This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP NINJA PingU Project"

From OWASP
Jump to: navigation, search
Line 6: Line 6:
 
| valign="top"  style="border-right: 1px dotted gray;padding-right:25px;" |
 
| valign="top"  style="border-right: 1px dotted gray;padding-right:25px;" |
  
==OWASP NINJA PingU: Is Not Just A Ping Utility==
+
==What's NINJA PingU?==
  
"OWASP NINJA PingU: Is Not Just A Ping Utility" is a free open-source, high performance, network scanner and services discoverage tool for large scale analyses of millions of hosts.
+
'''NINJA-PingU Is Not Just a Ping Utility''' is a free open-source high performance network scanner tool for large scale analyses. It has been designed with performance as its primary goal and developed as a framework to allow easy plugin integration.
  
==Introduction==
+
==How NINJA PingU Works?==
  
NINJA PingU provides a set of functionalities to detect special devices within an IP address range such as IP Cameras, printers, web servers, SSH services and several others.
+
NINJA PingU takes advantage of raw sockets to reduce the three-way TCP handshake latency and it's state. Directly sending IP packets also avoids the TCP stack overhead.
  
 +
[[Image:NINJA_PingU_Design.jpg||550px|left||link=http://owasp.github.io/NINJA-PingU/images/NINJA%20PingU%20Architecture.png]]
  
==Description==
 
  
NINJA PingU uses raw sockets, non-blocking I/O, multithreading, caching, and other technologies to achieve a very high network performance. Read more about it in its home page at http://owasp.github.io/NINJA-PingU/ and its code base ad https://github.com/OWASP/NINJA-PingU
+
It also implements non-blocking networking I/O in the plugin's interface by means of epoll. Each component is multithreaded and they have built-in caches to minimize synchronization points. In addition, the results persistment operations are buffered to reduce disk writes.
  
 +
.
  
==Licensing==
+
==Why NINJA PingU?==
  
OWASP NINJA PingU is free to use. It is licensed under the GNU GPL v3 License
+
It has been developed to easily allow developers build their custom plugins. Samples of those can be found in its codebase. In addition, more information about NINJA PingU can be found in the FAQ and dev pages. NINJA PingU also integrates gnuplot to automatically plot the analysis results. In addition, a custom terminator has been embedded for enhanced data visualization.
  
  
| valign="top"  style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |
+
[[Image:NINJA_PingU_Performance.jpg||550px|link=http://owasp.github.io/NINJA-PingU/images/ninjapinguplot.png]]
  
== What is OWASP NINJA PingU? ==
+
The previous chart corresponds to a 17 seconds analysis in a 100mbps network, where 10 million hosts were scanned and 9 thousand services identified. The analysis average speed was higher than half million hosts scanned per second.
  
OWASP NINJA PingU  provides:
 
  
* Host discoverage
+
Read more about it in its home page at http://owasp.github.io/NINJA-PingU/ and its code base ad https://github.com/OWASP/NINJA-PingU
* Services discoverage
 
* Operating System detection
 
* Special devices discoverage
 
  
  
== Presentation ==
+
==Licensing==
  
Link to presentation
+
OWASP NINJA PingU is free to use. It is licensed under the GNU GPL v3 License
  
  
 +
| valign="top"  style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |
  
 +
== Features ==
  
== Project Leader ==
+
* Services Discoverage
 +
* Operating System Detection
 +
* Embedded Devices Identification
 +
* High Performance Framework
 +
* Easily Plugin Integration
  
* [mailto:guifre.ruiz@owasp.org Guifre Ruiz]
+
== Links ==
 +
* [http://owasp.github.io/NINJA-PingU/ Home]
 +
* [http://owasp.github.io/NINJA-PingU/faq.html FAQ]
 +
* [http://owasp.github.io/NINJA-PingU/dev.html Dev]
 +
* [http://owasp.github.io/NINJA-PingU/plugins.html Plugins]
  
  
== Related Projects ==
+
== Project Leader ==
 
 
  
 +
* [mailto:[email protected] Guifre Ruiz]
  
  
| valign="top"  style="padding-left:25px;width:200px;" |  
+
| valign="top"  style="padding-left:25px;width200px;" |  
  
 
== Quick Download ==
 
== Quick Download ==
Line 63: Line 70:
 
== News and Events ==
 
== News and Events ==
 
* Version 1.0 released
 
* Version 1.0 released
 
 
== In Print ==
 
This project can be purchased as a print on demand book from Lulu.com
 
  
  

Revision as of 19:51, 14 January 2014

OWASP Project Header.jpg

What's NINJA PingU?

