OXIESEC PANEL
- Current Dir:
/
/
usr
/
share
/
nmap
/
scripts
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
08/07/2020 12:36:00 PM
rwxr-xr-x
📄
acarsd-info.nse
3.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
address-info.nse
8.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-brute.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-ls.nse
6.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-path-vuln.nse
6.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-serverinfo.nse
5.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-showmount.nse
2.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-auth.nse
2.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-brute.nse
2.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-headers.nse
1.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-methods.nse
2.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-request.nse
2.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
allseeingeye-info.nse
6.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
amqp-info.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
asn-query.nse
14.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
auth-owners.nse
2.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
auth-spoof.nse
870 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
backorifice-brute.nse
9.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
backorifice-info.nse
9.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bacnet-info.nse
40.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
banner.nse
5.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoin-getaddr.nse
1.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoin-info.nse
1.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoinrpc-info.nse
4.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bittorrent-discovery.nse
3.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bjnp-discover.nse
1.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ataoe-discover.nse
4.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-avahi-dos.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-bjnp-discover.nse
4.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-db2-discover.nse
2.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dhcp-discover.nse
7.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dhcp6-discover.nse
3.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dns-service-discovery.nse
1.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dropbox-listener.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-eigrp-discovery.nse
11.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-igmp-discovery.nse
14.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-listener.nse
10.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ms-sql-discover.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-netbios-master-browser.nse
1.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-networker-discover.nse
2.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-novell-locate.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ospf2-discover.nse
16.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pc-anywhere.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pc-duo.nse
3.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pim-discovery.nse
5.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ping.nse
8.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pppoe-discover.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-rip-discover.nse
4.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ripng-discover.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-sonicwall-discover.nse
3.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-sybase-asa-discover.nse
5.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-tellstick-discover.nse
1.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-upnp-info.nse
1.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-versant-locate.nse
924 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wake-on-lan.nse
2.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wpad-discover.nse
7.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wsdd-discover.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-xdmcp-discover.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cassandra-brute.nse
3.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cassandra-info.nse
2.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cccam-version.nse
1.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-enum.nse
17.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-info.nse
13.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-user-brute.nse
10.6 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-user-enum.nse
9.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-brute-xml.nse
4.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-apps-xml.nse
4.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-apps.nse
4.09 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-servers-xml.nse
1.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-servers.nse
3.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
clamav-exec.nse
6.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
clock-skew.nse
5.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
coap-resources.nse
9.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
couchdb-databases.nse
2.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
couchdb-stats.nse
8.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
creds-summary.nse
1.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cups-info.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cups-queue-info.nse
1.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cvs-brute-repository.nse
3.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cvs-brute.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
daap-get-library.nse
9.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
daytime.nse
595 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
db2-das-info.nse
14.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dhcp-discover.nse
6.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dict-info.nse
2.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
distcc-cve2004-2687.nse
3.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-blacklist.nse
5.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-brute.nse
9.7 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-cache-snoop.nse
6.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-check-zone.nse
14.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-client-subnet-scan.nse
14.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-fuzz.nse
