From 50ac2bfca9c13fe7efaea4eb482c3473ab439095 Mon Sep 17 00:00:00 2001
From: fyodor <fyodor@e0a8ed71-7df4-0310-8962-fdc924857419>
Date: Thu, 5 Aug 2010 21:50:58 +0000
Subject: [PATCH] add an idea from Drazen

---
 todo/nmap.txt | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/todo/nmap.txt b/todo/nmap.txt
index c235fb89d..1288d609a 100644
--- a/todo/nmap.txt
+++ b/todo/nmap.txt
@@ -157,6 +157,9 @@ o Further brainstorm and consider implementing more prerule/postrule
      port numbers individually and the hosts which had that port open
      (e.g. so you can see all the ssh servers at once, etc.)
      Admittedly you can do that pretty easy with Zenmap instead.
+   o We could have a prerule sniffer script which uses pcap to sniff
+     traffic for some short configurable amount of time and then adds the
+     discovered hosts to the target list.
    o [Implemented] dns-zone-transfer
    o [Implemented, but a joke] http-california-plates