NINJA-PingU Is Not Just a Ping Utility is a free open-source high performance network scanner tool for large scale analyses. It has been designed with performance as its primary goal and developed as a framework to allow easy plugin integration.

How NINJA PingU Works?

NINJA PingU takes advantage of raw sockets to reduce the three-way TCP handshake latency and it's state. Directly sending IP packets also avoids the TCP stack overhead.

NINJA PingU Design.jpg


It also implements non-blocking networking I/O in the plugin's interface by means of epoll. Each component is multithreaded and they have built-in caches to minimize synchronization points. In addition, the results persistment operations are buffered to reduce disk writes.

.

Why NINJA PingU?

It has been developed to easily allow developers build their custom plugins. Samples of those can be found in its codebase. In addition, more information about NINJA PingU can be found in the FAQ and dev pages. NINJA PingU also integrates gnuplot to automatically plot the analysis results. In addition, a custom terminator has been embedded for enhanced data visualization.


NINJA PingU Performance.jpg

The previous chart corresponds to a 17 seconds analysis in a 100mbps network, where 10 million hosts were scanned and 9 thousand services identified. The analysis average speed was higher than half million hosts scanned per second.


Read more about it in its home page at http://owasp.github.io/NINJA-PingU/ and its code base ad https://github.com/OWASP/NINJA-PingU


Licensing

OWASP NINJA PingU is free to use. It is licensed under the GNU GPL v3 License


Features

  • Services Discoverage
  • Operating System Detection
  • Embedded Devices Identification
  • High Performance Framework
  • Easily Plugin Integration

Links


Project Leader


Quick Download


News and Events

  • Version 1.0 released


Classifications

Owasp-incubator-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files CODE.jpg
Q1
A1
Q2
A2

Volunteers

NINJA Pingu is developed by a worldwide team of volunteers. The primary contributors to date have been:

  • Guifre Ruiz

Others

Release 1.0

NINJA Pingu 1.0 has been released, which includes:

  • Host Discoverage.
  • Services Discoverage
  • Operating System Discoverage
  • Special Network Devices (IP Cameras and Prinerts) Discoverage.


Release 1.1

The next release has not been scheduled yet.


Involvement in the development and promotion of NINJA PingU is actively encouraged! You do not have to be a security expert in order to contribute.



PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP NINJA PingU Project
Purpose: NINJA Pingu will be a high performance host enumerator tool for scanning purposes. It will allow users to enumerate services in networks very fast.
License: GNU GPL v3 License (allows commercial use, but requires that modifications to your code stay open source, thus prohibiting proprietary forks of your project)
who is working on this project?
Project Leader(s):
  • Guifre Ruiz @
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: View
Key Contacts
  • Contact Guifre Ruiz @ to contribute to this project
  • Contact Guifre Ruiz @ to review or sponsor this project
current release
OWASP NINJA PingU v1.0 - 01/15/2014 - (download)
Release description: NINJA-PingU Is Not Just a Ping Utility is a free open-source high performance network scanner tool for large scale analyses. It has been designed with performance as its primary goal and developed as a framework to allow easy plugin integration. The v1.0 release includes the complete and functional NINJA PingU's framework with a set of plugins for services analysis and embedded devices identification. More information about those and its performance can be found here.
Rating: Projects/OWASP NINJA PingU/GPC/Assessment/OWASP NINJA PingU v1.0
last reviewed release
Not Yet Reviewed


other releases