10.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-ip6-arpa-scan.nse
3.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsec-enum.nse
10.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsec3-enum.nse
12.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsid.nse
3.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-random-srcport.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-random-txid.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-recursion.nse
1.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-service-discovery.nse
2.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-srv-enum.nse
5.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-update.nse
5.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-zeustracker.nse
2.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-zone-transfer.nse
26.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
docker-version.nse
1.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domcon-brute.nse
3.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domcon-cmd.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domino-enum-users.nse
4.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dpap-brute.nse
2.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
drda-brute.nse
5.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
drda-info.nse
3.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
duplicates.nse
7.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
eap-info.nse
5.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
enip-info.nse
48.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
epmd-info.nse
1.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
eppc-enum-processes.nse
2.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fcrdns.nse
3.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
finger.nse
1.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fingerprint-strings.nse
3.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
firewalk.nse
28.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
firewall-bypass.nse
8.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
flume-master-info.nse
10.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fox-info.nse
3.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
freelancer-info.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-anon.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-bounce.nse
3.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-brute.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-libopie.nse
3.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-proftpd-backdoor.nse
3.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-syst.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-vsftpd-backdoor.nse
5.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-vuln-cve2010-4221.nse
5.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ganglia-info.nse
7.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
giop-info.nse
1.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gkrellm-info.nse
6.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gopher-ls.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gpsd-info.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-datanode-info.nse
1.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-jobtracker-info.nse
6.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-namenode-info.nse
6.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-secondary-namenode-info.nse
4.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-tasktracker-info.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hbase-master-info.nse
5.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hbase-region-info.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hddtemp-info.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hnap-info.nse
4.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-bfk.nse
3.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-ip2hosts.nse
3.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-robtex.nse
1.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-adobe-coldfusion-apsa1301.nse
2.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-affiliate-id.nse
4.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-apache-negotiation.nse
1.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-apache-server-status.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-aspnet-debug.nse
1.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-auth-finder.nse
3.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-auth.nse
3.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-avaya-ipoffice-users.nse
2.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-awstatstotals-exec.nse
4.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-axis2-dir-traversal.nse
6.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-backup-finder.nse
5.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-barracuda-dir-traversal.nse
6.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-brute.nse
4.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cakephp-version.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-chrono.nse
4.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cisco-anyconnect.nse
1.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-coldfusion-subzero.nse
5.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-comments-displayer.nse
4.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-config-backup.nse
7.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cookie-flags.nse
5.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cors.nse
2.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cross-domain-policy.nse
13.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-csrf.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-date.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-default-accounts.nse
13.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-devframework.nse
4.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-dlink-backdoor.nse
2.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-dombased-xss.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-domino-enum-passwords.nse
13.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-drupal-enum-users.nse
2.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-drupal-enum.nse
6.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-enum.nse
19.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-errors.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-exif-spider.nse
20.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-favicon.nse
5.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-feed.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-fetch.nse
