├── LICENSE
├── README.md
├── ScreenShot.png
├── continuousscan.sh
├── dockerfile
├── index.html
└── nmapcsv.sh


/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2018 Jerry Gamblin
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # NMap Network Inventory Container
 2 | Have you ever wanted up-to-date NMap scan data in an easily understandable format? Have you noticed how hard it is to get that? So did I! So I hacked together a docker container to continually scan (about every 2 Hours) your network and display the findings cleanly using Debian, [Namp Grepable Output](https://nmap.org/book/output-formats-grepable-output.html), A bash script to convert it to a CSV and some [D3.js code](https://d3js.org/).
 3 | 
 4 | ## Build and Run Instructions
 5 | 
 6 | #### Clone
 7 | `git clone https://github.com/jgamblin/NMapNetworkInventoryContainer`
 8 | 
 9 | #### Configure
10 | In `continuousscan.sh` edit  the `TARGETS="192.168.1.0/24"` and `OPTIONS="-sV"` line with your hosts
11 | 
12 | #### Build  
13 | `docker build -t inventory .`
14 | 
15 | #### Run
16 | `docker run --name nmap-inventory -t -p 1337:1337 inventory`
17 | 
18 | #### Enjoy
19 | After the first run is complete (it will take a while) you can access the website [here](http://127.0.0.1:1337).
20 | 
21 | It will look like this:
22 | ![Screenshot](https://raw.githubusercontent.com/jgamblin/NMapNetworkInventoryContainer/master/ScreenShot.png)
23 | 
24 | #### Important Notice
25 | I likely don't know what I am doing and this could be done faster, better and simpler some other way. Also make sure you have permission to NMap something before you do!
26 | 


--------------------------------------------------------------------------------
/ScreenShot.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jgamblin/NMapNetworkInventoryContainer/82b4ec581a0ef8de8449a964a9631af577d31395/ScreenShot.png


--------------------------------------------------------------------------------
/continuousscan.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | TARGETS="192.168.1.0/24"
 3 | OPTIONS="-sV"
 4 | 
 5 | cd /inventory || return
 6 | python3 -m http.server 1337 &
 7 | 
 8 | while true; do
 9 | echo ''
10 | echo '=================='
11 | echo ''
12 | 
13 | echo ''
14 | # Remove Old Gnmap
15 | rm scan.gnmap
16 | #Start Nmap:s
17 | printf "nmap ${OPTIONS} ${TARGETS} -oG /inventory/scan.gnmap"
18 | nmap $OPTIONS $TARGETS -oG /inventory/scan.gnmap
19 | #Remove Old Data
20 | rm data.csv
21 | #Update Data:
22 | cat scan.gnmap
23 | ./nmapcsv.sh scan.gnmap > data.csv
24 | 
25 | 
26 | #2 Hour Count Down Between Scans
27 | m=${1}-1
28 | Floor () {
29 | DIVIDEND=${1}
30 | DIVISOR=${2}
31 | RESULT=$(( ( ${DIVIDEND} - ( ${DIVIDEND} % ${DIVISOR}) )/${DIVISOR} ))
32 | echo ${RESULT}
33 | }
34 | 
35 | Timecount(){
36 | s=7200
37 | HOUR=$( Floor ${s} 60/60 )
38 | s=$((${s}-(60*60*${HOUR})))
39 | MIN=$( Floor ${s} 60 )
40 | SEC=$((${s}-60*${MIN}))
41 | while [ $HOUR -ge 0 ]; do
42 | while [ $MIN -ge 0 ]; do
43 | while [ $SEC -ge 0 ]; do
44 | printf "Rescanning in %02d:%02d:%02d\033[0K\r" $HOUR $MIN $SEC
45 | SEC=$((SEC-1))
46 | sleep 1
47 | done
48 | SEC=59
49 | MIN=$((MIN-1))
50 | done
51 | MIN=59
52 | HOUR=$((HOUR-1))
53 | done
54 | }
55 | 
56 | Timecount $m
57 | 
58 | done
59 | 


