Log In or Register to download the BES file, and more.

0 Votes

Description

This task will run an Nmap scan from the selected computers to detect unmanaged computers and network devices. Use the links below to either scan the entire local subnet or to specify a particular IP range.

Once complete, the scan data will be uploaded to the BES Server and automatically imported into the BES Server database by the Asset Discovery Import Service. You will then be able to view the results through the Unmanaged Assets report interface.

To schedule repeated scans or to specify advanced configuration options such as additional ports, timing/agressiveness options, specific hosts to exclude, and other Nmap command line switches, use the BigFix Asset Discovery Nmap Configuration Wizard to generate a custom Nmap Scan Fixlet message.

Note: Nmap is an open-source utility for network scanning.  For more information on Nmap, as well as advanced configuration options, visit the link below.

Note: Client machines may briefly display dos and command prompt windows as a result of running the action below.

Property Details

ID72
TitleRun Scanner
DomainBES
CategoryCommon Tasks
Download Size0
Sourcedanielheth@bigfix.me
Source ID<Unspecified>
Source Severity<Unspecified>
Source Release Date2/4/2011 12:00:00 AM
KeywordsNmap BES Asset Discovery Note
Added by on 10/17/2012 9:31:55 AM
Last Modified by on 10/17/2012 9:37:44 AM
Counters 10565 Views / 44 Downloads
User Rating 1 star 2 star 3 star 4 star 5 star * Average over 0 ratings. ** Log In or Register to add your rating.

Relevance

Used in 93 fixlets and 2 analyses   * Results in a true/false
Show indented relevance
version of client >= "6.0"
Used in 1 fixlet   * Results in a true/false
Show indented relevance
number of (unique values of (subnet addresses whose (it as string != "0.0.0.0") of ip interfaces whose (loopback of it = false) of network as string)) > 0
Used in 1 fixlet and 1 analsis   * Results in a true/false
Show indented relevance
exists file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")
Used in 1 fixlet   * Results in a true/false
Show indented relevance
(number of bits (0;1;2;3;4;5;6;7) whose (it) of ( it as integer ) of ( if it contains "." then preceding text of first "." of it else it ) of ( it; following texts of substrings "." of it ) of ( unique values of (subnet masks of ip interfaces whose (loopback of it = false) of network as string ) as string) ) >= 22
Used in 1 fixlet   * Results in a true/false
Show indented relevance
if name of operating system as string as lowercase contains "win" then (exists file "Proj/FC/nmap/nmap.exe" whose (version of it >= "5.21") of parent folder of client) else if name of operating system as string as lowercase contains "mac os x" then (exists regapp whose (name of it as string as lowercase contains "zenmap" AND version of it >= "5.21")) else if name of operating system as string as lowercase contains "linux" then (exists file "/usr/bin/nmap" whose (size of it = 2235920 AND sha1 of it = "fc5d5c6b19f9822536063b9b34f687684e973604")) else false
Used in 1 fixlet   * Results in a true/false
Show indented relevance
if name of operating system as string as lowercase contains "win" then if exists file "wpcap.dll" of system folder then (version of file "wpcap.dll" of system folder >= "4.1") else false else true

Actions

Action 1 (default)

