OXIESEC PANEL
- Current Dir:
/
/
usr
/
share
/
nmap
/
scripts
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
08/07/2020 12:36:00 PM
rwxr-xr-x
📄
acarsd-info.nse
3.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
address-info.nse
8.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-brute.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-ls.nse
6.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-path-vuln.nse
6.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-serverinfo.nse
5.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-showmount.nse
2.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-auth.nse
2.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-brute.nse
2.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-headers.nse
1.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-methods.nse
2.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-request.nse
2.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
allseeingeye-info.nse
6.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
amqp-info.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
asn-query.nse
14.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
auth-owners.nse
2.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
auth-spoof.nse
870 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
backorifice-brute.nse
9.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
backorifice-info.nse
9.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bacnet-info.nse
40.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
banner.nse
5.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoin-getaddr.nse
1.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoin-info.nse
1.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoinrpc-info.nse
4.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bittorrent-discovery.nse
3.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bjnp-discover.nse
1.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ataoe-discover.nse
4.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-avahi-dos.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-bjnp-discover.nse
4.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-db2-discover.nse
2.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dhcp-discover.nse
7.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dhcp6-discover.nse
3.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dns-service-discovery.nse
1.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dropbox-listener.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-eigrp-discovery.nse
11.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-igmp-discovery.nse
14.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-listener.nse
10.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ms-sql-discover.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-netbios-master-browser.nse
1.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-networker-discover.nse
2.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-novell-locate.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ospf2-discover.nse
16.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pc-anywhere.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pc-duo.nse
3.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pim-discovery.nse
5.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ping.nse
8.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pppoe-discover.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-rip-discover.nse
4.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ripng-discover.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-sonicwall-discover.nse
3.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-sybase-asa-discover.nse
5.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-tellstick-discover.nse
1.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-upnp-info.nse
1.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-versant-locate.nse
924 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wake-on-lan.nse
2.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wpad-discover.nse
7.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wsdd-discover.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-xdmcp-discover.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cassandra-brute.nse
3.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cassandra-info.nse
2.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cccam-version.nse
1.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-enum.nse
17.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-info.nse
13.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-user-brute.nse
10.6 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-user-enum.nse
9.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-brute-xml.nse
4.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-apps-xml.nse
4.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-apps.nse
4.09 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-servers-xml.nse
1.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-servers.nse
3.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
clamav-exec.nse
6.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
clock-skew.nse
5.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
coap-resources.nse
9.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
couchdb-databases.nse
2.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
couchdb-stats.nse
8.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
creds-summary.nse
1.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cups-info.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cups-queue-info.nse
1.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cvs-brute-repository.nse
3.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cvs-brute.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
daap-get-library.nse
9.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
daytime.nse
595 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
db2-das-info.nse
14.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dhcp-discover.nse
6.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dict-info.nse
2.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
distcc-cve2004-2687.nse
3.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-blacklist.nse
5.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-brute.nse
9.7 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-cache-snoop.nse
6.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-check-zone.nse
14.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-client-subnet-scan.nse
14.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-fuzz.nse
10.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-ip6-arpa-scan.nse
3.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsec-enum.nse
10.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsec3-enum.nse
12.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsid.nse
3.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-random-srcport.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-random-txid.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-recursion.nse