--------------------------------------------------------------------------------
/dockerfile:
--------------------------------------------------------------------------------
 1 | FROM debian:9.4-slim
 2 | 
 3 | RUN apt-get update && apt-get upgrade -y
 4 | RUN apt-get install -y \
 5 |     nmap \
 6 |     python3 \
 7 |     gawk \
 8 |     && rm -rf /var/lib/apt/lists/*
 9 | 
10 | RUN mkdir /inventory
11 | COPY nmapcsv.sh index.html continuousscan.sh /inventory/
12 | 
13 | EXPOSE 1337
14 | CMD ["./inventory/continuousscan.sh"]
15 | 


--------------------------------------------------------------------------------
/index.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html>
  3 | 
  4 | <head>
  5 | 	<meta charset='UTF-8'>
  6 | 
  7 | 	<title>NMap Network Inventory</title>
  8 | 
  9 | 	<meta name="viewport" content="width=device-width, initial-scale=1.0">
 10 | 
 11 | 	<!--[if !IE]><!-->
 12 | 	<style>
 13 | 	*
 14 | 	}
 15 | 
 16 | .SearchBar {
 17 |   display: inline;
 18 |   position: relative;
 19 |   left: 1%;
 20 | }
 21 | 
 22 | .SearchBar input {
 23 |   position: relative;
 24 |   left: 2%;
 25 | }
 26 | 	{
 27 | 	  margin: 0;
 28 | 	  padding: 0;
 29 |      }
 30 |      body {
 31 | 	   font: 14px/1.4 Georgia, Serif;
 32 |      }
 33 |     #page-wrap {
 34 | 	  margin: 50px;
 35 |     }
 36 |     p {
 37 | 	 margin: 20px 0;
 38 |     }
 39 | 
 40 | 	/*
 41 | 	Generic Styling, for Desktops/Laptops
 42 | 	*/
 43 | 	table {
 44 | 		width: 100%;
 45 | 		border-collapse: collapse;
 46 | 	}
 47 | 	/* Zebra striping */
 48 | 	tr:nth-of-type(odd) {
 49 | 		background: 	#f8f8ff;
 50 | 	}
 51 | 	th {
 52 | 		background: #333;
 53 | 		color: white;
 54 | 		font-weight: bold;
 55 | 		cursor: s-resize;
 56 | 		background-repeat: no-repeat;
 57 |         background-position: 3% center;
 58 | 	}
 59 | 	td, th {
 60 | 		padding: 6px;
 61 | 		border: 1px solid #ccc;
 62 | 		text-align: left;
 63 | 	}
 64 | 
 65 | 	th.des:after {
 66 |       content: "\21E9";
 67 |     }
 68 | 
 69 |     th.aes:after {
 70 |       content: "\21E7";
 71 |     }
 72 | 
 73 | 	/*
 74 | 	Max width before this PARTICULAR table gets nasty
 75 | 	This query will take effect for any screen smaller than 760px
 76 | 	and also iPads specifically.
 77 | 	*/
 78 | 	@media
 79 | 	only screen and (max-width: 760px),
 80 | 	(min-device-width: 768px) and (max-device-width: 1024px)  {
 81 | 
 82 | 		/* Force table to not be like tables anymore */
 83 | 		table, thead, tbody, th, td, tr {
 84 | 			display: block;
 85 | 		}
 86 | 
 87 | 		/* Hide table headers (but not display: none;, for accessibility) */
 88 | 		thead tr {
 89 | 			position: absolute;
 90 | 			top: -9999px;
 91 | 			left: -9999px;
 92 | 		}
 93 | 
 94 | 		tr { border: 1px solid #ccc; }
 95 | 
 96 | 		td {
 97 | 			/* Behave  like a "row" */
 98 | 			border: none;
 99 | 			border-bottom: 1px solid #eee;
100 | 			position: relative;
101 | 			padding-left: 50%;
102 | 		}
103 | 
104 | 		td:before {
105 | 			/* Now like a table header */
106 | 			position: absolute;
107 | 			/* Top/left values mimic padding */
108 | 			top: 6px;
109 | 			left: 6px;
110 | 			width: 45%;
111 | 			padding-right: 10px;
112 | 			white-space: nowrap;
113 | 		}
114 | 
115 | 		/*
116 | 		Label the data
117 | 		*/
118 | 		td:before {
119 | 		  content: attr(data-th) ": ";
120 |           font-weight: bold;
121 |           width: 6.5em;
122 |           display: inline-block;
123 | 		}
124 | 	}
125 | 