Action Link Click here to run a simple ping scan on the local subnet(s).
Script Type BigFix Action Script
parameter "path"="{pathname of parent folder of client}/Proj/FC"
folder create "{pathname of parent folder of client}/Proj"
folder create "{parameter "path"}"
parameter "Relay"="{(if ((it does not contain "127.0.0.1" and it does not contain "::1") of name of registration server) then (name of registration server) else if (exists setting "_BESRelay_PostResults_ParentRelayURL" of client and exists value of setting "_BESRelay_PostResults_ParentRelayURL" of client as string) then (preceding text of first "/" of (following text of first "//" of (value of setting "_BESRelay_PostResults_ParentRelayURL" of client))) else "BES Root Server:52311")}"
parameter "BFPort"="{if (parameter "Relay" as string contains ":") then (following text of first ":" of parameter "Relay") else "52311"}"
parameter "start_time"="{now}"
parameter "fcXMLFilePath"="{parameter "path"}/PingScan-{computer name}-{computer id}.xml"
//this is to copy over the new scan file to the old one for asset discovery compatibility
parameter "current_time"="{(now - "01 Jan 1970 00:00:00" as local time)/second}"
if {name of operating system as string as lowercase contains "win"}
    parameter "nmapXMLFilePath"="{pathname of windows folder}\temp\nmap\nmap-{computer name}-{parameter "current_time"}.xml"
    if {not exists folder (pathname of windows folder & "\temp")}
        folder create "{pathname of windows folder & "\temp"}"
    endif
    if {not exists folder (pathname of windows folder & "\temp\nmap")}
        folder create "{pathname of windows folder & "\temp\nmap"}"
    endif
else
    parameter "nmapXMLFilePath"="{parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP/NMAP/nmap-" & (computer name as string) & "-" & (parameter "current_time" as string) & ".xml"}"
    if {not exists folder (parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP")}
        folder create "{parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP"}"
    endif
    if {not exists folder (parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP/NMAP")}
        folder create "{parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP/NMAP"}"
    endif
endif
parameter "SubNets"="{concatenation " " of (subnet address of it as string & "/" & (it as string) of number of bits (0;1;2;3;4;5;6;7) whose (it) of (it as integer) of (if it contains "." then preceding text of first "." of it else it) of (it; following texts of substrings "." of it) of (subnet masks of it as string)) of ip interfaces whose (loopback of it = false and subnet address of it as string != "0.0.0.0" and not (subnet address of it as string starts with "169.")) of network}"
continue if {parameter "SubNets" as trimmed string != ""}
// create a batch file so that the NMAP scan will be silent
delete __appendfile
if {name of operating system as string as lowercase contains "win"}
    parameter "nmapPath"="{parameter "path"}/nmap/nmap.exe"
    parameter "nmapScr"="fcquiet.bat"
    appendfile @ECHO OFF
elseif {name of operating system as string as lowercase contains "mac os x"}
    parameter "nmapPath"="/usr/local/bin/nmap"
    parameter "nmapScr"="fcquiet.sh"
    appendfile #!/bin/sh
else
    parameter "nmapPath"="/usr/bin/nmap"
    parameter "nmapScr"="fcquiet.sh"
    appendfile #!/bin/sh
endif
delete {parameter "nmapScr"}
parameter "exclude"="{concatenation "," of (addresses whose (it as string != "0.0.0.0" and not (it as string starts with "169.")) of ip interfaces whose (loopback of it = false) of network as string)}"
//ADJUST SPEED BASED ON NUMBER OF ADDRESSES TO BE SCANNED
if {(following text of last "/" of parameter "SubNets" as integer) <= 24}
    parameter "speed"="T4"
elseif {(following text of last "/" of parameter "SubNets" as integer) <= 21}
    parameter "speed"="T3"
elseif {(following text of last "/" of parameter "SubNets" as integer) <= 19}
    parameter "speed"="T2"
else
    parameter "speed"="T1"
endif
//simple ping sweep
