Nmap scripts: Unterschied zwischen den Versionen

Aus Xinux Wiki
Zur Navigation springen Zur Suche springen
 
(21 dazwischenliegende Versionen von 3 Benutzern werden nicht angezeigt)
Zeile 3: Zeile 3:
 
=Finding Vulnerability Scanning Scripts=
 
=Finding Vulnerability Scanning Scripts=
 
*locate *vuln*.nse
 
*locate *vuln*.nse
 +
oder besser
 +
*cd /usr/share/nmap/scripts
 +
*ls
  
=Help with a script=
+
=help=
*nmap --script-help=nfs-showmount.nse
+
*[[nmap-scripts-help]]
<pre>
+
 
Starting Nmap 7.60 ( https://nmap.org ) at 2017-11-13 07:26 CET
+
=ssh misc=
 +
*[[nmap-scripts-ssh]]
 +
 
 +
=ssl misc=
 +
*[[nmap-scripts-ssl]]
 +
=smtp misc=
 +
*[[nmap-scripts-smtp]]
 +
=proxy misc=
 +
*[[nmap-scripts-proxy]]
 +
 
 +
=http misc=
 +
*[[nmap-scripts-http]]
 +
=wordpress-version misc=
 +
*[[nmap-scripts-wordpress-version]]
 +
 
 +
 
 +
 
 +
=Alle Schwachstellen=
 +
*nmap -sV --script vulners 10.0.10.104
  
nfs-showmount
 
Categories: discovery safe
 
https://nmap.org/nsedoc/scripts/nfs-showmount.html
 
  Shows NFS exports, like the <code>showmount -e</code> command.
 
</pre>
 
  
 
=NFS Check=
 
=NFS Check=
Zeile 22: Zeile 38:
 
=Traceroute Geolocation=
 
=Traceroute Geolocation=
 
*nmap --traceroute  --script traceroute-geolocation.nse -p 80 www.facebook.com
 
*nmap --traceroute  --script traceroute-geolocation.nse -p 80 www.facebook.com
=Show HTTP Title=
+
=FTP Bannergrabbing=
*nmap --script http-title -sV -p 443  10.3.4.12
+
*nmap -sV -p 21 --script=banner 10.3.4.12
=Find Files or interestings Dirs on Webserver=
+
 
*nmap --script http-enum -p 443 10.3.4.12
 
 
=Update the Script Database=
 
=Update the Script Database=
 
*nmap --script-updatedb
 
*nmap --script-updatedb
Zeile 33: Zeile 48:
 
*http://resources.infosecinstitute.com/nmap-scripting-example/#gref
 
*http://resources.infosecinstitute.com/nmap-scripting-example/#gref
 
*https://null-byte.wonderhowto.com/how-to/hack-like-pro-using-nmap-scripting-engine-nse-for-reconnaissance-0158681/
 
*https://null-byte.wonderhowto.com/how-to/hack-like-pro-using-nmap-scripting-engine-nse-for-reconnaissance-0158681/
 +
*https://pentestlab.blog/2012/03/08/nmap-scripting-engine-basic-usage-2/

Aktuelle Version vom 1. März 2023, 04:13 Uhr

Locate the scripts

  • locate nse | grep scripts

Finding Vulnerability Scanning Scripts

  • locate *vuln*.nse

oder besser

  • cd /usr/share/nmap/scripts
  • ls

help

ssh misc

ssl misc

smtp misc

proxy misc

http misc

wordpress-version misc


Alle Schwachstellen

  • nmap -sV --script vulners 10.0.10.104


NFS Check

  • nmap -sV --script=nfs-showmount.nse 10.82.10.40

SMB Check

  • nmap -p 445 --script smb-os-discovery 10.82.10.40

Traceroute Geolocation

  • nmap --traceroute --script traceroute-geolocation.nse -p 80 www.facebook.com

FTP Bannergrabbing

  • nmap -sV -p 21 --script=banner 10.3.4.12

Update the Script Database

  • nmap --script-updatedb

links

Abgerufen von „http://wiki.ixheim.de/index.php?title=Nmap_scripts&oldid=42582