Jump to content
Search In
  • More options...
Find results that contain...
Find results in...

Oh, the Irony! Chrome is Blocking Security Tool Nmap Downloads Considering it a Security Threat

Summary

 

Google's Safe Browsing service blocked Nmap downloads labelling it as a threat.

 

Quotes

Quote

Google Chrome blocked all Nmap downloads using its Safe Browsing service by labelling it as a threat.

Even though this has been fixed quickly. For many visitors trying to download the tool, this must have been confusing. A software that’s more than a decade old is now suddenly considered as a threat?

 

My thoughts

Google Safe Browsing is getting safer! 😉

 

Sources

https://news.itsfoss.com/google-blocked-nmap-downloads/

Link to post
Share on other sites

Eh, I can see why an automated system could classify nmap as a hazard. Obviously, it doesn't do anything bad, but the behavioural patterns it emits could e.g. resemble a networked worm at work.

Hand, n. A singular instrument worn at the end of the human arm and commonly thrust into somebody’s pocket.

Link to post
Share on other sites
1 minute ago, WereCatf said:

Eh, I can see why an automated system could classify nmap as a hazard. Obviously, it doesn't do anything bad, but the behavioural patterns it emits could e.g. resemble a networked worm at work.

 

Hmm, true that, but it's not a new tool, though.

Link to post
Share on other sites
1 minute ago, ThatOneDunce said:

nm*p? Sounds like hate speech to me!

Wait, What? I had no idea about that! 🙄

Link to post
Share on other sites
Just now, Batman 007 said:

Hmm, true that, but it's not a new tool, though.

How's an automated system supposed to know what is new and what is old? And should it just ignore files that seem like they'd belong to an "old" project?

Hand, n. A singular instrument worn at the end of the human arm and commonly thrust into somebody’s pocket.

Link to post
Share on other sites

for the uninformed Nmap sends tcp or udp connections to a wide range of ports to check if they're open, filtered, or closed. You're supposed to have direct permission before scanning a target as an nmap scan can be labeled as abuse, or look like a worm as said above.

AMD blackout rig

 

cpu: ryzen 5 3600 @4.4ghz @1.35v

gpu: rx5700xt 2200mhz

ram: vengeance lpx c15 3200mhz

mobo: gigabyte b550 auros pro 

psu: cooler master mwe 650w

case: masterbox mbx520

fans:Noctua industrial 3000rpm x6

 

 

Link to post
Share on other sites
1 minute ago, WereCatf said:

How's an automated system supposed to know what is new and what is old? And should it just ignore files that seem like they'd belong to an "old" project?

Ah yes. I guess that's a trade-off with automated systems.

Link to post
Share on other sites
1 minute ago, WereCatf said:

How's an automated system supposed to know what is new and what is old? And should it just ignore files that seem like they'd belong to an "old" project?

An automated system still needs to be curated otherwise it's literally useless (which it in Googles case mostly is btw) 

RYZEN 5 3600 @ 4.2 GHz AUTO | GIGABYTE 3070 VISION OC @ 0.930 V 1965 Hz CORE 7100 MEMORY | 16GB CORSAIR VENGEANCE LPX 3200 DDR4 | MSI B350M MORTAR | 250GB SAMSUNG EVO 860 | 4TB TOSHIBA X 300 | 1TB TOSHIBA SSHD | 120GB KINGSTON SSD | WINDOWS 10 PRO 1809 FOREVER™ | INWIN 301| CORSAIR RM650I | MSI MAG274QRF @120 Hz 2560x1440 ADAPTIVE SYNC | LOGITECH Z906 | DELL KB216T | LOGITECH M185 | SONY DUALSHOCK 4

 

LENOVO IDEAPAD 510 | i5 7200U | 8GB DDR4 | NVIDIA GEFORCE 940MX | 2TB TOSHIBA L200 | WIN 🔟 LITE 

Link to post
Share on other sites
Just now, Mark Kaine said:

An automated system still needs to be curated otherwise it's literally useless (which it in Googles case mostly is btw) 

Of course, but this seems like a case where they did some updates on the engine and accidentally broke one or more exceptions they had added for software like nmap. These kinds of things happen quite easily, but they're also typically easily fixable, since the exception is already there -- just need to figure out what part of the update broke it and fix that.

Hand, n. A singular instrument worn at the end of the human arm and commonly thrust into somebody’s pocket.

Link to post
Share on other sites
5 minutes ago, Letgomyleghoe said:

sends tcp connections

Minor nitpick: it can also be used for UDP-scanning as well.

Hand, n. A singular instrument worn at the end of the human arm and commonly thrust into somebody’s pocket.

Link to post
Share on other sites
5 minutes ago, WereCatf said:

Minor nitpick: it can also be used for UDP-scanning as well.

yep, my bad. editing now thank you lol.

AMD blackout rig

 

cpu: ryzen 5 3600 @4.4ghz @1.35v

gpu: rx5700xt 2200mhz

ram: vengeance lpx c15 3200mhz

mobo: gigabyte b550 auros pro 

psu: cooler master mwe 650w

case: masterbox mbx520

fans:Noctua industrial 3000rpm x6

 

 

Link to post
Share on other sites
1 hour ago, WereCatf said:

Of course, but this seems like a case where they did some updates on the engine and accidentally broke one or more exceptions they had added for software like nmap. These kinds of things happen quite easily, but they're also typically easily fixable, since the exception is already there -- just need to figure out what part of the update broke it and fix that.

yeah, I misunderstood it that you meant no one ever looks at these since it's "automated" but yeah those things happen and mostly get rectified pretty quickly, same with windows defender... I just often perceive it as "useless" because I wanna download a mod or something and it doesn't let me! (although you can force it to download anyways...) 

RYZEN 5 3600 @ 4.2 GHz AUTO | GIGABYTE 3070 VISION OC @ 0.930 V 1965 Hz CORE 7100 MEMORY | 16GB CORSAIR VENGEANCE LPX 3200 DDR4 | MSI B350M MORTAR | 250GB SAMSUNG EVO 860 | 4TB TOSHIBA X 300 | 1TB TOSHIBA SSHD | 120GB KINGSTON SSD | WINDOWS 10 PRO 1809 FOREVER™ | INWIN 301| CORSAIR RM650I | MSI MAG274QRF @120 Hz 2560x1440 ADAPTIVE SYNC | LOGITECH Z906 | DELL KB216T | LOGITECH M185 | SONY DUALSHOCK 4

 

LENOVO IDEAPAD 510 | i5 7200U | 8GB DDR4 | NVIDIA GEFORCE 940MX | 2TB TOSHIBA L200 | WIN 🔟 LITE 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×