OXIESEC PANEL
- Current Dir:
/
/
usr
/
share
/
nmap
/
scripts
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
08/07/2020 12:36:00 PM
rwxr-xr-x
📄
acarsd-info.nse
3.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
address-info.nse
8.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-brute.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-ls.nse
6.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-path-vuln.nse
6.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-serverinfo.nse
5.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
afp-showmount.nse
2.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-auth.nse
2.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-brute.nse
2.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-headers.nse
1.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-methods.nse
2.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ajp-request.nse
2.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
allseeingeye-info.nse
6.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
amqp-info.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
asn-query.nse
14.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
auth-owners.nse
2.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
auth-spoof.nse
870 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
backorifice-brute.nse
9.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
backorifice-info.nse
9.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bacnet-info.nse
40.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
banner.nse
5.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoin-getaddr.nse
1.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoin-info.nse
1.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bitcoinrpc-info.nse
4.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bittorrent-discovery.nse
3.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
bjnp-discover.nse
1.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ataoe-discover.nse
4.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-avahi-dos.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-bjnp-discover.nse
4.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-db2-discover.nse
2.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dhcp-discover.nse
7.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dhcp6-discover.nse
3.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dns-service-discovery.nse
1.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-dropbox-listener.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-eigrp-discovery.nse
11.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-igmp-discovery.nse
14.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-listener.nse
10.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ms-sql-discover.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-netbios-master-browser.nse
1.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-networker-discover.nse
2.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-novell-locate.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ospf2-discover.nse
16.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pc-anywhere.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pc-duo.nse
3.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pim-discovery.nse
5.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ping.nse
8.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-pppoe-discover.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-rip-discover.nse
4.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-ripng-discover.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-sonicwall-discover.nse
3.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-sybase-asa-discover.nse
5.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-tellstick-discover.nse
1.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-upnp-info.nse
1.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-versant-locate.nse
924 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wake-on-lan.nse
2.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wpad-discover.nse
7.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-wsdd-discover.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
broadcast-xdmcp-discover.nse
1.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cassandra-brute.nse
3.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cassandra-info.nse
2.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cccam-version.nse
1.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-enum.nse
17.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-info.nse
13.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-user-brute.nse
10.6 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cics-user-enum.nse
9.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-brute-xml.nse
4.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-apps-xml.nse
4.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-apps.nse
4.09 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-servers-xml.nse
1.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
citrix-enum-servers.nse
3.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
clamav-exec.nse
6.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
clock-skew.nse
5.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
coap-resources.nse
9.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
couchdb-databases.nse
2.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
couchdb-stats.nse
8.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
creds-summary.nse
1.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cups-info.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cups-queue-info.nse
1.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cvs-brute-repository.nse
3.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
cvs-brute.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
daap-get-library.nse
9.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
daytime.nse
595 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
db2-das-info.nse
14.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dhcp-discover.nse
6.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dict-info.nse
2.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
distcc-cve2004-2687.nse
3.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-blacklist.nse
5.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-brute.nse
9.7 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-cache-snoop.nse
6.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-check-zone.nse
14.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-client-subnet-scan.nse
14.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-fuzz.nse
10.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-ip6-arpa-scan.nse
3.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsec-enum.nse
10.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsec3-enum.nse
12.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-nsid.nse
3.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-random-srcport.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-random-txid.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-recursion.nse
1.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-service-discovery.nse
2.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-srv-enum.nse
5.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-update.nse
