Locate the scripts

locate nse | grep scripts

Finding Vulnerability Scanning Scripts

locate *vuln*.nse

oder besser

cd /usr/share/nmap/scripts
ls

help

ssh-hostkey

nmap --script-help=ssh-hostkey

nfs-showmount

nmap --script-help=nfs-showmount.nse

ssh misc

Fingerprint der Hostkeys

nmap  --script ssh-hostkey 192.168.34.1

Welche Authentifizierungsmethoden werden unterstützt

nmap  --script ssh-auth-methods 192.168.34.1

Welche Cipher-Suits werden unterstützt

nmap  --script ssh2-enum-algos 192.168.34.1

ssh Bruteforce

nmap  --script ssh-brute 192.168.34.1

Nmap-scripts-ssl

Welche Certs werden angeboten

nmap  --script ssl-cert.nse  192.168.34.1 -p 993

Welche Cipher Suits werden angeboten

• nmap -sV --script ssl-enum-ciphers 192.168.34.1 -p 993

smtp misc

nmap --script smtp-open-relay.nse ox.xinux.org -p 25  

Welche Kommandos werden vom Mailserver unterstützt

nmap  --script smtp-commands ox.xinux.org -p 25

User auf dem Mailsystem herausfinden

nmap  --script smtp-enum-users ox.xinux.org -p 25

proxy misc

nmap-scripts-proxy

http misc

• nmap-scripts-http

wordpress-version misc

• nmap-scripts-wordpress-version

Alle Schwachstellen

• nmap -sV --script vulners 10.0.10.104

NFS Check

• nmap -sV --script=nfs-showmount.nse 10.82.10.40

SMB Check

• nmap -p 445 --script smb-os-discovery 10.82.10.40

Traceroute Geolocation

• nmap --traceroute --script traceroute-geolocation.nse -p 80 www.facebook.com

FTP Bannergrabbing

• nmap -sV -p 21 --script=banner 10.3.4.12

Update the Script Database

• nmap --script-updatedb

links

• https://hackertarget.com/7-nmap-nse-scripts-recon/
• http://resources.infosecinstitute.com/nmap-scripting-example/#gref
• https://null-byte.wonderhowto.com/how-to/hack-like-pro-using-nmap-scripting-engine-nse-for-reconnaissance-0158681/
• https://pentestlab.blog/2012/03/08/nmap-scripting-engine-basic-usage-2/