appendfile "{parameter "nmapPath"}" -sP -PR -{parameter "speed"} --exclude "{parameter "exclude"}" --randomize-hosts {parameter "SubNets"} -oX "{parameter "fcXMLFilePath"}"
//port scan...
//appendfile "{parameter "nmapPath"}" -{parameter "speed"} --exclude "{parameter "exclude"}" -pT:{parameter "BFPort"},53,3389,80,25,22,443,445,21,113,23,554,1723,389,636,256,1433,U:{parameter "BFPort"},31,123,137,445,338 -O --randomize-hosts {parameter "SubNets"} -oX "{parameter "fcXMLFilePath"}"
move __appendfile {parameter "nmapScr"}
//run nmap scan
if {name of operating system as string as lowercase contains "win"}
    waithidden {parameter "nmapScr"}
elseif {name of operating system as string as lowercase contains "mac os x"}
    wait chmod 555 "{(client folder of current site as string) & "/" & parameter "nmapScr"}"
    wait {"/bin/sh -c %22trap '' 15;'" & (client folder of current site as string) & "/" & parameter "nmapScr" & "'%22"}
else
    wait chmod 555 {parameter "nmapScr"}
    wait ./{parameter "nmapScr"}
endif
//now make a copy of the file for asset discovery
delete "{parameter "nmapXMLFilePath"}"
if {exists file (parameter "fcXMLFilePath")}
    copy "{parameter "fcXMLFilePath"}" "{parameter "nmapXMLFilePath"}"
endif
//update stats file
delete __appendfile
appendfile [Scan History]
appendfile InstallTime={if exists ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}
appendfile LastScanStartTime={parameter "start_time"}
appendfile LastScanFinishTime={now}
appendfile LastFileCreated=
appendfile LastScanType=Ping
appendfile NumberOfScansRun={(if exists ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as integer) else 0) + 1}
appendfile LastSubnetScanned={parameter "SubNets"}
appendfile NmapVersion={if exists ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}
delete "{parameter "path"}/NMAP.ini"
move __appendfile "{parameter "path"}/NMAP.ini"
//backward compatibility with asset discovery
if {name of operating system as string as lowercase contains "win"}
    delete __appendfile
    delete scanPoint.reg
    appendfile REGEDIT4
    appendfile [HKEY_LOCAL_MACHINE\SOFTWARE\BigFix\EnterpriseClient\BESScanner-NMAP]
    appendfile "InstallTime"="{if exists ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
    appendfile "LastScanStartTime"="{if exists ((key "LastScanStartTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastScanStartTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
    appendfile "LastScanFinishTime"="{if exists ((key "LastScanFinishTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastScanFinishTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
    appendfile "LastFileCreated"="{if exists ((key "LastFileCreated" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastFileCreated" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
    appendfile "NumberOfScansRun"="{if exists ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
    appendfile "LastSubnetScanned"="{if exists ((key "LastSubnetScanned" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastSubnetScanned" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
    appendfile "NmapVersion"="{if exists ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
// set initial registry key values
    move __appendfile scanPoint.reg
    wait regedit -s scanPoint.reg
    continue if {exists value "NumberOfScansRun" of key "HKEY_LOCAL_MACHINE\SOFTWARE\BigFix\EnterpriseClient\BESScanner-NMAP" of x32 registry}
else
    delete "{(parent folder of parent folder of client folder of current site) as string & "/BESScanner-NMAP/BESScanner-NMAP.config"}"
    copy "{parameter "path"}/NMAP.ini" "{(parent folder of parent folder of client folder of current site) as string & "/BESScanner-NMAP/BESScanner-NMAP.config"}"
endif
//backward compatibility with asset discovery
setting "_BESClient_ArchiveManager_FileSet-nmap{parameter "current_time"}"="{parameter "nmapXMLFilePath"}" on "{parameter "action issue date" of action}" for client
//what to send
setting "_BESClient_ArchiveManager_FileSet-FullCoverage"="{parameter "path"}/*.xml" on "{parameter "action issue date" of action}" for client
Success Criteria