126 | 	/* Smartphones (portrait and landscape) ----------- */
127 | 	@media only screen
128 | 	and (min-device-width : 320px)
129 | 	and (max-device-width : 480px) {
130 | 		body {
131 | 			padding: 0;
132 | 			margin: 0;
133 | 			width: 320px; }
134 | 		}
135 | 
136 | 	/* iPads (portrait and landscape) ----------- */
137 | 	@media only screen and (min-device-width: 768px) and (max-device-width: 1024px) {
138 | 		body {
139 | 			width: 495px;
140 | 		}
141 | 	}
142 | 
143 | 	</style>
144 | 	<!--<![endif]-->
145 | 
146 | </head>
147 | 
148 | <body>
149 | 
150 | 	<div id="page-wrap">
151 | 
152 | 	<h1>NMap Network Inventory</h1>
153 | 
154 | 	</div>
155 | 	<script type="text/javascript" src="https://d3js.org/d3.v3.min.js"></script>
156 | 	<script type="text/javascript">
157 | 
158 | 		d3.select(".SearchBar")
159 | 		.append("input")
160 | 		.attr("class", "SearchBar")
161 | 		.attr("id", "search")
162 | 		.attr("type", "text")
163 | 		.attr("placeholder", "Search...");
164 | 
165 | 	  d3.csv("data.csv", function(error, data) {
166 | 		  if (error) throw error;
167 | 
168 | 		  var sortAscending = true;
169 | 		  var table = d3.select('#page-wrap').append('table');
170 | 		  var titles = d3.keys(data[0]);
171 | 		  var headers = table.append('thead').append('tr')
172 | 		                   .selectAll('th')
173 | 		                   .data(titles).enter()
174 | 		                   .append('th')
175 | 		                   .text(function (d) {
176 | 			                    return d;
177 | 		                    })
178 | 		                  .on('click', function(d) {
179 |         headers.attr('class', 'header');
180 |         if (d == "Hostname" || d == "Service" || d == "Version" || d == "Protocol" || d == "Status") { //these keys sort alphabetically
181 |           // sorting alphabetically");
182 |           if (sortAscending) {
183 |             rows.sort(function(a, b) {
184 |               return d3.ascending(a[d], b[d]);
185 |             });
186 |             sortAscending = false;
187 |             this.className = 'aes';
188 |           } else {
189 |             rows.sort(function(a, b) {
190 |               return d3.descending(a[d], b[d]);
191 |             });
192 |             sortAscending = true;
193 |             this.className = 'des';
194 |           }
195 |         } else {
196 |           if (sortAscending) {
197 |             //all other keys sort numerically including time
198 |             rows.sort(function(a, b) {
199 |               return b[d] - a[d];
200 |             });
201 |             sortAscending = false;
202 |             this.className = 'aes';
203 |           } else {
204 |             rows.sort(function(a, b) {
205 |               return a[d] - b[d];
206 |             });
207 |             sortAscending = true;
208 |             this.className = 'des';
209 |           }
210 |         }
211 |       });
212 | 
213 | 
214 | 		  var rows = table.append('tbody').selectAll('tr')
215 | 		               .data(data).enter()
216 | 		               .append('tr');
217 | 		  rows.selectAll('td')
218 | 		    .data(function (d) {
219 | 		    	return titles.map(function (k) {
220 | 		    		return { 'value': d[k], 'IP': k};
221 | 		    	});
222 | 		    }).enter()
223 | 		    .append('td')
224 | 		    .attr('data-th', function (d) {
225 | 		    	return d.IP;
226 | 		    })
227 | 		    .text(function (d) {
228 | 		    	return d.value;
229 | 		    });
230 | 	  });
231 | 	</script>
232 | </body>
233 | 
234 | </html>
235 | 