5.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-zeustracker.nse
2.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dns-zone-transfer.nse
26.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
docker-version.nse
1.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domcon-brute.nse
3.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domcon-cmd.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
domino-enum-users.nse
4.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
dpap-brute.nse
2.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
drda-brute.nse
5.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
drda-info.nse
3.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
duplicates.nse
7.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
eap-info.nse
5.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
enip-info.nse
48.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
epmd-info.nse
1.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
eppc-enum-processes.nse
2.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fcrdns.nse
3.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
finger.nse
1.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fingerprint-strings.nse
3.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
firewalk.nse
28.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
firewall-bypass.nse
8.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
flume-master-info.nse
10.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
fox-info.nse
3.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
freelancer-info.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-anon.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-bounce.nse
3.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-brute.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-libopie.nse
3.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-proftpd-backdoor.nse
3.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-syst.nse
3.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-vsftpd-backdoor.nse
5.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ftp-vuln-cve2010-4221.nse
5.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ganglia-info.nse
7.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
giop-info.nse
1.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gkrellm-info.nse
6.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gopher-ls.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
gpsd-info.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-datanode-info.nse
1.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-jobtracker-info.nse
6.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-namenode-info.nse
6.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-secondary-namenode-info.nse
4.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hadoop-tasktracker-info.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hbase-master-info.nse
5.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hbase-region-info.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hddtemp-info.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hnap-info.nse
4.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-bfk.nse
3.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-ip2hosts.nse
3.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
hostmap-robtex.nse
1.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-adobe-coldfusion-apsa1301.nse
2.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-affiliate-id.nse
4.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-apache-negotiation.nse
1.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-apache-server-status.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-aspnet-debug.nse
1.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-auth-finder.nse
3.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-auth.nse
3.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-avaya-ipoffice-users.nse
2.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-awstatstotals-exec.nse
4.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-axis2-dir-traversal.nse
6.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-backup-finder.nse
5.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-barracuda-dir-traversal.nse
6.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-brute.nse
4.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cakephp-version.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-chrono.nse
4.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cisco-anyconnect.nse
1.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-coldfusion-subzero.nse
5.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-comments-displayer.nse
4.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-config-backup.nse
7.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cookie-flags.nse
5.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cors.nse
2.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-cross-domain-policy.nse
13.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-csrf.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-date.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-default-accounts.nse
13.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-devframework.nse
4.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-dlink-backdoor.nse
2.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-dombased-xss.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-domino-enum-passwords.nse
13.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-drupal-enum-users.nse
2.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-drupal-enum.nse
6.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-enum.nse
19.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-errors.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-exif-spider.nse
20.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-favicon.nse
5.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-feed.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-fetch.nse
8.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-fileupload-exploiter.nse
10.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-form-brute.nse
20.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-form-fuzzer.nse
8.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-frontpage-login.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-generator.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-git.nse
11.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-gitweb-projects-enum.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-google-malware.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-grep.nse
11.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-headers.nse
1.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-huawei-hg5xx-vuln.nse
6.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-icloud-findmyiphone.nse
2.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-icloud-sendmsg.nse
3.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-iis-short-name-brute.nse
5.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-iis-webdav-vuln.nse
7.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-internal-ip-disclosure.nse
2.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-joomla-brute.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-litespeed-sourcecode-download.nse
2.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-ls.nse