8.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-fileupload-exploiter.nse
10.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-form-brute.nse
20.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-form-fuzzer.nse
8.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-frontpage-login.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-generator.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-git.nse
11.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-gitweb-projects-enum.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-google-malware.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-grep.nse
11.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-headers.nse
1.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-huawei-hg5xx-vuln.nse
6.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-icloud-findmyiphone.nse
2.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-icloud-sendmsg.nse
3.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-iis-short-name-brute.nse
5.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-iis-webdav-vuln.nse
7.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-internal-ip-disclosure.nse
2.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-joomla-brute.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-litespeed-sourcecode-download.nse
2.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-ls.nse
5.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-majordomo2-dir-traversal.nse
3.17 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-malware-host.nse
2.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-mcmp.nse
3.62 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-method-tamper.nse
6.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-methods.nse
7.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-mobileversion-checker.nse
2.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-ntlm-info.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-open-proxy.nse
8.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-open-redirect.nse
4.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-passwd.nse
6.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-php-version.nse
6.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-phpmyadmin-dir-traversal.nse
5.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-phpself-xss.nse
5.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-proxy-brute.nse
3.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-put.nse
1.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-qnap-nas-info.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-referer-checker.nse
2.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-rfi-spider.nse
9.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robots.txt.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robtex-reverse-ip.nse
2.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robtex-shared-ns.nse
2.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-security-headers.nse
15.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-server-header.nse
2.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-shellshock.nse
5.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-sitemap-generator.nse
5.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-slowloris-check.nse
5.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-slowloris.nse
10.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-sql-injection.nse
9.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-stored-xss.nse
8.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-svn-enum.nse
3.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-svn-info.nse
4.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-title.nse
2.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-tplink-dir-traversal.nse
5.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-trace.nse
1.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-traceroute.nse
5.17 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-unsafe-output-escaping.nse
5.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-useragent-tester.nse
5.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-userdir-enum.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vhosts.nse
5.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-virustotal.nse
10.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vlcstreamer-ls.nse
2.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vmware-path-vuln.nse
4.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2006-3392.nse
3.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2009-3960.nse
6.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2010-0738.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2010-2861.nse
5.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2011-3192.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2011-3368.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2012-1823.nse
4.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-0156.nse
4.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-6786.nse
2.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-7091.nse
4.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2126.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2127.nse
3.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2128.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2129.nse
2.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-3704.nse
13.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-8877.nse
4.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2015-1427.nse
7.62 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2015-1635.nse
3.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-1001000.nse
4.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-5638.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-5689.nse
5.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-8917.nse
5.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-misfortune-cookie.nse
2.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-wnr1000-creds.nse
4.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-waf-detect.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-waf-fingerprint.nse
18.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-webdav-scan.nse
5.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-brute.nse
4.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-enum.nse
10.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-users.nse
4.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-xssed.nse
2.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iax2-brute.nse
2.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iax2-version.nse