This action will be considered successful when the following relevance clause evaluates to false:

 
Used in 1 fixlet and 1 analsis   * Results in a true/false
Show indented relevance
NOT((exists file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) AND (exists file whose (name of it contains "PingScan" and name of it contains computer id as string) of folder (pathname of parent folder of client as string & "/Proj/FC/")) AND (exists lines whose (it as string as lowercase contains "nmap done at" OR it as string as lowercase contains "nmap run completed at") of file whose (name of it contains "PingScan" and name of it contains computer id as string) of folder (pathname of parent folder of client as string & "/Proj/FC/")) AND (size of file whose (name of it contains "PingScan" and name of it contains computer id as string) of folder (pathname of parent folder of client as string & "/Proj/FC/") <= ((value of setting "_BESClient_ArchiveManager_MaxArchiveSize" of client) as integer)))

Action 2

Action Link Click here for more information about our Scanner.
Script Type URL
http://www.insecure.org/nmap/
    

Action 3

Action Link Click here for more information about BES Asset Discovery.
Script Type URL
http://support.bigfix.com/bes/sites/assetdiscovery.html
    

Action 4

Action Link Click here to run a full port scan on the local subnet(s).
Script Type BigFix Action Script
parameter "path"="{pathname of parent folder of client}/Proj/FC"
folder create "{pathname of parent folder of client}/Proj"
folder create "{parameter "path"}"
parameter "Relay"="{(if ((it does not contain "127.0.0.1" and it does not contain "::1") of name of registration server) then (name of registration server) else if (exists setting "_BESRelay_PostResults_ParentRelayURL" of client and exists value of setting "_BESRelay_PostResults_ParentRelayURL" of client as string) then (preceding text of first "/" of (following text of first "//" of (value of setting "_BESRelay_PostResults_ParentRelayURL" of client))) else "BES Root Server:52311")}"
parameter "BFPort"="{if (parameter "Relay" as string contains ":") then (following text of first ":" of parameter "Relay") else "52311"}"
parameter "start_time"="{now}"
parameter "fcXMLFilePath"="{parameter "path"}/PortScan-{computer name}-{computer id}.xml"
//this is to copy over the new scan file to the old one for asset discovery compatibility
parameter "current_time"="{(now - "01 Jan 1970 00:00:00" as local time)/second}"
if {name of operating system as string as lowercase contains "win"}
    parameter "nmapXMLFilePath"="{pathname of windows folder}\temp\nmap\nmap-{computer name}-{parameter "current_time"}.xml"
    if {not exists folder (pathname of windows folder & "\temp")}
        folder create "{pathname of windows folder & "\temp"}"
    endif
    if {not exists folder (pathname of windows folder & "\temp\nmap")}
        folder create "{pathname of windows folder & "\temp\nmap"}"
    endif
else
    parameter "nmapXMLFilePath"="{parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP/NMAP/nmap-" & (computer name as string) & "-" & (parameter "current_time" as string) & ".xml"}"
    if {not exists folder (parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP")}
        folder create "{parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP"}"
    endif
    if {not exists folder (parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP/NMAP")}
        folder create "{parent folder of parent folder of client folder of current site as string & "/BESScanner-NMAP/NMAP"}"
    endif
endif
parameter "SubNets"="{concatenation " " of (subnet address of it as string & "/" & (it as string) of number of bits (0;1;2;3;4;5;6;7) whose (it) of (it as integer) of (if it contains "." then preceding text of first "." of it else it) of (it; following texts of substrings "." of it) of (subnet masks of it as string)) of ip interfaces whose (loopback of it = false and subnet address of it as string != "0.0.0.0" and not (subnet address of it as string starts with "169.")) of network}"
continue if {parameter "SubNets" as trimmed string != ""}
// create a batch file so that the NMAP scan will be silent
delete __appendfile
if {name of operating system as string as lowercase contains "win"}
    parameter "nmapPath"="{parameter "path"}/nmap/nmap.exe"
    parameter "nmapScr"="fcquiet.bat"
    appendfile @ECHO OFF
elseif {name of operating system as string as lowercase contains "mac os x"}
    parameter "nmapPath"="/usr/local/bin/nmap"
    parameter "nmapScr"="fcquiet.sh"
    appendfile #!/bin/sh
else
    parameter "nmapPath"="/usr/bin/nmap"
    parameter "nmapScr"="fcquiet.sh"
    appendfile #!/bin/sh
endif
delete {parameter "nmapScr"}
parameter "exclude"="{concatenation "," of (addresses whose (it as string != "0.0.0.0" and not (it as string starts with "169.")) of ip interfaces whose (loopback of it = false) of network as string)}"
//ADJUST SPEED BASED ON NUMBER OF ADDRESSES TO BE SCANNED
if {(following text of last "/" of parameter "SubNets" as integer) <= 24}
    parameter "speed"="T4"
elseif {(following text of last "/" of parameter "SubNets" as integer) <= 21}
    parameter "speed"="T3"
elseif {(following text of last "/" of parameter "SubNets" as integer) <= 19}
    parameter "speed"="T2"
else
    parameter "speed"="T1"
endif
//simple ping sweep
//appendfile "{parameter "nmapPath"}" -sP -PR -{parameter "speed"} --exclude "{parameter "exclude"}" --randomize-hosts {parameter "SubNets"} -oX "{parameter "fcXMLFilePath"}"
//port scan...