5.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-majordomo2-dir-traversal.nse
3.17 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-malware-host.nse
2.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-mcmp.nse
3.62 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-method-tamper.nse
6.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-methods.nse
7.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-mobileversion-checker.nse
2.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-ntlm-info.nse
4.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-open-proxy.nse
8.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-open-redirect.nse
4.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-passwd.nse
6.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-php-version.nse
6.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-phpmyadmin-dir-traversal.nse
5.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-phpself-xss.nse
5.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-proxy-brute.nse
3.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-put.nse
1.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-qnap-nas-info.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-referer-checker.nse
2.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-rfi-spider.nse
9.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robots.txt.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robtex-reverse-ip.nse
2.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-robtex-shared-ns.nse
2.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-security-headers.nse
15.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-server-header.nse
2.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-shellshock.nse
5.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-sitemap-generator.nse
5.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-slowloris-check.nse
5.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-slowloris.nse
10.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-sql-injection.nse
9.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-stored-xss.nse
8.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-svn-enum.nse
3.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-svn-info.nse
4.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-title.nse
2.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-tplink-dir-traversal.nse
5.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-trace.nse
1.87 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-traceroute.nse
5.17 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-unsafe-output-escaping.nse
5.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-useragent-tester.nse
5.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-userdir-enum.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vhosts.nse
5.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-virustotal.nse
10.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vlcstreamer-ls.nse
2.03 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vmware-path-vuln.nse
4.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2006-3392.nse
3.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2009-3960.nse
6.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2010-0738.nse
2.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2010-2861.nse
5.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2011-3192.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2011-3368.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2012-1823.nse
4.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-0156.nse
4.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-6786.nse
2.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2013-7091.nse
4.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2126.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2127.nse
3.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2128.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-2129.nse
2.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-3704.nse
13.93 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2014-8877.nse
4.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2015-1427.nse
7.62 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2015-1635.nse
3.35 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-1001000.nse
4.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-5638.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-5689.nse
5.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-cve2017-8917.nse
5.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-misfortune-cookie.nse
2.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-vuln-wnr1000-creds.nse
4.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-waf-detect.nse
5.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-waf-fingerprint.nse
18.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-webdav-scan.nse
5.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-brute.nse
4.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-enum.nse
10.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-wordpress-users.nse
4.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
http-xssed.nse
2.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iax2-brute.nse
2.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iax2-version.nse
1.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
icap-info.nse
3.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iec-identify.nse
4.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ike-version.nse
4.99 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-brute.nse
4.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-capabilities.nse
1.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
imap-ntlm-info.nse
5.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
impress-remote-discover.nse
6.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-brute.nse
2.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-query.nse
3.33 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
informix-tables.nse
4.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-forwarding.nse
3.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-geoplugin.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-ipinfodb.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-bing.nse
5.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-google.nse
5.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-map-kml.nse
2.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-geolocation-maxmind.nse
22.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ip-https-discover.nse
2.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipidseq.nse
5.69 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-brute.nse
3.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-cipher-zero.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipmi-version.nse
3.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-multicast-mld-list.nse
16.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-node-info.nse
8.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ipv6-ra-flood.nse
6.47 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-botnet-channels.nse
6.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-brute.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-info.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-sasl-brute.nse
6.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
irc-unrealircd-backdoor.nse