1.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-service-discovery.nse
2.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-srv-enum.nse
5.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-update.nse
5.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-zeustracker.nse
2.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-zone-transfer.nse
26.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
docker-version.nse
1.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domcon-brute.nse
3.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domcon-cmd.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domino-enum-users.nse
4.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dpap-brute.nse
2.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
drda-brute.nse
5.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
drda-info.nse
3.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
duplicates.nse
7.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
eap-info.nse
5.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
enip-info.nse
48.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
epmd-info.nse
1.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
eppc-enum-processes.nse
2.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fcrdns.nse
3.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
finger.nse
1.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fingerprint-strings.nse
3.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
firewalk.nse
28.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
firewall-bypass.nse
8.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
flume-master-info.nse
10.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fox-info.nse
3.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
freelancer-info.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-anon.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-bounce.nse
3.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-brute.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-libopie.nse
3.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-proftpd-backdoor.nse
3.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-syst.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-vsftpd-backdoor.nse
5.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-vuln-cve2010-4221.nse
5.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ganglia-info.nse
7.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
giop-info.nse
1.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gkrellm-info.nse
6.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gopher-ls.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gpsd-info.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-datanode-info.nse
1.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-jobtracker-info.nse
6.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-namenode-info.nse
6.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-secondary-namenode-info.nse
4.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-tasktracker-info.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hbase-master-info.nse
5.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hbase-region-info.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hddtemp-info.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hnap-info.nse
4.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-bfk.nse
3.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-ip2hosts.nse
3.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-robtex.nse
1.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-adobe-coldfusion-apsa1301.nse
2.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-affiliate-id.nse
4.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-apache-negotiation.nse
1.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-apache-server-status.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-aspnet-debug.nse
1.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-auth-finder.nse
3.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-auth.nse
3.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-avaya-ipoffice-users.nse
2.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-awstatstotals-exec.nse
4.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-axis2-dir-traversal.nse
6.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-backup-finder.nse
5.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-barracuda-dir-traversal.nse
6.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-brute.nse
4.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cakephp-version.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-chrono.nse
4.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cisco-anyconnect.nse
1.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-coldfusion-subzero.nse
5.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-comments-displayer.nse
4.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-config-backup.nse
7.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cookie-flags.nse
5.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cors.nse
2.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cross-domain-policy.nse
13.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-csrf.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-date.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-default-accounts.nse
13.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-devframework.nse
4.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-dlink-backdoor.nse
2.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-dombased-xss.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-domino-enum-passwords.nse
13.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-drupal-enum-users.nse
2.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-drupal-enum.nse
6.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-enum.nse
19.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-errors.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-exif-spider.nse
20.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-favicon.nse
5.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-feed.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-fetch.nse
8.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-fileupload-exploiter.nse
10.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-form-brute.nse
20.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-form-fuzzer.nse
8.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-frontpage-login.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-generator.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-git.nse
11.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-gitweb-projects-enum.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-google-malware.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-grep.nse
11.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-headers.nse
1.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-huawei-hg5xx-vuln.nse
6.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-icloud-findmyiphone.nse
2.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-icloud-sendmsg.nse
3.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-iis-short-name-brute.nse
