Import Sessions from network scan

Unfortunately we don't have the network scan import. I don't know if it's possible to do it with a tool or a powershell and get a report?

Suppose you could use nmap and then parse the result

What is the format of nmap?

Depends on the way you scan. Simple example, XXX by me:

nmap -v -sP XXX.YYY.ZZ.87/28

Starting Nmap 5.00 ( http://nmap.org ) at 2013-10-27 16:26 CET
NSE: Loaded 0 scripts for scanning.
Initiating ARP Ping Scan at 16:26
Scanning 7 hosts [1 port/host]
Completed ARP Ping Scan at 16:26, 0.34s elapsed (7 total hosts)
Initiating Parallel DNS resolution of 7 hosts. at 16:26
Completed Parallel DNS resolution of 7 hosts. at 16:26, 0.00s elapsed
Host XXX.YYY.ZZ.80 is down.
Host J.balblu.com (XXX.YYY.ZZ.81) is up (0.0015s latency).
MAC Address: 00:A0:12:BB:CC:DD (B.a.t.m. Advanced Technologies)
Host I.balblu.com (XXX.YYY.ZZ.82) is up (0.000086s latency).
MAC Address: 00:1D:09:BB:CC:DD (Dell)
Host H.balblu.com (XXX.YYY.ZZ.83) is up (0.000073s latency).
MAC Address: 00:13:D4:BB:CC:DD (Asustek Computer)
Host G.balblu.com (XXX.YYY.ZZ.84) is up (0.00020s latency).
MAC Address: 00:1E:C9:BB:CC:DD (Dell)
Host XXX.YYY.ZZ.85 is down.
Host XXX.YYY.ZZ.86 is down.
Host F.balblu.com (XXX.YYY.ZZ.87) is up.
Initiating ARP Ping Scan at 16:26
Scanning 8 hosts [1 port/host]
Completed ARP Ping Scan at 16:26, 0.30s elapsed (8 total hosts)
Initiating Parallel DNS resolution of 8 hosts. at 16:26
Completed Parallel DNS resolution of 8 hosts. at 16:26, 0.00s elapsed
Host E.balblu.com (XXX.YYY.ZZ.88) is up (0.00010s latency).
MAC Address: 00:1E:4F:BB:CC:DD (Dell)
Host D.balblu.com (XXX.YYY.ZZ.89) is up (0.00010s latency).
MAC Address: 00:30:48:BB:CC:DD (Supermicro Computer)
Host C.balblu.com (XXX.YYY.ZZ.90) is up (0.00012s latency).
MAC Address: 00:30:48:BB:CC:DD (Supermicro Computer)
Host B.balblu.com (XXX.YYY.ZZ.91) is up (0.00049s latency).
MAC Address: 00:0C:29:BB:CC:DD (VMware)
Host A.balblu.com (XXX.YYY.ZZ.92) is up (0.00012s latency).
MAC Address: 00:15:17:BB:CC:DD (Intel Corporate)
Host XXX.YYY.ZZ.93 is up (0.00011s latency).
MAC Address: 00:25:90:BB:CC:DD (Super Micro Computer)
Host XXX.YYY.ZZ.94 is down.
Host XXX.YYY.ZZ.95 is down.
Read data files from: /usr/share/nmap
Nmap done: 16 IP addresses (11 hosts up) scanned in 1.02 seconds
Raw packets sent: 20 (840B) | Rcvd: 10 (420B)

It's really interesting. Does it support to send the result directly to a file or you need to execute it in the command line with the output redirection?

OUTPUT:
-oN/-oX/-oS/-oG <file>: Output scan in normal, XML, s<rIpt kIddi3,
and Grepable format, respectively, to the given filename.
-oA <basename>: Output in the three major formats at once
-v: Increase verbosity level (use -vv or more for greater effect)
-d: Increase debugging level (use -dd or more for greater effect)
--reason: Display the reason a port is in a particular state
--open: Only show open (or possibly open) ports
--packet-trace: Show all packets sent and received
--iflist: Print host interfaces and routes (for debugging)
--log-errors: Log errors/warnings to the normal-format output file
--append-output: Append to rather than clobber specified output files
--resume <filename>: Resume an aborted scan
--stylesheet <path/URL>: XSL stylesheet to transform XML output to HTML
--webxml: Reference stylesheet from Nmap.Org for more portable XML
--no-stylesheet: Prevent associating of XSL stylesheet w/XML output

Great!

+1 for this...the ability to import from network scans (a user defined ip range, ideally) would be a definite plus for this program.

We will raise the priority. It seems to be a very popular feature

I'm coming from using VNC Manager (from SmartCode)...I'm just looking at what else is out there right now, but for what it's worth, VNC Manager lets you have a "dynamic search folder" in your tree, which you can define to scan your network (automatically, at what ever interval you like)...it's a handy feature that lets you see what's currently on your network. Anyway, just throwing that info out there!

Does it automatically add the entry when a new device is found?

It doesn't automatically, but you can select one (of any number of them) and then add it to any other folder....it works out that it's a nice fast way to create a database. Along with setting your subnets and scan criteria, these dynamic folders also have credentials that are applied to everything inside, so If you want, you don't even need to use regular folders.

What would also be cool with this is if you could filter by the manufacturer portion of the MAC address.

Hi guys,
I'm currently implementing a network scan. This will be in the next beta release and in RDM 9.1

Hello David,
have you really implemented a Network scan already?
I couldnt find anything about this.

It's in the beta release in File-> Import -- Import from Network Scan