PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 06:01:28 +00:00
Code Issues Projects Releases Wiki Activity

Adds http-default-accounts - It tests for access with default credentials in a variety of web applications and devices.

Browse Source 
It works similar to http-enum, we detect applications by matching known paths and launching a login routine using default credentials when found.
This script depends on a fingerprint file containing the target's information: name, category, location paths, default credentials and login routine.
This commit is contained in:
paulino
2011-07-01 21:43:34 +00:00
parent f15baac22d
commit 82a68e02db
2 changed files with 287 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
scripts/script.db
View File

@@ -65,6 +65,7 @@ Entry { filename = "http-barracuda-dir-traversal.nse", categories = { "auth", "e
Entry { filename = "http-brute.nse", categories = { "auth", "intrusive", } }
Entry { filename = "http-cakephp-version.nse", categories = { "discovery", "safe", } }
Entry { filename = "http-date.nse", categories = { "discovery", "safe", } }
Entry { filename = "http-default-accounts.nse", categories = { "auth", "discovery", "safe", } }
Entry { filename = "http-domino-enum-passwords.nse", categories = { "auth", "intrusive", } }
Entry { filename = "http-enum.nse", categories = { "discovery", "intrusive", "vuln", } }
Entry { filename = "http-favicon.nse", categories = { "default", "discovery", "safe", } }