1.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
icap-info.nse
3.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iec-identify.nse
4.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ike-version.nse
4.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-brute.nse
4.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-capabilities.nse
1.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-ntlm-info.nse
5.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
impress-remote-discover.nse
6.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-brute.nse
2.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-query.nse
3.33 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-tables.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-forwarding.nse
3.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-geoplugin.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-ipinfodb.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-bing.nse
5.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-google.nse
5.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-kml.nse
2.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-maxmind.nse
22.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-https-discover.nse
2.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipidseq.nse
5.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-brute.nse
3.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-cipher-zero.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-version.nse
3.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-multicast-mld-list.nse
16.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-node-info.nse
8.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-ra-flood.nse
6.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-botnet-channels.nse
6.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-brute.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-info.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-sasl-brute.nse
6.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-unrealircd-backdoor.nse
8.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iscsi-brute.nse
2.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iscsi-info.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
isns-info.nse
1.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-exec.nse
3.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-info.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-inject.nse
3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-version.nse
2.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
knx-gateway-discover.nse
11.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
knx-gateway-info.nse
7 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
krb5-enum-users.nse
12.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-brute.nse
13.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-novell-getpass.nse
4.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-rootdse.nse
9.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-search.nse
12.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
lexmark-config.nse
2.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
llmnr-resolve.nse
6.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
lltd-discovery.nse
9.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
maxdb-info.nse
6.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mcafee-epo-agent.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
membase-brute.nse
2.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
membase-http-info.nse
4.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
memcached-info.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-info.nse
9.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-msgrpc-brute.nse
3.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-xmlrpc-brute.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mikrotik-routeros-brute.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mmouse-brute.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mmouse-exec.nse
5.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
modbus-discover.nse
5.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-brute.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-databases.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-info.nse
3.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mqtt-subscribe.nse
14.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mrinfo.nse
9.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-brute.nse
11.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-config.nse
5.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-dac.nse
3.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-dump-hashes.nse
4.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-empty-password.nse
6.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-hasdbaccess.nse
5.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-info.nse
11.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-ntlm-info.nse
3.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-query.nse
4.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-tables.nse
9.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-xp-cmdshell.nse
6.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
msrpc-enum.nse
3.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mtrace.nse
12.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
murmur-version.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-audit.nse
6.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-brute.nse
2.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-databases.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-dump-hashes.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-empty-password.nse
1.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-enum.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-info.nse
3.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-query.nse
3.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-users.nse
2.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-variables.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-vuln-cve2012-2122.nse
6.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nat-pmp-info.nse
1.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nat-pmp-mapport.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nbstat.nse
7.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ncp-enum-users.nse
1.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ncp-serverinfo.nse
1.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ndmp-fs-info.nse
2.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ndmp-version.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nessus-brute.nse
