| 127 | | <para># What does it show</para> |
| 128 | | <para># How to put in order?</para> |
| 129 | | </section> |
| 130 | | |
| 131 | | <section> |
| 132 | | <title>The Ports/Hosts Page</title> |
| 133 | | |
| 134 | | <para># What does it show</para> |
| 135 | | <para># Sorting</para> |
| 136 | | <para># Grouping</para> |
| 137 | | </section> |
| 138 | | |
| 139 | | <section> |
| 140 | | <title>Nmap Output Page</title> |
| 141 | | |
| 142 | | <para># The Highlight mode</para> |
| 143 | | <para># How to change colors</para> |
| 144 | | <para># How does it works the automatic refresh</para> |
| 145 | | </section> |
| 146 | | |
| 147 | | <section> |
| 148 | | <title>Scan Details Page</title> |
| 149 | | |
| 150 | | <para># What informations are expected to be there</para> |
| 151 | | </section> |
| 152 | | |
| 153 | | <section> |
| 154 | | <title>Host Details Page</title> |
| 155 | | |
| 156 | | <para># How does it works</para> |
| 157 | | <para># Comments</para> |
| 158 | | <para># The Host Status</para> |
| 159 | | <para># The icons (os and vl)</para> |
| | 138 | <para>After running finishing the execution of a scan, you'll see two buttons at |
| | 139 | the left side of the window, right bellow the command field in your scan tab: |
| | 140 | "<emphasis>Hosts</emphasis>" and "<emphasis>Services</emphasis>". Those buttons |
| | 141 | change the way you order and view the scan results, by listing either the hosts |
| | 142 | found or the services found.</para> |
| | 143 | |
| | 144 | <para>If you're looking for hosts, and then want to see |
| | 145 | what kind of services these hosts are providing, then you should use the |
| | 146 | <emphasis>Hosts button</emphasis>, which is selected by <emphasis>default |
| | 147 | </emphasis>. This mode will show a list all hosts found, with an icon representing |
| | 148 | the operating system of the host (if it was recognized) and its hostname (if resolved, |
| | 149 | or its IP address). From that list, you can select one or more hosts, and see what |
| | 150 | services they're providing at the <emphasis>Ports/Hosts</emphasis> tab.</para> |
| | 151 | |
| | 152 | <para>If what you need is to find what hosts are providing a given service, |
| | 153 | like <emphasis>SSH</emphasis>, for example, then you should use the <emphasis> |
| | 154 | Services button</emphasis>, which will show a list of all services found during |
| | 155 | scan execution. By clicking in a service in that list, you'll see what hosts |
| | 156 | are providing the selected service in the <emphasis>Ports/Hosts</emphasis> tab.</para> |
| | 157 | |
| | 158 | <para>Ordering is quite simple. Click on the header of the column you want to have |
| | 159 | the results ordered, and the ordering sequence will change accordingly. You're |
| | 160 | also allowed to move columns arround and change their precedence in the listing.</para> |
| | 161 | </section> |
| | 162 | |
| | 163 | <section> |
| | 164 | <title>The Ports/Hosts Tab</title> |
| | 165 | |
| | 166 | <para>This tab holds either a listing of found ports, for the selected host(s) or |
| | 167 | a listsing of found hosts, for the selected service(s). It all depends on which |
| | 168 | visualization mode you're in. While in <emphasis>Hosts</emphasis> mode, you'll see |
| | 169 | a list of what ports the selected host(s) are providing. If you select more than |
| | 170 | one host, the listing will change from list to tree view mode, and you'll be able |
| | 171 | to compare easily the different ports and services open among the selected hosts.</para> |
| | 172 | <para>If you're in <emphasis>Services</emphasis> mode, then you'll see a list of |
| | 173 | hosts providing the selected service(s). If you selected more than one service, the listing |
| | 174 | will change for list to tree view, and you'll be able to compare what hosts are providing |
| | 175 | the selected services easily.</para> |
| | 176 | </section> |
| | 177 | |
| | 178 | <section> |
| | 179 | <title>Nmap Output Tab</title> |
| | 180 | |
| | 181 | <para>For those who are terminal addicted, there is the <emphasis>Nmap Output |
| | 182 | </emphasis> tab, which shows the regular nmap output almost like everyone is used |
| | 183 | to see: unparsed and plain text, but with colored highlights! So, even if you really |
| | 184 | prefer the regular output, you still have a reason to use Umit instead of the |
| | 185 | command line. </para> |
| | 186 | <para>If you want to disable the highlight, click the check box right bellow the |
| | 187 | Nmap output result. If you want to change the colors, click the <emphasis> |
| | 188 | Preferences</emphasis> button, and customize it according to your taste.</para> |
| | 189 | </section> |
| | 190 | |
| | 191 | <section> |
| | 192 | <title>Scan Details Tab</title> |
| | 193 | |
| | 194 | <para>The <emphasis>Scan Details</emphasis> tab holds some informations regarding |
| | 195 | the scan that you won't find on regular nmap outputs. There you can find the |
| | 196 | command that has generated that result, the date and time that the scan has |
| | 197 | started and finished, a list of all scanned ports, etc.</para> |
| | 198 | </section> |
| | 199 | |
| | 200 | <section> |
| | 201 | <title>Host Details Tab</title> |
| | 202 | |
| | 203 | <para>This tab shows details regarding the host you have selected in the host list, |
| | 204 | while in <emphasis>Host Mode</emphasis>. The <emphasis>Host Details</emphasis> tab |
| | 205 | works the same way the <emphasis>Ports/Hosts</emphasis> page, letting you select |
| | 206 | one or more hosts at a time and having their details show at the same time there.</para> |
| | 207 | <para>If you're in <emphasis>Services Mode</emphasis>, this tab will show the details |
| | 208 | of the hosts that are providing the selected service.</para> |
| | 209 | |
| | 210 | <para>If you want to save any commentary for a given host, just click the <emphasis> |
| | 211 | Comments</emphasis> expander, and write the commentary inside the text input that |
| | 212 | will appear. If you save the scan result, the commentary will be saved as well.</para> |
| | 213 | |
| | 214 | <para>Two of the coolest features of Umit are the <empahsis>Operating System Icon |
| | 215 | </emphasis> and the <emphasis>Vulnerability Level Icon</emphasis>.</para> |
| | 216 | <para>If the scan |
| | 217 | has recognized the host's operating system, then an Icon representing the |
| | 218 | operating system is shown inside the host's detail. This helps you easily figure out |
| | 219 | what operating system is running in a given host in a glance.</para> |
| | 220 | <para>The <emphasis>Vulnerability Level Icon</emphasis> represents graphically |
| | 221 | the level of vulnerability of a given host, based in the number of open ports it |
| | 222 | have.</para> |
| | 223 | <para><emphasis>We, at Umit, know that the amount of open ports isn't an accure way to |
| | 224 | grade a host's vulnerability level, but at this time Umit doesn't feature a better |
| | 225 | and more accurate meaning for detecting the host's vulnerabilitty level.</emphasis></para> |
| | 226 | <para>There are five vulnerability levels, represented by the following icons ordered |
| | 227 | by the less vulnerable to the more vulnerable level: the <emphasis>vault</emphasis>, |
| | 228 | the <emphasis>chest</emphasis>, the <emphasis>box</emphasis>, the <emphasis>swiss |
| | 229 | cheese</emphasis> and the <emphasis>bomb</emphasis>.</para> |