8.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iscsi-brute.nse
2.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
iscsi-info.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
isns-info.nse
1.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-exec.nse
3.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-info.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-inject.nse
3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
jdwp-version.nse
2.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
knx-gateway-discover.nse
11.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
knx-gateway-info.nse
7 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
krb5-enum-users.nse
12.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-brute.nse
13.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-novell-getpass.nse
4.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-rootdse.nse
9.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ldap-search.nse
12.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
lexmark-config.nse
2.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
llmnr-resolve.nse
6.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
lltd-discovery.nse
9.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
maxdb-info.nse
6.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mcafee-epo-agent.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
membase-brute.nse
2.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
membase-http-info.nse
4.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
memcached-info.nse
3.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-info.nse
9.9 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-msgrpc-brute.nse
3.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
metasploit-xmlrpc-brute.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mikrotik-routeros-brute.nse
3.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mmouse-brute.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mmouse-exec.nse
5.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
modbus-discover.nse
5.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-brute.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-databases.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mongodb-info.nse
3.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mqtt-subscribe.nse
14.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mrinfo.nse
9.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-brute.nse
11.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-config.nse
5.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-dac.nse
3.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-dump-hashes.nse
4.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-empty-password.nse
6.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-hasdbaccess.nse
5.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-info.nse
11.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-ntlm-info.nse
3.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-query.nse
4.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-tables.nse
9.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ms-sql-xp-cmdshell.nse
6.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
msrpc-enum.nse
3.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mtrace.nse
12.26 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
murmur-version.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-audit.nse
6.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-brute.nse
2.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-databases.nse
2.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-dump-hashes.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-empty-password.nse
1.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-enum.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-info.nse
3.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-query.nse
3.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-users.nse
2.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-variables.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
mysql-vuln-cve2012-2122.nse
6.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nat-pmp-info.nse
1.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nat-pmp-mapport.nse
4.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nbstat.nse
7.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ncp-enum-users.nse
1.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ncp-serverinfo.nse
1.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ndmp-fs-info.nse
2.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ndmp-version.nse
2.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nessus-brute.nse
4.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nessus-xmlrpc-brute.nse
4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-auth-bypass.nse
1.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-brute.nse
1.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-info.nse
5.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
netbus-version.nse
1.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nexpose-brute.nse
2.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-ls.nse
14.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-showmount.nse
2.58 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nfs-statfs.nse
9.63 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nje-node-brute.nse
6.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nje-pass-brute.nse
6.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nntp-ntlm-info.nse
5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nping-brute.nse
3.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
nrpe-enum.nse
7.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ntp-info.nse
6.02 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ntp-monlist.nse
32.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omp2-brute.nse
2.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omp2-enum-targets.nse
3.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
omron-info.nse
6.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openlookup-info.nse
5.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openvas-otp-brute.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
openwebnet-discovery.nse
6.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-brute-stealth.nse
6.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-brute.nse
7.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-enum-users.nse
3.84 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-sid-brute.nse
4.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
oracle-tns-version.nse
2.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ovs-agent-version.nse
2.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
p2p-conficker.nse
21.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
path-mtu.nse
9.95 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pcanywhere-brute.nse
5.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pcworx-info.nse
3.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pgsql-brute.nse
5.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pjl-ready-message.nse
2.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-brute.nse
3.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-capabilities.nse
1.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pop3-ntlm-info.nse
4.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