4.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nessus-xmlrpc-brute.nse
4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-auth-bypass.nse
1.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-brute.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-info.nse
5.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-version.nse
1.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nexpose-brute.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-ls.nse
14.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-showmount.nse
2.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-statfs.nse
9.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nje-node-brute.nse
6.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nje-pass-brute.nse
6.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nntp-ntlm-info.nse
5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nping-brute.nse
3.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nrpe-enum.nse
7.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ntp-info.nse
6.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ntp-monlist.nse
32.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omp2-brute.nse
2.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omp2-enum-targets.nse
3.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omron-info.nse
6.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openlookup-info.nse
5.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openvas-otp-brute.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openwebnet-discovery.nse
6.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-brute-stealth.nse
6.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-brute.nse
7.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-enum-users.nse
3.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-sid-brute.nse
4.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-tns-version.nse
2.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ovs-agent-version.nse
2.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
p2p-conficker.nse
21.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
path-mtu.nse
9.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pcanywhere-brute.nse
5.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pcworx-info.nse
3.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pgsql-brute.nse
5.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pjl-ready-message.nse
2.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-brute.nse
3.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-capabilities.nse
1.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-ntlm-info.nse
4.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pptp-version.nse
3.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
puppet-naivesigning.nse
8.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
qconn-exec.nse
4.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
qscan.nse
14.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake1-info.nse
10.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake3-info.nse
6.6 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake3-master-getservers.nse
7.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rdp-enum-encryption.nse
4.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rdp-vuln-ms12-020.nse
8.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
realvnc-auth-bypass.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
redis-brute.nse
2.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
redis-info.nse
6.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
resolveall.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
reverse-index.nse
4.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rexec-brute.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rfc868-time.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
riak-http-info.nse
5.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rlogin-brute.nse
4.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rmi-dumpregistry.nse
10.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rmi-vuln-classloader.nse
3.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpc-grind.nse
8.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcap-brute.nse
2.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcap-info.nse
2.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcinfo.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rsync-brute.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rsync-list-modules.nse
1.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rtsp-methods.nse
1.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rtsp-url-brute.nse
5.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rusers.nse
5.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
s7-info.nse
9.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
samba-vuln-cve-2012-1182.nse
4.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
script.db
48.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
servicetags.nse
8.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
shodan-api.nse
6.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-brute.nse
3.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-call-spoof.nse
5.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-enum-users.nse
8.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-methods.nse
1.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
skypev2-version.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-brute.nse
44.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-double-pulsar-backdoor.nse
5.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-domains.nse
4.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-groups.nse
5.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-processes.nse
7.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-sessions.nse
11.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-shares.nse
6.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-users.nse
12.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-flood.nse
1.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-ls.nse
7.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-mbenum.nse
8.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-os-discovery.nse
7.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-print-text.nse
4.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-protocols.nse
1.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-psexec.nse
62.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-security-mode.nse
5.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-server-stats.nse
2.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-system-info.nse