5.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-iis-webdav-vuln.nse
7.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-internal-ip-disclosure.nse
2.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-joomla-brute.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-litespeed-sourcecode-download.nse
2.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-ls.nse
5.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-majordomo2-dir-traversal.nse
3.17 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-malware-host.nse
2.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-mcmp.nse
3.62 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-method-tamper.nse
6.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-methods.nse
7.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-mobileversion-checker.nse
2.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-ntlm-info.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-open-proxy.nse
8.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-open-redirect.nse
4.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-passwd.nse
6.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-php-version.nse
6.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-phpmyadmin-dir-traversal.nse
5.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-phpself-xss.nse
5.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-proxy-brute.nse
3.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-put.nse
1.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-qnap-nas-info.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-referer-checker.nse
2.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-rfi-spider.nse
9.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robots.txt.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robtex-reverse-ip.nse
2.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robtex-shared-ns.nse
2.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-security-headers.nse
15.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-server-header.nse
2.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-shellshock.nse
5.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-sitemap-generator.nse
5.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-slowloris-check.nse
5.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-slowloris.nse
10.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-sql-injection.nse
9.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-stored-xss.nse
8.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-svn-enum.nse
3.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-svn-info.nse
4.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-title.nse
2.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-tplink-dir-traversal.nse
5.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-trace.nse
1.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-traceroute.nse
5.17 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-unsafe-output-escaping.nse
5.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-useragent-tester.nse
5.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-userdir-enum.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vhosts.nse
5.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-virustotal.nse
10.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vlcstreamer-ls.nse
2.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vmware-path-vuln.nse
4.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2006-3392.nse
3.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2009-3960.nse
6.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2010-0738.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2010-2861.nse
5.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2011-3192.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2011-3368.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2012-1823.nse
4.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-0156.nse
4.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-6786.nse
2.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-7091.nse
4.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2126.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2127.nse
3.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2128.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2129.nse
2.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-3704.nse
13.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-8877.nse
4.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2015-1427.nse
7.62 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2015-1635.nse
3.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-1001000.nse
4.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-5638.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-5689.nse
5.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-8917.nse
5.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-misfortune-cookie.nse
2.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-wnr1000-creds.nse
4.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-waf-detect.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-waf-fingerprint.nse
18.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-webdav-scan.nse
5.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-brute.nse
4.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-enum.nse
10.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-users.nse
4.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-xssed.nse
2.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iax2-brute.nse
2.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iax2-version.nse
1.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
icap-info.nse
3.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iec-identify.nse
4.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ike-version.nse
4.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-brute.nse
4.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-capabilities.nse
1.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-ntlm-info.nse
5.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
impress-remote-discover.nse
6.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-brute.nse
2.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-query.nse
3.33 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-tables.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-forwarding.nse
3.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-geoplugin.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-ipinfodb.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-bing.nse
5.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-google.nse
5.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-kml.nse
2.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-maxmind.nse
22.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-https-discover.nse
2.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipidseq.nse
5.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-brute.nse
3.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-cipher-zero.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-version.nse