pptp-version.nse
3.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
puppet-naivesigning.nse
8.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
qconn-exec.nse
4.22 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
qscan.nse
14.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake1-info.nse
10.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake3-info.nse
6.6 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
quake3-master-getservers.nse
7.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rdp-enum-encryption.nse
4.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rdp-vuln-ms12-020.nse
8.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
realvnc-auth-bypass.nse
3.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
redis-brute.nse
2.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
redis-info.nse
6.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
resolveall.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
reverse-index.nse
4.56 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rexec-brute.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rfc868-time.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
riak-http-info.nse
5.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rlogin-brute.nse
4.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rmi-dumpregistry.nse
10.55 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rmi-vuln-classloader.nse
3.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpc-grind.nse
8.68 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcap-brute.nse
2.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcap-info.nse
2.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rpcinfo.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rsync-brute.nse
3.04 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rsync-list-modules.nse
1.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rtsp-methods.nse
1.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rtsp-url-brute.nse
5.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
rusers.nse
5.36 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
s7-info.nse
9.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
samba-vuln-cve-2012-1182.nse
4.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
script.db
48.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
servicetags.nse
8.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
shodan-api.nse
6.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-brute.nse
3.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-call-spoof.nse
5.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-enum-users.nse
8.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sip-methods.nse
1.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
skypev2-version.nse
2.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-brute.nse
44.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-double-pulsar-backdoor.nse
5.19 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-domains.nse
4.73 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-groups.nse
5.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-processes.nse
7.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-sessions.nse
11.77 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-shares.nse
6.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-enum-users.nse
12.24 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-flood.nse
1.67 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-ls.nse
7.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-mbenum.nse
8.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-os-discovery.nse
7.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-print-text.nse
4.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-protocols.nse
1.89 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-psexec.nse
62.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-security-mode.nse
5.07 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-server-stats.nse
2.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-system-info.nse
13.82 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-conficker.nse
7.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-cve-2017-7494.nse
22.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-cve2009-3103.nse
6.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms06-025.nse
6.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms07-029.nse
5.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms08-067.nse
5.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms10-054.nse
5.49 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms10-061.nse
7.15 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-ms17-010.nse
6.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb-vuln-regsvc-dos.nse
4.42 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-capabilities.nse
3.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-security-mode.nse
3.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-time.nse
1.3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smb2-vuln-uptime.nse
5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-brute.nse
4.21 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-commands.nse
4.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-enum-users.nse
11.72 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-ntlm-info.nse
5.76 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-open-relay.nse
9.91 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-strangeport.nse
716 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2010-4344.nse
14.39 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2011-1720.nse
7.48 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
smtp-vuln-cve2011-1764.nse
7.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sniffer-detect.nse
4.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-brute.nse
7.34 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-hh3c-logins.nse
4.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-info.nse
5.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-interfaces.nse
27.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-ios-config.nse
5.79 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-netstat.nse
4.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-processes.nse
4.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-sysdescr.nse
1.8 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-services.nse
2.5 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-shares.nse
2.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-software.nse
4.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
snmp-win32-users.nse
1.96 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-auth-info.nse
1.71 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-brute.nse
2.44 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
socks-open-proxy.nse
6.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-auth-methods.nse
1.18 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-brute.nse
3 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-hostkey.nse
15.1 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-publickey-acceptance.nse
4.14 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh-run.nse
2.85 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssh2-enum-algos.nse
5.53 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sshv1.nse
1.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-ccs-injection.nse