--------------------------------------------------------------------------------
/nmapcsv.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | ##########################################
 3 | # 2015 Mike Piekarski
 4 | # mike [-at-] automagine [-dot-] com
 5 | # Automagine, LLC
 6 | # --
 7 | # Greppable NMAP to CSV parser
 8 | # --
 9 | # A simple way to convert one or more gnmap files into a csv
10 | # --
11 | # Distribute, reuse, do whatever you want with this code.
12 | ###########################################
13 | #
14 | # Display usage info if someone passes --help, -h or runs with 0 args.
15 | if [[ ${1} == "--help" || ${1} == "-h" || -z ${1} ]]; then
16 | echo -e "Automagine GNMAP to CSV Parser Script.\n"
17 | echo "Usage for $(basename ${0}):"
18 | echo -e "\n\t${0} /path/to/file.gnmap /other/path/to/*.gnmap"
19 | exit 0
20 | fi
21 | #
22 | # Echo out the CSV Header
23 | echo '"IP","Hostname","Port","Protocol","Version"'
24 | #
25 | # Loop through each service starting @ the Ports: section for each host
26 | # There's some pretty dirty assembling of the extended service detail instead
27 | # of struggling with a proper / pefectly fitting Regex for input field separator.
28 | gawk '{
29 | for( X=4; X<NF; X++) {
30 | if ( $X ~ /[0-9]{1,}\/open\// ) {
31 | #
32 | # Check and see if it ends with / or /,
33 | if ( $X !~ /[\/,]$/ ) {
34 | if ( $(X+1) ~ /[\/,]$/ ) {
35 | $X=$X" "$(X+1)
36 | #
37 | # Keep looping through next fields until one ending
38 | # with / or /, is found.
39 | } else if ( $(X+2) ~ /[\/,]$/ ) {
40 | $X=$X" "$(X+1)" "$(X+2)
41 | } else if ( $(X+3) ~ /[\/,]$/ ) {
42 | $X=$X" "$(X+1)" "$(X+2)" "$(X+3)
43 | } else if ( $(X+4) ~ /[\/,]$/ ) {
44 | $X=$X" "$(X+1)" "$(X+2)" "$(X+3)" "$(X+4)
45 | } else if ( $(X+5) ~ /[\/,]$/ ) {
46 | $X=$X" "$(X+1)" "$(X+2)" "$(X+3)" "$(X+4)" "$(X+5)
47 | } else if ( $(X+6) ~ /[\/,]$/ ) {
48 | $X=$X" "$(X+1)" "$(X+2)" "$(X+3)" "$(X+4)" "$(X+5)" "$(X+6)
49 | }
50 | } {
51 | #
52 | # Split up the parts of the NMAP Service shorthand (ex 80/open/tcp//http//Microsoft IIS httpd 8.0/ )
53 | # - Populates the Array P with each section separated by a / character
54 | split($X, P, "/")
55 | #
56 | # Remove Parens from hostnames
57 | gsub(/[\(\)]/,"", $3)
58 | #
59 | # Remove Comma from Service Detail
60 | gsub(/,/,"",$X)
61 | #
62 | # Reassemble all of the data we chopped up and format the print for a clean CSV
63 | #  - Quote everything
64 | #  - Comma separated
65 | #  - Newline terminated
66 | printf("\"%s\",\"%s\",\"%s\",\"%s\",\"%s\"\n", $2, $3, P[1], P[5], P[7])
67 | }
68 | }
69 | }
70 | }' $@ | sort -n | uniq
71 | 


--------------------------------------------------------------------------------