13.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-conficker.nse
7.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-cve-2017-7494.nse
22.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-cve2009-3103.nse
6.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms06-025.nse
6.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms07-029.nse
5.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms08-067.nse
5.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms10-054.nse
5.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms10-061.nse
7.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms17-010.nse
6.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-regsvc-dos.nse
4.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-capabilities.nse
3.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-security-mode.nse
3.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-time.nse
1.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-vuln-uptime.nse
5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-brute.nse
4.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-commands.nse
4.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-enum-users.nse
11.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-ntlm-info.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-open-relay.nse
9.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-strangeport.nse
716 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2010-4344.nse
14.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2011-1720.nse
7.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2011-1764.nse
7.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sniffer-detect.nse
4.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-brute.nse
7.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-hh3c-logins.nse
4.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-info.nse
5.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-interfaces.nse
27.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-ios-config.nse
5.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-netstat.nse
4.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-processes.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-sysdescr.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-services.nse
2.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-shares.nse
2.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-software.nse
4.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-users.nse
1.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-auth-info.nse
1.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-brute.nse
2.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-open-proxy.nse
6.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-auth-methods.nse
1.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-brute.nse
3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-hostkey.nse
15.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-publickey-acceptance.nse
4.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-run.nse
2.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh2-enum-algos.nse
5.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sshv1.nse
1.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-ccs-injection.nse
8.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-cert-intaddr.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-cert.nse
8.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-date.nse
6.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-dh-params.nse
38.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-enum-ciphers.nse
39.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-heartbleed.nse
7.65 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-known-key.nse
4.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-poodle.nse
11.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sslv2-drown.nse
10.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sslv2.nse
1.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sstp-discover.nse
2.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stun-info.nse
1.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stun-version.nse
1.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stuxnet-detect.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
supermicro-ipmi-conf.nse
3.65 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
svn-brute.nse
7.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-asn.nse
2.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-map4to6.nse
7.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-echo.nse
4.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-invalid-dst.nse
6.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-mld.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-slaac.nse
9.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-wordlist.nse
9.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-sniffer.nse
4.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-traceroute.nse
1.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-xml.nse
3.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
teamspeak2-version.nse
2.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-brute.nse
19.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-encryption.nse
2.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-ntlm-info.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tftp-enum.nse
5.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tls-nextprotoneg.nse
3.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tls-ticketbleed.nse
11.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tn3270-screen.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tor-consensus-checker.nse
3.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
traceroute-geolocation.nse
5.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tso-brute.nse
12.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tso-enum.nse
9.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
unittest.nse
895 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
unusual-port.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
upnp-info.nse
1.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
url-snarf.nse
4.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ventrilo-info.nse
24.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
versant-info.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vmauthd-brute.nse
3.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vmware-version.nse
2.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-brute.nse
4.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-info.nse
4.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-title.nse