3.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-multicast-mld-list.nse
16.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-node-info.nse
8.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-ra-flood.nse
6.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-botnet-channels.nse
6.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-brute.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-info.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-sasl-brute.nse
6.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-unrealircd-backdoor.nse
8.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iscsi-brute.nse
2.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iscsi-info.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
isns-info.nse
1.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-exec.nse
3.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-info.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-inject.nse
3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-version.nse
2.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
knx-gateway-discover.nse
11.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
knx-gateway-info.nse
7 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
krb5-enum-users.nse
12.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-brute.nse
13.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-novell-getpass.nse
4.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-rootdse.nse
9.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-search.nse
12.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
lexmark-config.nse
2.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
llmnr-resolve.nse
6.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
lltd-discovery.nse
9.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
maxdb-info.nse
6.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mcafee-epo-agent.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
membase-brute.nse
2.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
membase-http-info.nse
4.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
memcached-info.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-info.nse
9.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-msgrpc-brute.nse
3.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-xmlrpc-brute.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mikrotik-routeros-brute.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mmouse-brute.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mmouse-exec.nse
5.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
modbus-discover.nse
5.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-brute.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-databases.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-info.nse
3.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mqtt-subscribe.nse
14.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mrinfo.nse
9.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-brute.nse
11.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-config.nse
5.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-dac.nse
3.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-dump-hashes.nse
4.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-empty-password.nse
6.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-hasdbaccess.nse
5.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-info.nse
11.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-ntlm-info.nse
3.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-query.nse
4.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-tables.nse
9.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-xp-cmdshell.nse
6.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
msrpc-enum.nse
3.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mtrace.nse
12.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
murmur-version.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-audit.nse
6.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-brute.nse
2.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-databases.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-dump-hashes.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-empty-password.nse
1.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-enum.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-info.nse
3.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-query.nse
3.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-users.nse
2.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-variables.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-vuln-cve2012-2122.nse
6.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nat-pmp-info.nse
1.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nat-pmp-mapport.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nbstat.nse
7.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ncp-enum-users.nse
1.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ncp-serverinfo.nse
1.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ndmp-fs-info.nse
2.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ndmp-version.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nessus-brute.nse
4.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nessus-xmlrpc-brute.nse
4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-auth-bypass.nse
1.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-brute.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-info.nse
5.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-version.nse
1.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nexpose-brute.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-ls.nse
14.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-showmount.nse
2.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-statfs.nse
9.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nje-node-brute.nse
6.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nje-pass-brute.nse
6.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nntp-ntlm-info.nse
5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nping-brute.nse
3.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nrpe-enum.nse
7.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ntp-info.nse
6.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ntp-monlist.nse
32.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omp2-brute.nse
2.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omp2-enum-targets.nse
3.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omron-info.nse
6.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openlookup-info.nse
5.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openvas-otp-brute.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openwebnet-discovery.nse
6.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-brute-stealth.nse
6.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-brute.nse
7.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-enum-users.nse
3.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-sid-brute.nse
4.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-tns-version.nse
2.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ovs-agent-version.nse