8.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-cert-intaddr.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-cert.nse
8.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-date.nse
6.61 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-dh-params.nse
38.83 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-enum-ciphers.nse
39.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-heartbleed.nse
7.65 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-known-key.nse
4.13 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ssl-poodle.nse
11.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sslv2-drown.nse
10.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sslv2.nse
1.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
sstp-discover.nse
2.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stun-info.nse
1.16 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stun-version.nse
1.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
stuxnet-detect.nse
3.27 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
supermicro-ipmi-conf.nse
3.65 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
svn-brute.nse
7.31 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-asn.nse
2.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-map4to6.nse
7.32 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-echo.nse
4.98 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-invalid-dst.nse
6.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-mld.nse
4.38 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-multicast-slaac.nse
9.11 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-ipv6-wordlist.nse
9.01 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-sniffer.nse
4.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-traceroute.nse
1.78 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
targets-xml.nse
3.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
teamspeak2-version.nse
2.45 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-brute.nse
19.4 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-encryption.nse
2.92 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
telnet-ntlm-info.nse
4.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tftp-enum.nse
5.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tls-nextprotoneg.nse
3.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tls-ticketbleed.nse
11.64 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tn3270-screen.nse
3.37 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tor-consensus-checker.nse
3.51 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
traceroute-geolocation.nse
5.59 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tso-brute.nse
12.46 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
tso-enum.nse
9.86 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
unittest.nse
895 bytes
04/16/2018 01:11:39 AM
rw-r--r--
📄
unusual-port.nse
3.75 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
upnp-info.nse
1.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
url-snarf.nse
4.06 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
ventrilo-info.nse
24.81 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
versant-info.nse
3.12 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vmauthd-brute.nse
3.29 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vmware-version.nse
2.94 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-brute.nse
4.28 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-info.nse
4.25 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vnc-title.nse
2.97 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
voldemort-info.nse
5.41 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vtam-enum.nse
10 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
vuze-dht-info.nse
2.52 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
wdb-version.nse
7.66 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
weblogic-t3-info.nse
3.43 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
whois-domain.nse
4.08 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
whois-ip.nse
87.54 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
wsdd-discover.nse
2.57 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
x11-access.nse
2.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xdmcp-discover.nse
2.05 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmlrpc-methods.nse
4.23 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmpp-brute.nse
4.2 KB
04/16/2018 01:11:39 AM
rw-r--r--
📄
xmpp-info.nse
16.88 KB
04/16/2018 01:11:39 AM
rw-r--r--
Editing: telnet-brute.nse
Close
local comm = require "comm" local coroutine = require "coroutine" local creds = require "creds" local match = require "match" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" local strbuf = require "strbuf" local string = require "string" local brute = require "brute" description = [[ Performs brute-force password auditing against telnet servers. ]] --- -- @usage -- nmap -p 23 --script telnet-brute --script-args userdb=myusers.lst,passdb=mypwds.lst,telnet-brute.timeout=8s <target> -- -- @output -- 23/tcp open telnet -- | telnet-brute: -- | Accounts -- | wkurtz:colonel -- | Statistics -- |_ Performed 15 guesses in 19 seconds, average tps: 0 -- -- @args telnet-brute.timeout Connection time-out timespec (default: "5s") -- @args telnet-brute.autosize Whether to automatically reduce the thread -- count based on the behavior of the target -- (default: "true") author = "nnposter" license = "Same as Nmap--See https://nmap.org/book/man-legal.html" categories = {'brute', 'intrusive'} portrule = shortport.port_or_service(23, 'telnet') -- Miscellaneous script-wide parameters and constants local arg_timeout = stdnse.get_script_args(SCRIPT_NAME .. ".timeout") or "5s" local arg_autosize = stdnse.get_script_args(SCRIPT_NAME .. ".autosize") or "true" local telnet_timeout -- connection timeout (in ms), from arg_timeout local telnet_autosize -- whether to auto-size the execution, from arg_autosize local telnet_eol = "\r\n" -- termination string for sent lines local conn_retries = 2 -- # of retries when attempting to connect local critical_debug = 1 -- debug level for printing critical messages local login_debug = 2 -- debug level for printing attempted credentials local detail_debug = 3 -- debug level for printing individual login steps -- and thread-level info --- -- Print debug messages, prepending them with the script name -- -- @param level Verbosity level -- @param fmt Format string. -- @param ... Arguments to format. local debug = stdnse.debug --- -- Decide whether a given string (presumably received from a telnet server) -- represents a username prompt -- -- @param str The string to analyze -- @return Verdict (true or false) local is_username_prompt = function (str) local lcstr = str:lower() return lcstr:find("%f[%w]username%s*:%s*$") or lcstr:find("%f[%w]login%s*:%s*$") end --- -- Decide whether a given string (presumably received from a telnet server) -- represents a password prompt -- -- @param str The string to analyze -- @return Verdict (true or false) local is_password_prompt = function (str) local lcstr = str:lower() return lcstr:find("%f[%w]password%s*:%s*$") or lcstr:find("%f[%w]passcode%s*:%s*$") end --- -- Decide whether a given string (presumably received from a telnet server) -- indicates a successful login -- -- @param str The string to analyze -- @return Verdict (true or false) local is_login_success = function (str) if str:find("^[A-Z]:\\") then -- Windows telnet return true end local lcstr = str:lower() return lcstr:find("[/>%%%$#]%s*$") -- general prompt or lcstr:find("^last login%s*:") -- linux telnetd or lcstr:find("main%smenu%f[%W]") -- Netgear RM356 or lcstr:find("main\x1B%[%d+;%d+hmenu%f[%W]") -- Netgear RM356 or lcstr:find("^enter terminal emulation:%s*$") -- Hummingbird telnetd or lcstr:find("%f[%w]select an option%f[%W]") -- Zebra PrintServer end --- -- Decide whether a given string (presumably received from a telnet server) -- indicates a failed login -- -- @param str The string to analyze -- @return Verdict (true or false) local is_login_failure = function (str) local lcstr = str:lower() return lcstr:find("%f[%w]incorrect%f[%W]") or lcstr:find("%f[%w]failed%f[%W]") or lcstr:find("%f[%w]denied%f[%W]") or lcstr:find("%f[%w]invalid%f[%W]") or lcstr:find("%f[%w]bad%f[%W]") end --- -- Simple class to encapsulate connection operations local Connection = { methods = {} } --- -- Initialize a connection object -- -- @param host Telnet host -- @param port Telnet port -- @return Connection object or nil (if the operation failed) Connection.new = function (host, port, proto) local soc = nmap.new_socket(proto) if not soc then return nil end return setmetatable({ socket = soc, isopen = false, buffer = nil, error = nil, host = host, port = port, proto = proto }, { __index = Connection.methods, __gc = Connection.methods.close }) end --- -- Open the connection -- -- @param self Connection object -- @return Status (true or false) -- @return nil if the operation was successful; error code otherwise Connection.methods.connect = function (self) local status local wait = 1 self.buffer = "" for tries = 0, conn_retries do self.socket:set_timeout(telnet_timeout) status, self.error = self.socket:connect(self.host, self.port, self.proto) if status then break end stdnse.sleep(wait) wait = 2 * wait end self.isopen = status return status, self.error end --- -- Close the connection -- -- @param self Connection object -- @return Status (true or false) -- @return nil if the operation was successful; error code otherwise Connection.methods.close = function (self) if not self.isopen then return true, nil end local status self.isopen = false self.buffer = nil status, self.error = self.socket:close() return status, self.error end --- -- Send one line through the connection to the server -- -- @param self Connection object -- @param line Characters to send, will be automatically terminated -- @return Status (true or false) -- @return nil if the operation was successful; error code otherwise Connection.methods.send_line = function (self, line) local status status, self.error = self.socket:send(line .. telnet_eol) return status, self.error end --- -- Add received data to the connection buffer while taking care -- of telnet option signalling -- -- @param self Connection object -- @param data Data string to add to the buffer -- @return Number of characters in the connection buffer Connection.methods.fill_buffer = function (self, data) local outbuf = strbuf.new(self.buffer) local optbuf = strbuf.new() local oldpos = 0 while true do -- look for IAC (Interpret As Command) local newpos = data:find('\255', oldpos) if not newpos then break end outbuf = outbuf .. data:sub(oldpos, newpos - 1) local opttype = data:byte(newpos + 1) local opt = data:byte(newpos + 2) if opttype == 251 or opttype == 252 then -- Telnet Will / Will Not -- regarding ECHO or GO-AHEAD, agree with whatever the -- server wants (or not) to do; otherwise respond with -- "don't" opttype = (opt == 1 or opt == 3) and opttype + 2 or 254 elseif opttype == 253 or opttype == 254 then -- Telnet Do / Do not -- I will not do whatever the server wants me to opttype = 252 end optbuf = optbuf .. string.char(255) .. string.char(opttype) .. string.char(opt) oldpos = newpos + 3 end self.buffer = strbuf.dump(outbuf) .. data:sub(oldpos) self.socket:send(strbuf.dump(optbuf)) return self.buffer:len() end --- -- Return leading part of the connection buffer, up to a line termination, -- and refill the buffer as needed -- -- @param self Connection object -- @param normalize whether the returned line is normalized (default: false) -- @return String representing the first line in the buffer Connection.methods.get_line = function (self) if self.buffer:len() == 0 then -- refill the buffer local status, data = self.socket:receive_buf(match.pattern_limit("[\r\n:>%%%$#\255].*", 2048), true) if not status then -- connection error self.error = data return nil end self:fill_buffer(data) end return self.buffer:match('^[^\r\n]*') end --- -- Discard leading part of the connection buffer, up to and including -- one or more line terminations -- -- @param self Connection object -- @return Number of characters remaining in the connection buffer Connection.methods.discard_line = function (self) self.buffer = self.buffer:gsub('^[^\r\n]*[\r\n]*', '', 1) return self.buffer:len() end --- -- Ghost connection object Connection.GHOST = {} --- -- Simple class to encapsulate target properties, including thread-specific data -- persisted across Driver instances local Target = { methods = {} } --- -- Initialize a target object -- -- @param host Telnet host -- @param port Telnet port -- @return Target object or nil (if the operation failed) Target.new = function (host, port) local soc, _, proto = comm.tryssl(host, port, "\n", {timeout=telnet_timeout}) if not soc then return nil end soc:close() return setmetatable({ host = host, port = port, proto = proto, workers = setmetatable({}, { __mode = "k" }) }, { __index = Target.methods }) end --- -- Set up the calling thread as one of the worker threads -- -- @param self Target object Target.methods.worker = function (self) local thread = coroutine.running() self.workers[thread] = self.workers[thread] or {} end --- -- Provide the calling worker thread with an open connection to the target. -- The state of the connection is at the beginning of the login flow. -- -- @param self Target object -- @return Status (true or false) -- @return Connection if the operation was successful; error code otherwise Target.methods.attach = function (self) local worker = self.workers[coroutine.running()] local conn = worker.conn or Connection.new(self.host, self.port, self.proto) if not conn then return false, "Unable to allocate connection" end worker.conn = conn if conn.error then conn:close() end if not conn.isopen then local status, err = conn:connect() if not status then return false, err end end return true, conn end --- -- Recover a connection used by the calling worker thread -- -- @param self Target object -- @return Status (true or false) -- @return nil if the operation was successful; error code otherwise Target.methods.detach = function (self) local conn = self.workers[coroutine.running()].conn local status, response = true, nil if conn and conn.error then status, response = conn:close() end return status, response end --- -- Set the state of the calling worker thread -- -- @param self Target object -- @param inuse Whether the worker is in use (true or false) -- @return inuse Target.methods.inuse = function (self, inuse) self.workers[coroutine.running()].inuse = inuse return inuse end --- -- Decide whether the target is still being worked on -- -- @param self Target object -- @return Verdict (true or false) Target.methods.idle = function (self) local