2.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
voldemort-info.nse
5.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vtam-enum.nse
10 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vuze-dht-info.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
wdb-version.nse
7.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
weblogic-t3-info.nse
3.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
whois-domain.nse
4.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
whois-ip.nse
87.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
wsdd-discover.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
x11-access.nse
2.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xdmcp-discover.nse
2.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmlrpc-methods.nse
4.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmpp-brute.nse
4.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmpp-info.nse
16.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
Editing: http-cross-domain-policy.nse
Close
local http = require "http" local stdnse = require "stdnse" local vulns = require "vulns" local nmap = require "nmap" local shortport = require "shortport" local table = require "table" local string = require "string" local slaxml = require "slaxml" description = [[ Checks the cross-domain policy file (/crossdomain.xml) and the client-acces-policy file (/clientaccesspolicy.xml) in web applications and lists the trusted domains. Overly permissive settings enable Cross Site Request Forgery attacks and may allow attackers to access sensitive data. This script is useful to detect permissive configurations and possible domain names available for purchase to exploit the application. The script queries instantdomainsearch.com to lookup the domains. This functionality is turned off by default, to enable it set the script argument http-cross-domain-policy.domain-lookup. References: * http://sethsec.blogspot.com/2014/03/exploiting-misconfigured-crossdomainxml.html * http://gursevkalra.blogspot.com/2013/08/bypassing-same-origin-policy-with-flash.html * https://www.adobe.com/devnet/articles/crossdomain_policy_file_spec.html * https://www.adobe.com/devnet-docs/acrobatetk/tools/AppSec/CrossDomain_PolicyFile_Specification.pdf * https://www.owasp.org/index.php/Test_RIA_cross_domain_policy_%28OTG-CONFIG-008%29 * http://acunetix.com/vulnerabilities/web/insecure-clientaccesspolicy-xml-file ]] --- -- @usage nmap --script http-cross-domain-policy <target> -- @usage nmap -p 80 --script http-cross-domain-policy --script-args http-cross-domain-policy.domain-lookup=true <target> -- -- @output -- PORT STATE SERVICE REASON -- 8080/tcp open http-proxy syn-ack -- | http-cross-domain-policy: -- | VULNERABLE: -- | Cross-domain policy file (crossdomain.xml) -- | State: VULNERABLE -- | A cross-domain policy file specifies the permissions that a web client such as Java, Adobe Flash, Adobe Reader, -- | etc. use to access data across different domains. A client acces policy file is similar to cross-domain policy -- | but is used for M$ Silverlight applications. Overly permissive configurations enables Cross-site Request -- | Forgery attacks, and may allow third parties to access sensitive data meant for the user. -- | Check results: -- | /crossdomain.xml: -- | <cross-domain-policy> -- | <allow-access-from domain="*.example.com"/> -- | <allow-access-from domain="*.exampleobjects.com"/> -- | <allow-access-from domain="*.example.co.in"/>' -- | </cross-domain-policy> -- | /clientaccesspolicy.xml: -- | <?xml version="1.0" encoding="utf8"?> -- | </accesspolicy> -- | <crossdomainaccess> -- | <policy> -- | <allowfrom httprequestheaders="SOAPAction"> -- | <domain uri="*"/> -- | <domain uri="*.example.me"/> -- | <domain uri="*.exampleobjects.me"/> -- | </allowfrom> -- | <granto> -- | <resource path="/" includesubpaths="true"/> -- | </granto> -- | </policy> -- | </crossdomainaccess> -- | </accesspolicy> -- | Extra information: -- | Trusted domains:example.com, exampleobjects.com, example.co.in, *, example.me, exampleobjects.me -- | Use the script argument 'domain-lookup' to find trusted domains available for purchase -- | References: -- | http://gursevkalra.blogspot.com/2013/08/bypassing-same-origin-policy-with-flash.html -- | http://sethsec.blogspot.com/2014/03/exploiting-misconfigured-crossdomainxml.html -- | https://www.owasp.org/index.php/Test_RIA_cross_domain_policy_%28OTG-CONFIG-008%29 -- | http://acunetix.com/vulnerabilities/web/insecure-clientaccesspolicy-xml-file -- | https://www.adobe.com/devnet-docs/acrobatetk/tools/AppSec/CrossDomain_PolicyFile_Specification.pdf -- |_ https://www.adobe.com/devnet/articles/crossdomain_policy_file_spec.html -- -- -- @args http-cross-domain-policy.domain-lookup Boolean to check domain availability. Default:false -- -- @xmloutput -- <elem key="title">Cross-domain and Client Access policies.</elem> -- <elem key="state">VULNERABLE</elem> -- <table key="description"> -- <elem>A cross-domain policy file specifies the permissions that a -- web client such as Java, Adobe Flash, Adobe Reader, etc. use to -- access data across different domains. A client acces policy file -- is similar to cross-domain policy but is used for M$ Silverlight -- applications. Overly permissive configurations enables Cross-site -- Request Forgery attacks, and may allow third parties to access -- sensitive data meant for the user.</elem> -- </table> -- <table key="check_results"> -- <table> -- <elem key="name">/crossdomain.xml</elem> -- <elem key="body"><cross-domain-policy> -- <allow-access-from domain="*.example.com"/> -- <allow-access-from domain="*.exampleobjects.com"/> -- <allow-access-from domain="*.example.co.in"/>' -- </cross-domain-policy></elem> -- </table> -- <table> -- <elem key="name">/clientaccesspolicy.xml</elem> -- <elem key="body"><?xml version="1.0" encoding="utf8"?