2.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
p2p-conficker.nse
21.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
path-mtu.nse
9.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pcanywhere-brute.nse
5.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pcworx-info.nse
3.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pgsql-brute.nse
5.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pjl-ready-message.nse
2.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-brute.nse
3.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-capabilities.nse
1.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-ntlm-info.nse
4.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pptp-version.nse
3.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
puppet-naivesigning.nse
8.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
qconn-exec.nse
4.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
qscan.nse
14.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake1-info.nse
10.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake3-info.nse
6.6 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake3-master-getservers.nse
7.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rdp-enum-encryption.nse
4.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rdp-vuln-ms12-020.nse
8.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
realvnc-auth-bypass.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
redis-brute.nse
2.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
redis-info.nse
6.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
resolveall.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
reverse-index.nse
4.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rexec-brute.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rfc868-time.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
riak-http-info.nse
5.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rlogin-brute.nse
4.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rmi-dumpregistry.nse
10.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rmi-vuln-classloader.nse
3.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpc-grind.nse
8.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcap-brute.nse
2.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcap-info.nse
2.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcinfo.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rsync-brute.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rsync-list-modules.nse
1.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rtsp-methods.nse
1.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rtsp-url-brute.nse
5.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rusers.nse
5.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
s7-info.nse
9.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
samba-vuln-cve-2012-1182.nse
4.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
script.db
48.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
servicetags.nse
8.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
shodan-api.nse
6.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-brute.nse
3.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-call-spoof.nse
5.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-enum-users.nse
8.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-methods.nse
1.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
skypev2-version.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-brute.nse
44.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-double-pulsar-backdoor.nse
5.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-domains.nse
4.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-groups.nse
5.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-processes.nse
7.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-sessions.nse
11.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-shares.nse
6.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-users.nse
12.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-flood.nse
1.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-ls.nse
7.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-mbenum.nse
8.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-os-discovery.nse
7.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-print-text.nse
4.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-protocols.nse
1.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-psexec.nse
62.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-security-mode.nse
5.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-server-stats.nse
2.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-system-info.nse
13.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-conficker.nse
7.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-cve-2017-7494.nse
22.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-cve2009-3103.nse
6.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms06-025.nse
6.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms07-029.nse
5.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms08-067.nse
5.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms10-054.nse
5.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms10-061.nse
7.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms17-010.nse
6.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-regsvc-dos.nse
4.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-capabilities.nse
3.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-security-mode.nse
3.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-time.nse
1.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-vuln-uptime.nse
5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-brute.nse
4.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-commands.nse
4.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-enum-users.nse
11.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-ntlm-info.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-open-relay.nse
9.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-strangeport.nse
716 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2010-4344.nse
14.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2011-1720.nse
7.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2011-1764.nse
7.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sniffer-detect.nse
4.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-brute.nse
7.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-hh3c-logins.nse
4.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-info.nse
5.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-interfaces.nse
27.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-ios-config.nse
5.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-netstat.nse
4.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-processes.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-sysdescr.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-services.nse
2.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-shares.nse
2.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-software.nse
4.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-users.nse