appendfile "{parameter "nmapPath"}" -{parameter "speed"} --exclude "{parameter "exclude"}" -pT:{parameter "BFPort"},53,3389,80,25,22,443,445,21,113,23,554,1723,389,636,256,1433,U:{parameter "BFPort"},31,123,137,445,338 -O --randomize-hosts {parameter "SubNets"} -oX "{parameter "fcXMLFilePath"}"
move __appendfile {parameter "nmapScr"}
//run nmap scan
if {name of operating system as string as lowercase contains "win"}
    waithidden {parameter "nmapScr"}
elseif {name of operating system as string as lowercase contains "mac os x"}
    wait chmod 555 "{(client folder of current site as string) & "/" & parameter "nmapScr"}"
    wait {"/bin/sh -c %22trap '' 15;'" & (client folder of current site as string) & "/" & parameter "nmapScr" & "'%22"}
else
    wait chmod 555 {parameter "nmapScr"}
    wait ./{parameter "nmapScr"}
endif
//now make a copy of the file for asset discovery
delete "{parameter "nmapXMLFilePath"}"
if {exists file (parameter "fcXMLFilePath")}
    copy "{parameter "fcXMLFilePath"}" "{parameter "nmapXMLFilePath"}"
endif
//update stats file
delete __appendfile
appendfile [Scan History]
appendfile InstallTime={if exists ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}
appendfile LastScanStartTime={parameter "start_time"}
appendfile LastScanFinishTime={now}
appendfile LastFileCreated=
appendfile LastScanType=Port
appendfile NumberOfScansRun={(if exists ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as integer) else 0) + 1}
appendfile LastSubnetScanned={parameter "SubNets"}
appendfile NmapVersion={if exists ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}
delete "{parameter "path"}/NMAP.ini"
move __appendfile "{parameter "path"}/NMAP.ini"
////backward compatibility with asset discovery
//if {name of operating system as string as lowercase contains "win"}
// delete __appendfile
// delete scanPoint.reg
//
// appendfile REGEDIT4
// appendfile [HKEY_LOCAL_MACHINE\SOFTWARE\BigFix\EnterpriseClient\BESScanner-NMAP]
// appendfile "InstallTime"="{if exists ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "InstallTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
// appendfile "LastScanStartTime"="{if exists ((key "LastScanStartTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastScanStartTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
// appendfile "LastScanFinishTime"="{if exists ((key "LastScanFinishTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastScanFinishTime" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
// appendfile "LastFileCreated"="{if exists ((key "LastFileCreated" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastFileCreated" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
// appendfile "NumberOfScansRun"="{if exists ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NumberOfScansRun" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
// appendfile "LastSubnetScanned"="{if exists ((key "LastSubnetScanned" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "LastSubnetScanned" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
// appendfile "NmapVersion"="{if exists ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini"))) then ((key "NmapVersion" of section "Scan History" of file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) as string) else ""}"
//
// // set initial registry key values
// move __appendfile scanPoint.reg
// wait regedit -s scanPoint.reg
//
// continue if {exists value "NumberOfScansRun" of key "HKEY_LOCAL_MACHINE\SOFTWARE\BigFix\EnterpriseClient\BESScanner-NMAP" of x32 registry}
//else
// delete "{(parent folder of parent folder of client folder of current site) as string & "/BESScanner-NMAP/BESScanner-NMAP.config"}"
// copy "{parameter "path"}/NMAP.ini" "{(parent folder of parent folder of client folder of current site) as string & "/BESScanner-NMAP/BESScanner-NMAP.config"}"
//endif
//
//
////backward compatibility with asset discovery
//setting "_BESClient_ArchiveManager_FileSet-nmap{parameter "current_time"}"="{parameter "nmapXMLFilePath"}" on "{parameter "action issue date" of action}" for client
//what to send
setting "_BESClient_ArchiveManager_FileSet-FullCoverage"="{parameter "path"}/*.xml" on "{parameter "action issue date" of action}" for client
Success Criteria

This action will be considered successful when the following relevance clause evaluates to false:

 
Used in 1 fixlet and 1 analsis   * Results in a true/false
Show indented relevance
NOT((exists file (pathname of parent folder of client & "/Proj/FC/NMAP.ini")) AND (exists file whose (name of it contains "PortScan" and name of it contains computer id as string) of folder (pathname of parent folder of client as string & "/Proj/FC/")) AND (exists lines whose (it as string as lowercase contains "nmap done at" OR it as string as lowercase contains "nmap run completed at") of file whose (name of it contains "PortScan" and name of it contains computer id as string) of folder (pathname of parent folder of client as string & "/Proj/FC/")) AND (size of file whose (name of it contains "PortScan" and name of it contains computer id as string) of folder (pathname of parent folder of client as string & "/Proj/FC/") <= ((value of setting "_BESClient_ArchiveManager_MaxArchiveSize" of client) as integer)))

Sharing

Social Media:
Share this page on Yammer

Comments

Log In or Register to leave comments!
clydequadros -
I get an error while running this fixlet. It says: "The content in 'Run_Scanner.bes' could not be imported. XML parsing error: value " not in enumeration Line 196. Character 57" Can someone help please. I would like to discover unmanaged assets in our environment