> -- </accesspolicy> <crossdomainaccess> <policy> -- <allowfrom httprequestheaders="SOAPAction"> <domain -- uri="*"/> <domain uri="*.example.me"/> <domain -- uri="*.exampleobjects.me"/> </allowfrom> <granto> -- <resource path="/" includesubpaths="true"/> -- </granto> </policy> </crossdomainaccess> -- </accesspolicy></elem> -- </table> -- </table> -- <table key="extra_info"> -- <elem>Trusted domains:example.com, exampleobjects.com, -- example.co.in, *, example.me, exampleobjects.me Use the script argument -- 'domain-lookup' to find trusted domains available for -- purchase</elem> -- </table> -- <table key="refs"> -- <elem> -- https://www.adobe.com/devnet/articles/crossdomain_policy_file_spec.html</elem> -- <elem> -- https://www.owasp.org/index.php/Test_RIA_cross_domain_policy_%28OTG-CONFIG-008%29</elem> -- <elem> -- http://sethsec.blogspot.com/2014/03/exploiting-misconfigured-crossdomainxml.html</elem> -- <elem> -- https://www.adobe.com/devnet-docs/acrobatetk/tools/AppSec/CrossDomain_PolicyFile_Specification.pdf</elem> -- <elem> -- http://acunetix.com/vulnerabilities/web/insecure-clientaccesspolicy-xml-file</elem> -- <elem> -- http://gursevkalra.blogspot.com/2013/08/bypassing-same-origin-policy-with-flash.html</elem> -- </table> -- --- author = {"Seth Art <sethsec()gmail>", "Paulino Calderon <calderon()websec.mx>", "Gyanendra Mishra"} license = "Same as Nmap--See https://nmap.org/book/man-legal.html" categories = {"safe", "external", "vuln"} portrule = shortport.http local tlds_instantdomainsearch = {".com", ".net", ".org", ".co", ".info", ".biz", ".mobi", ".us", ".ca", ".co.uk", ".in", ".io", ".it", ".pt", ".me", ".tv"} --- -- Queries instantdomainsearch.com to check if domains are available -- Returns nil if the query failed and true/false to indicate domain availability -- -- Sample response: -- -- {"label":"nmap","tld":"com","isRegistered":true,"isBid":false, -- "price":0,"aftermarketProvider":"","rank":14.028985023498535,"search":"name"} -- {"words":["nmap"],"synonyms":["nmap","scans"],"tld":"com","isBid":false,"price":0, -- "aftermarketProvider":"","rank":0.23496590554714203,"search":"word"} -- {"label":"snmap","tld":"com","isBid":false,"price":2994,"aftermarketProvider":"afternic.com", -- "rank":9.352656364440918,"search":"ngram"} --- local function check_domain (domain) local name, tld = domain:match("(%w*)%.*(%w*%.%w+)$") if not(stdnse.contains(tlds_instantdomainsearch, tld)) then stdnse.debug(1, "TLD '%s' is not supported by instantdomainsearch.com. Check manually.", tld) return nil end stdnse.print_debug(1, "Checking availability of domain %s with tld:%s ", name, tld) local path = string.format("/all/%s?/tlds=%s&limit=1", name, tld) local response = http.get("instantdomainsearch.com", 443, path, {any_af=true}) if ( not(response) or (response.status and response.status ~= 200) ) then return nil end local _, _, registered = response.body:find('"isRegistered":(.-),"isBid":') return registered end --- -- Requests and parses crossdomain.xml file --- function check_crossdomain(host, port, lookup) local trusted_domains = {} local trusted_domains_available = {} local content = {} local req_opt = {redirect_ok=function(host,port) local c = 3 return function(uri) if ( c==0 ) then return false end c = c - 1 return true end end} local domain_table = {} local CROSSDOMAIN = { uri = '/crossdomain.xml', attribute = function(name, value) if name == 'domain' then table.insert(domain_table, value) end end, } local CLIENTACCESS = { uri = '/clientaccesspolicy.xml', attribute = function(name, value) if name == 'uri' then table.insert(domain_table, value) end end, } local lists = {} table.insert(lists, CROSSDOMAIN) table.insert(lists, CLIENTACCESS) for _, list in pairs(lists) do local req = http.get(host, port, list.uri, req_opt) if req.status and req.status == 200 then domain_table = {} local parser = slaxml.parser:new({attribute = list.attribute}) parser:parseSAX (req.body) table.insert(content, {name = list.uri, body = req.body}) for _, domain in pairs(domain_table) do --Matches wildcard, which means vulnerable as any host can comunicate with app if domain == '*' or domain == 'http://' or domain == 'https://' then stdnse.debug(1, "Wildcard detected!") table.insert(trusted_domains, domain) else --Parse domains local line = domain:gsub("%*%.", "") stdnse.debug(1, "Extracted line: %s", line) local domain = line:match("(%w*%.*%w+%.%w+)$") if domain ~= nil then --Deals with tlds with double extension local tld = domain:match("%w*(%.%w*)%.%w+$") if tld ~= nil and not(stdnse.contains(tlds_instantdomainsearch, tld)) then domain = domain:match("%w*%.(.*)$") end --We add domains only once as they can appear multiple times if not(stdnse.contains(trusted_domains, domain)) then stdnse.debug(1, "Added trusted domain:%s", domain) table.insert(trusted_domains, domain) --Lookup domains if script argument is set if ( lookup ) then if check_domain(domain) == "false" then stdnse.debug(1, "Domain '%s' is available for purchase!", domain) table.insert(trusted_domains_available, domain) end end end end stdnse.debug(1, "Extracted domain: %s", domain) end end end end if (#trusted_domains> 0) then return true, trusted_domains, trusted_domains_available, content else return nil end end action = function(host, port) local lookup = stdnse.get_script_args(SCRIPT_NAME..".domain-lookup") or false local vuln_report = vulns.Report:new(SCRIPT_NAME, host, port) local vuln = { title = 'Cross-domain and Client Access policies.', state = vulns.STATE.NOT_VULN, description = [[ A cross-domain policy file specifies the permissions that a web client such as Java, Adobe Flash, Adobe Reader, etc. use to access data across different domains. A client acces policy file is similar to cross-domain policy but is used for M$ Silverlight applications. Overly permissive configurations enables Cross-site Request Forgery attacks, and may allow third parties to access sensitive data meant for the user.]], references = { 'http://sethsec.blogspot.com/2014/03/exploiting-misconfigured-crossdomainxml.html', 'http://gursevkalra.blogspot.com/2013/08/bypassing-same-origin-policy-with-flash.html', 'https://www.adobe.com/devnet/articles/crossdomain_policy_file_spec.html', 'https://www.adobe.com/devnet-docs/acrobatetk/tools/AppSec/CrossDomain_PolicyFile_Specification.pdf', 'https://www.owasp.org/index.php/Test_RIA_cross_domain_policy_%28OTG-CONFIG-008%29', 'http://acunetix.com/vulnerabilities/web/insecure-clientaccesspolicy-xml-file' }, } local check, domains, domains_available, content = check_crossdomain(host, port, lookup) local mt = {__tostring=function(p) return ("%s:\n %s"):format(p.name, p.body:gsub("\n", "\n ")) end} if check then if stdnse.contains(domains, "*") or stdnse.contains(domains, "https://") or stdnse.contains(domains, "http://") then vuln.state = vulns.STATE.VULN else vuln.state = vulns.STATE.LIKELY_VULN end for i, _ in pairs(content) do setmetatable(content[i], mt) tostring(content[i]) end vuln.check_results = content vuln.extra_info = string.format("Trusted domains:%s\n", stdnse.strjoin(', ', domains)) if not(lookup) and nmap.verbosity()>=2 then vuln.extra_info = vuln.extra_info .. "Use the script argument 'domain-lookup' to find trusted domains available for purchase" end if lookup ~= nil and #domains_available>0 then vuln.state = vulns.STATE.EXPLOIT vuln.extra_info = vuln.extra_info .. string.format("[!]Trusted domains available for purchase:%s", stdnse.strjoin(', ', domains_available)) end end return vuln_report:make_output(vuln) end