1.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-auth-info.nse
1.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-brute.nse
2.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-open-proxy.nse
6.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-auth-methods.nse
1.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-brute.nse
3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-hostkey.nse
15.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-publickey-acceptance.nse
4.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-run.nse
2.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh2-enum-algos.nse
5.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sshv1.nse
1.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-ccs-injection.nse
8.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-cert-intaddr.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-cert.nse
8.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-date.nse
6.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-dh-params.nse
38.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-enum-ciphers.nse
39.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-heartbleed.nse
7.65 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-known-key.nse
4.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-poodle.nse
11.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sslv2-drown.nse
10.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sslv2.nse
1.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sstp-discover.nse
2.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stun-info.nse
1.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stun-version.nse
1.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stuxnet-detect.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
supermicro-ipmi-conf.nse
3.65 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
svn-brute.nse
7.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-asn.nse
2.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-map4to6.nse
7.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-echo.nse
4.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-invalid-dst.nse
6.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-mld.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-slaac.nse
9.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-wordlist.nse
9.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-sniffer.nse
4.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-traceroute.nse
1.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-xml.nse
3.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
teamspeak2-version.nse
2.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-brute.nse
19.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-encryption.nse
2.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-ntlm-info.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tftp-enum.nse
5.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tls-nextprotoneg.nse
3.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tls-ticketbleed.nse
11.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tn3270-screen.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tor-consensus-checker.nse
3.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
traceroute-geolocation.nse
5.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tso-brute.nse
12.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tso-enum.nse
9.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
unittest.nse
895 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
unusual-port.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
upnp-info.nse
1.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
url-snarf.nse
4.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ventrilo-info.nse
24.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
versant-info.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vmauthd-brute.nse
3.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vmware-version.nse
2.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-brute.nse
4.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-info.nse
4.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-title.nse
2.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
voldemort-info.nse
5.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vtam-enum.nse
10 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vuze-dht-info.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
wdb-version.nse
7.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
weblogic-t3-info.nse
3.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
whois-domain.nse
4.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
whois-ip.nse
87.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
wsdd-discover.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
x11-access.nse
2.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xdmcp-discover.nse
2.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmlrpc-methods.nse
4.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmpp-brute.nse
4.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmpp-info.nse
16.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
Editing: cics-enum.nse
Close
local nmap = require "nmap" local stdnse = require "stdnse" local shortport = require "shortport" local tn3270 = require "tn3270" local brute = require "brute" local creds = require "creds" local unpwdb = require "unpwdb" local io = require "io" local table = require "table" local string = require "string" description = [[ CICS transaction ID enumerator for IBM mainframes. This script is based on mainframe_brute by Dominic White (https://github.com/sensepost/mainframe_brute). However, this script doesn't rely on any third party libraries or tools and instead uses the NSE TN3270 library which emulates a TN3270 screen in lua. CICS only allows for 4 byte transaction IDs, that is the only specific rule found for CICS transaction IDs. ]] --- -- @args idlist Path to list of transaction IDs. -- Defaults to the list of CICS transactions from IBM. -- @args cics-enum.commands Commands in a semi-colon seperated list needed -- to access CICS. Defaults to <code>CICS</code>. -- @args cics-enum.path Folder used to store valid transaction id 'screenshots' -- Defaults to <code>None</code> and doesn't store anything. -- @args cics-enum.user Username to use for authenticated enumeration -- @args cics-enum.pass Password to use for authenticated enumeration -- -- @usage -- nmap --script=cics-enum -p 23 <targets> -- -- nmap --script=cics-enum --script-args=idlist=default_cics.txt, -- cics-enum.command="exit;logon applid(cics42)", -- cics-enum.path="/home/dade/screenshots/",cics-enum.noSSL=true -p 23 <targets> -- -- @output -- PORT STATE SERVICE -- 23/tcp open tn3270 -- | cics-enum: -- | Accounts: -- | CBAM: Valid - CICS Transaction ID -- | CETR: Valid - CICS Transaction ID -- | CEST: Valid - CICS Transaction ID -- | CMSG: Valid - CICS Transaction ID -- | CEDA: Valid - CICS Transaction ID -- | CEDF: Potentially Valid - CICS Transaction ID -- | DSNC: Valid - CICS Transaction ID -- |_ Statistics: Performed 31 guesses in 114 seconds, average tps: 0 -- -- @changelog -- 2015-07-04 - v0.1 - created by Soldier of Fortran -- 2015-11-14 - v0.2 - rewrote iterator -- 2017-01-22 - v0.3 - added authenticated CICS ID enumeration -- -- @author Philip Young -- @copyright Same as Nmap--See https://nmap.org/book/man-legal.html -- author = "Philip Young aka Soldier of Fortran" license = "Same as Nmap--See https://nmap.org/book/man-legal.html" categories = {"intrusive", "brute"} portrule = shortport.port_or_service({23,992}, "tn3270") --- Saves the Screen generated by the CICS command to disk -- -- @param filename string containing the name and full path to the file -- @param data contains the data -- @return status true on success, false on failure -- @return err string containing error message if status is false local function save_screens( filename, data ) local f = io.open( filename, "w") if not f then return false, ("Failed to open file (%s)"):format(filename) end if not(f:write(data)) then return false, ("Failed to write file (%s)"):format(filename) end f:close() return true end Driver = { new = function(self, host, port, options) local o = {} setmetatable(o, self) self.