idle = true for t, w in pairs(self.workers) do idle = idle and (not w.inuse or coroutine.status(t) == "dead") end return idle end --- -- Class that can be used as a "driver" by brute.lua local Driver = { methods = {} } --- -- Initialize a driver object -- -- @param host Telnet host -- @param port Telnet port -- @param target instance of a Target class -- @return Driver object or nil (if the operation failed) Driver.new = function (self, host, port, target) assert(host == target.host and port == target.port, "Target mismatch") target:worker() return setmetatable({ target = target, connect = telnet_autosize and Driver.methods.connect_autosize or Driver.methods.connect_simple, thread_exit = nmap.condvar(target) }, { __index = Driver.methods }) end --- -- Connect the driver to the target (when auto-sizing is off) -- -- @param self Driver object -- @return Status (true or false) -- @return nil if the operation was successful; error code otherwise Driver.methods.connect_simple = function (self) assert(not self.conn, "Multiple connections attempted") local status, response = self.target:attach() if status then self.conn = response response = nil end return status, response end --- -- Connect the driver to the target (when auto-sizing is on) -- -- @param self Driver object -- @return Status (true or false) -- @return nil if the operation was successful; error code otherwise Driver.methods.connect_autosize = function (self) assert(not self.conn, "Multiple connections attempted") self.target:inuse(true) local status, response = self.target:attach() if status then -- connected to the target self.conn = response if self:prompt() then -- successfully reached login prompt return true, nil end -- connected but turned away self.target:detach() end -- let's park the thread here till all the functioning threads finish self.target:inuse(false) debug(detail_debug, "Retiring %s", tostring(coroutine.running())) while not self.target:idle() do self.thread_exit("wait") end -- pretend that it connected self.conn = Connection.GHOST return true, nil end --- -- Disconnect the driver from the target -- -- @param self Driver object -- @return Status (true or false) -- @return nil if the operation was successful; error code otherwise Driver.methods.disconnect = function (self) assert(self.conn, "Attempt to disconnect non-existing connection") if self.conn.isopen and not self.conn.error then -- try to reach new login prompt self:prompt() end self.conn = nil return self.target:detach() end --- -- Attempt to reach telnet login prompt on the target -- -- @param self Driver object -- @return line Reached prompt or nil Driver.methods.prompt = function (self) assert(self.conn, "Attempt to use disconnected driver") local conn = self.conn local line repeat line = conn:get_line() until not line or is_username_prompt(line) or is_password_prompt(line) or not conn:discard_line() return line end --- -- Attempt to establish authenticated telnet session on the target -- -- @param self Driver object -- @return Status (true or false) -- @return instance of creds.Account if the operation was successful; -- instance of brute.Error otherwise Driver.methods.login = function (self, username, password) assert(self.conn, "Attempt to use disconnected driver") local sent_username = self.target.passonly local sent_password = false local conn = self.conn local loc = " in " .. tostring(coroutine.running()) local connection_error = function (msg) debug(detail_debug, msg .. loc) local err = brute.Error:new(msg) err:setRetry(true) return false, err end local passonly_error = function () local msg = "Password prompt encountered" debug(critical_debug, msg .. loc) local err = brute.Error:new(msg) err:setAbort(true) return false, err end local username_error = function () local msg = "Invalid username encountered" debug(detail_debug, msg .. loc) local err = brute.Error:new(msg) err:setInvalidAccount(username) return false, err end local login_error = function () local msg = "Login failed" debug(detail_debug, msg .. loc) return false, brute.Error:new(msg) end local login_success = function () local msg = "Login succeeded" debug(detail_debug, msg .. loc) return true, creds.Account:new(username, password, creds.State.VALID) end local login_no_password = function () local msg = "Login succeeded without password" debug(detail_debug, msg .. loc) return true, creds.Account:new(username, "", creds.State.VALID) end debug(detail_debug, "Login attempt %s:%s%s", username, password, loc) if conn == Connection.GHOST then -- reached when auto-sizing is enabled and all worker threads -- failed return connection_error("Service unreachable") end -- username has not yet been sent while not sent_username do local line = conn:get_line() if not line then -- stopped receiving data return connection_error("Login prompt not reached") end if is_username_prompt(line) then -- being prompted for a username conn:discard_line() debug(detail_debug, "Sending username" .. loc) if not conn:send_line(username) then return connection_error(conn.error) end sent_username = true if conn:get_line() == username then -- ignore; remote echo of the username in effect conn:discard_line() end elseif is_password_prompt(line) then -- looks like 'password only' support return passonly_error() else -- ignore; insignificant response line conn:discard_line() end end -- username has been already sent while not sent_password do local line = conn:get_line() if not line then -- remote host disconnected return connection_error("Password prompt not reached") end if is_login_success(line) then -- successful login without a password conn:close() return login_no_password() elseif is_password_prompt(line) then -- being prompted for a password conn:discard_line() debug(detail_debug, "Sending password" .. loc) if not conn:send_line(password) then return connection_error(conn.error) end sent_password = true elseif is_login_failure(line) then -- failed login without a password; explicitly told so conn:discard_line() return username_error() elseif is_username_prompt(line) then -- failed login without a password; prompted again for a username return username_error() else -- ignore; insignificant response line conn:discard_line() end end -- password has been already sent while true do local line = conn:get_line() if not line then -- remote host disconnected return connection_error("Login not completed") end if is_login_success(line) then -- successful login conn:close() return login_success() elseif is_login_failure(line) then -- failed login; explicitly told so conn:discard_line() return login_error() elseif is_password_prompt(line) or is_username_prompt(line) then -- failed login; prompted again for credentials return login_error() else -- ignore; insignificant response line conn:discard_line() end end -- unreachable code assert(false, "Reached unreachable code") end action = function (host, port) local ts, tserror = stdnse.parse_timespec(arg_timeout) if not ts then return stdnse.format_output(false, "Invalid timeout value: " .. tserror) end telnet_timeout = 1000 * ts telnet_autosize = arg_autosize:lower() == "true" local target = Target.new(host, port) if not target then return stdnse.format_output(false, "Unable to connect to the target") end local engine = brute.Engine:new(Driver, host, port, target) engine.options.script_name = SCRIPT_NAME target.passonly = engine.options.passonly local _, result = engine:start() return result end