Difference between revisions of "Nmap scripts"

From SkullSpace Wiki
Jump to navigation Jump to search
Line 19: Line 19:
 
*** Metasploit XML-RPC interface
 
*** Metasploit XML-RPC interface
 
*** Nessus daemon
 
*** Nessus daemon
 +
*** TFTP paths
 
* Dropbox LanSync broadcast ([http://seclists.org/nmap-dev/2010/q4/689 submitted])
 
* Dropbox LanSync broadcast ([http://seclists.org/nmap-dev/2010/q4/689 submitted])
 
* Exim
 
* Exim

Revision as of 07:30, 26 December 2010

  • Bruteforce framework improvements
    • Handle arbitrary number of inputs (e.g., username, password, repository)
    • Handle arbitrary number of dictionaries per input
    • Handle arbitrary number of command-line literal strings for inputs
    • Store tables with successful inputs in registry
    • Scripts to write:
      • CVS pserver (started)
      • SVN (port to framework)
      • Git (port to framework)
      • Monotone
      • Mercurial
      • Bazaar
      • DNSrecon [1]
      • Synergy (bruteforce, maybe)
      • NRPE (submitted, but not bruteforce)
      • IMAP
      • SNMP (port to framework)
      • POP (port to framework)
      • Metasploit XML-RPC interface
      • Nessus daemon
      • TFTP paths
  • Dropbox LanSync broadcast (submitted)
  • Exim
    • Exploit
  • http spider
    • Needs finishing
  • Signatures for http-enum web apps
  • SNMP BSSID
  • Update brute scripts to use brute.lua
  • SOAP library
  • Debian OpenSSL blacklist [2]
  • PostgreSQL info
  • My IP neighbours
  • Geolocation
  • Bonjour
  • Nbstat.nse -> change to using a broadcast prerule
  • IPv6 stuff
    • Neighbour Discovery
    • Router Solicitation
  • 802.1X / EAP
  • SSL renegotiation [3]
  • Microsoft hidden SSL certs [4]
  • Linux local commands over ssh
  • Windows installed software (registry/uninstall)
    • Prefetch
  • Windows MSRPC clone of rpcinfo.nse
  • DCOM
  • WMI - hard++
Retrieved from "https://wiki.skullspace.ca/index.php?title=Nmap_scripts&oldid=468"