__index = self o.host = host o.port = port o.options = options o.tn3270 = tn3270.Telnet:new() return o end, connect = function( self ) local status, err = self.tn3270:initiate(self.host,self.port) self.tn3270:get_screen_debug(2) if not status then stdnse.debug("Could not initiate TN3270: %s", err ) return false end return true end, disconnect = function( self ) self.tn3270:disconnect() self.tn3270 = nil return true end, login = function (self, user, pass) -- pass is actually the CICS transaction we want to try local commands = self.options['key1'] local path = self.options['key2'] local cics_user = self.options['user'] local cics_pass = self.options['pass'] local timeout = 300 local max_blank = 1 local loop = 1 local err, status stdnse.debug(2,"Getting to CICS") local run = stdnse.strsplit(";%s*", commands) for i = 1, #run do stdnse.debug(1,"Issuing Command (#%s of %s): %s", i, #run ,run[i]) self.tn3270:send_cursor(run[i]) self.tn3270:get_all_data() self.tn3270:get_screen_debug(2) end while self.tn3270:isClear() and max_blank < 7 do stdnse.debug(2, "Screen is not clear for %s. Reading all data with a timeout of %s. Count %s",pass, timeout, max_blank) self.tn3270:get_all_data(timeout) timeout = timeout + 100 max_blank = max_blank + 1 end while not self.tn3270:isClear() and loop < 10 do -- by this point we're at *some* CICS transaction -- so we send F3 to exit it stdnse.debug(2,"Sending: F3") self.tn3270:send_pf(3) -- send F3 self.tn3270:get_all_data() self.tn3270:get_screen_debug(2) -- now we want to clear the screen self.tn3270:send_clear() self.tn3270:get_all_data() stdnse.debug(2,"Current CLEARed Screen. Loop: %s", loop ) self.tn3270:get_screen_debug(2) loop = loop + 1 end if loop == 10 then -- something is wrong but we can still try transactions. Print error to debug. stdnse.debug('Error. Failed to get to a blank screen under CICS (sending F3 followed by CLEAR). Try lowering maxthreads to fix.') end -- If username/password provided try to authenticate first if not (cics_user == nil and cics_pass == nil) then -- We're doing authenticated CICS testing now baby! stdnse.debug(2,'Logging in with %s / %s for auth testing', cics_user, cics_pass) self.tn3270:send_cursor('CESN') self.tn3270:get_all_data() self.tn3270:get_screen_debug(2) local fields = self.tn3270:writeable() -- Get the writeable field areas local user_loc = {fields[1][1],cics_user} -- This is the 'UserID:' field local pass_loc = {fields[3][1],cics_pass} -- This is the 'Password:' field ([2] is a group ID) stdnse.debug(2,'Trying CICS: %s : %s', user, pass) self.tn3270:send_locations({user_loc,pass_loc}) self.tn3270:get_all_data() stdnse.debug(2,"Screen Received for User ID: %s / %s", user, pass) self.tn3270:get_screen_debug(2) local count = 1 while not self.tn3270:find('DFHCE3549') and count < 6 do -- some systems show a message for a bit before we get to CICS again self.tn3270:get_all_data(1000) -- loop for 6 seconds count = count + 1 end end self.tn3270:get_screen_debug(2) self.tn3270:send_clear() self.tn3270:get_all_data() self.tn3270:get_screen_debug(2) stdnse.verbose("Trying Transaction ID: %s", pass) self.tn3270:send_cursor(pass) self.tn3270:get_all_data() max_blank = 1 while self.tn3270:isClear() and max_blank < 7 do stdnse.debug(2, "Screen is not clear for %s. Reading all data with a timeout of %s. Count %s",pass, timeout, max_blank) self.tn3270:get_all_data(timeout) timeout = timeout + 100 max_blank = max_blank + 1 end stdnse.debug(2,"Screen Received for Transaction ID: %s", pass) self.tn3270:get_screen_debug(2) if self.tn3270:find('not recognized') or self.tn3270:find('DFHAC2002') then -- known invalid command stdnse.debug("Invalid CICS Transaction ID: %s", string.upper(pass)) return false, brute.Error:new( "Incorrect CICS Transaction ID" ) elseif self.tn3270:isClear() then stdnse.debug(2,"Empty Screen when we expect an error.") -- this can mean that the transaction ID was valid -- but it didn't send a screen update so you should check by hand. -- We're not dumping this screen to disk because it's blank. return true, creds.Account:new("CICS ID [blank screen]", string.upper(pass), creds.State.VALID) elseif self.tn3270:find('Unauthorized') or self.tn3270:find('DFHAC2002') then -- this is a VALID cics transaction but you must be authenticated to used it -- This will be the same screen for each so we dont bother saving it either stdnse.verbose("Valid CICS Transaction ID [requires auth]: %s", string.upper(pass)) return true, creds.Account:new("CICS ID [requires auth]", string.upper(pass), creds.State.VALID) elseif self.tn3270:find('DFHAC2008') or self.tn3270:find('DFHAC2206') or self.tn3270:find('DFHAC2028') or self.tn3270:find('DFHRT4415') or self.tn3270:find('DFHRT4480') or self.tn3270:find('TSS7254E') then -- these are technically valid CICS transactions -- but they are of little/no value. If verbosity is turned way up we'll return these/save a screenshot -- otherwise there's no point -- DFHAC2008 -- TranID has been Disabled -- DFHAC2206 -- Abend -- DFHRT4415 -- Cannot access through terminal -- DFHRT4480 -- No Longer Supported -- DFHAC2028 -- cannot be used -- TSS7254E -- Access not available through this facility stdnse.verbose("Valid CICS Transaction ID [Abbend or ID Disabled]: %s", string.upper(pass)) if nmap.verbosity() > 3 then if path ~= nil then stdnse.verbose(2,"Writting screen to: %s", path..string.upper(pass)..".txt") status, err = save_screens(path..string.upper(pass)..".txt",self.tn3270:get_screen()) if not status then stdnse.verbose(2,"Failed writting screen to: %s", path..string.upper(pass)..".txt") end end return true, creds.Account:new("CICS ID [Abbend]", string.upper(pass), creds.State.VALID) else return false, brute.Error:new( "Correct Transaction ID - Access Denied" ) end elseif not (cics_user == nil and cics_pass == nil) and (self.tn3270:find('TSS7251E') or self.tn3270:find('DFHAC2033')) then -- We've logged on but we don't have access to this transaction -- TSS7251E : Access Denied to PROGRAM <X> -- DFHAC2033 : You are not authorized to use transaction <X> stdnse.verbose("Valid CICS Transaction ID [Access Denied]: %s", string.upper(pass)) if nmap.verbosity() > 3 then return true, creds.Account:new("CICS ID [Access Denied]", string.upper(pass), creds.State.VALID) else return false, brute.Error:new( "Correct Transaction ID - Access Denied" ) end else stdnse.verbose("Valid CICS Transaction ID: %s", string.upper(pass)) if path ~= nil then stdnse.verbose(2,"Writting screen to: %s", path..string.upper(pass)..".txt") status, err = save_screens(path..string.upper(pass)..".txt",self.tn3270:get_screen()) if not status then stdnse.verbose(2,"Failed writting screen to: %s", path..string.upper(pass)..".txt") end end return true, creds.Account:new("CICS ID", string.upper(pass), creds.State.VALID) end return false, brute.Error:new("Something went wrong, we didn't get a proper response") end } --- Tests the target to see if we can even get to CICS -- -- @param host host NSE object -- @param port port NSE object -- @param user CICS userID -- @param pass CICS userID password -- @param commands optional script-args of commands to use to get to CICS -- @return status true on success, false on failure local function cics_test( host, port, commands, user, pass ) stdnse.debug("Checking for CICS") local tn = tn3270.Telnet:new() local status, err = tn:initiate(host,port) local msg = 'Unable to get to CICS' local cics = false -- initially we're not at CICS if not status then stdnse.debug("Could not initiate TN3270: %s", err ) return cics end tn:get_screen_debug(2) -- prints TN3270 screen to debug stdnse.debug("Getting to CICS") local run = stdnse.strsplit(";%s*", commands) for i = 1, #run do stdnse.debug(1,"Issuing Command (#%s of %s): %s", i, #run ,run[i]) tn:send_cursor(run[i]) tn:get_all_data() tn:get_screen_debug(2) end tn:get_all_data() tn:get_screen_debug(2) -- for debug purposes -- we should technically be at CICS. So we send: -- * F3 to exit the CICS program -- * CLEAR (a tn3270 command) to clear the screen. -- (you need to clear before sending a transaction ID) -- * a known default CICS transaction ID with predictable outcome -- (CESF with 'Sign-off is complete.' as the result) -- to confirm that we were in CICS. If so we return true -- otherwise we return false local count = 1 while not tn:isClear() and count < 6 do -- some systems will just kick you off others are slow in responding -- this loop continues to try getting out of CICS 6 times. If it can't -- then we probably weren't in CICS to begin with. if tn:find("Signon") then stdnse.debug(2,"Found 'Signon' sending PF3") tn:send_pf(3) tn:get_all_data() end tn:get_all_data() stdnse.debug(2,"Clearing the Screen") tn:send_clear() tn:get_all_data() tn:get_screen_debug(2) count = count + 1 end if count == 6 then return cics end stdnse.debug(2,"Sending CESF (CICS Default Sign-off)") tn:send_cursor('CESF') tn:get_all_data() if tn:isClear() then tn:get_all_data(1000) end tn:get_screen_debug(2) if tn:find('Sign-off is complete.') then cics = true end if not (user == nil and pass == nil) then -- We're doing authenticated CICS testing now baby! stdnse.verbose(2,'Logging in with %s / %s for auth testing', user, pass) tn:send_clear() tn:get_all_data() tn:get_screen_debug(2) tn:send_cursor('CESN') tn:get_all_data() tn:get_screen_debug(2) local fields = tn:writeable() -- Get the writeable field areas local user_loc = {fields[1][1],user} -- This is the 'UserID:' field local pass_loc = {fields[3][1],pass} -- This is the 'Password:' field ([2] is a group ID) stdnse.verbose('Trying CICS: %s : %s', user, pass) tn:send_locations({user_loc,pass_loc}) tn:get_all_data() stdnse.debug(2,"Screen Received for User ID: %s / %s", user, pass) tn:get_screen_debug(2) count = 1 while not tn:find('DFHCE3549') and count < 6 do tn:get_all_data(1000) -- loop for 6 seconds tn:get_screen_debug(2) count = count + 1 end if not tn:find('DFHCE3549') then cics = false msg = 'Unable to access CICS with User: '..user..' / Pass: '..pass else tn:send_cursor('CESF') tn:get_all_data() end end tn:disconnect() return cics,msg end -- Filter iterator for unpwdb -- CICS is limited to 4 characters. local valid_cics = function(x) return (string.len(x) <= 4) end function iter(t) local i, val return function() i, val = next(t, i) return val end end action = function(host, port) local cics_id_file = stdnse.get_script_args("idlist") local path = stdnse.get_script_args(SCRIPT_NAME .. '.path') -- Folder for screenshots local commands = stdnse.get_script_args(SCRIPT_NAME .. '.commands') or 'cics'-- VTAM commands/macros to get to CICS local username = stdnse.get_script_args(SCRIPT_NAME .. '.user') or nil local password = stdnse.get_script_args(SCRIPT_NAME .. '.pass') or nil local cics_ids = {"CADP", "CATA", "CATD", "CATR", "CBAM", "CCIN", "CCRL", "CDBC", "CDBD", "CDBF", "CDBI", "CDBM", "CDBN", "CDBO", "CDBQ", "CDBT", "CDFS", "CDST", "CDTS", "CEBR", "CEBT", "CECI", "CECS", "CEDA", "CEDB", "CEDC", "CEDF", "CEDX", "CEGN", "CEHP", "CEHS", "CEKL", "CEMN", "CEMT", "CEOT", "CEPD", "CEPF", "CEPH", "CEPM", "CEPQ", "CEPS", "CEPT", "CESC", "CESD", "CESF", "CESL", "CESN", "CEST", "CETR", "CEX2", "CFCL", "CFCR", "CFOR", "CFQR", "CFQS", "CFTL", "CFTS", "CGRP", "CHLP", "CIDP", "CIEP", "CIND", "CIS1", "CIS4", "CISB", "CISC", "CISD", "CISE", "CISM", "CISP", "CISQ", "CISR", "CISS", "CIST", "CISU", "CISX", "CITS", "CJLR", "CJSA", "CJSL", "CJSR", "CJTR", "CKAM", "CKBC", "CKBM", "CKBP", "CKBR", "CKCN", "CKDL", "CKDP", "CKQC", "CKRS", "CKRT", "CKSD", "CKSQ", "CKTI", "CLDM", "CLQ2", "CLR1", "CLR2", "CLS1", "CLS2", "CLS3", "CLS4", "CMAC", "CMPX", "CMSG", "CMTS", "COVR", "CPCT", "CPIA", "CPIH", "CPIL", "CPIQ", "CPIR", "CPIS", "CPLT", "CPMI", "CPSS", "CQPI", "CQPO", "CQRY", "CRLR", "CRMD", "CRMF", "CRPA", "CRPC", "CRPM", "CRSQ", "CRSR", "CRST", "CRSY", "CRTE", "CRTP", "CRTX", "CSAC", "CSCY", "CSFE", "CSFR", "CSFU", "CSGM", "CSHA", "CSHQ", "CSHR", "CSKP", "CSMI", "CSM1", "CSM2", "CSM3", "CSM5", "CSNC", "CSNE", "CSOL", "CSPG", "CSPK", "CSPP", "CSPQ", "CSPS", "CSQC", "CSRK", "CSRS", "CSSF", "CSSY", "CSTE", "CSTP", "CSXM", "CSZI", "CTIN", "CTSD", "CVMI", "CWBA", "CWBG", "CWTO", "CWWU", "CWXN", "CWXU", "CW2A", "CXCU", "CXRE", "CXRT", "DSNC"} -- Default CICS from https://www-01.ibm.com/support/knowledgecenter/SSGMCP_5.2.0/com.ibm.cics.ts.systemprogramming.doc/topics/dfha726.html cics_id_file = ( (cics_id_file and nmap.fetchfile(cics_id_file)) or cics_id_file ) if cics_id_file then for l in io.lines(cics_id_file) do if not l:match("#!comment:") then table.insert(cics_ids, l) end end end local cicstst,msg = cics_test(host, port, commands, username, password) if cicstst then local title = 'CICS Transaction IDs' if not(username == nil and password == nil) then title = 'CICS Transaction IDs for User: '.. username end local options = { key1 = commands, key2 = path, user = username, pass = password } stdnse.debug("Starting CICS Transaction ID Enumeration") if path ~= nil then stdnse.verbose(2,"Saving Screenshots to: %s", path) end local engine = brute.Engine:new(Driver, host, port, options) engine.options.script_name = SCRIPT_NAME engine:setPasswordIterator(unpwdb.filter_iterator(iter(cics_ids), valid_cics)) engine.options.passonly = true engine.options:setTitle(title) local status, result = engine:start() return result else return msg end end