diff --git a/scripts/smb-enumdomains.nse b/scripts/smb-enumdomains.nse
index f7b44296a..45d9713ab 100644
--- a/scripts/smb-enumdomains.nse
+++ b/scripts/smb-enumdomains.nse
@@ -39,33 +39,9 @@ After the initial bind() to SAMR, the sequence of calls is:
-- | |_ Password complexity requirements do not exist
-- |_ |_ Administrator account cannot be locked out
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------
author = "Ron Bowes"
diff --git a/scripts/smb-enumsessions.nse b/scripts/smb-enumsessions.nse
index 54af22632..a30e2c8bf 100644
--- a/scripts/smb-enumsessions.nse
+++ b/scripts/smb-enumsessions.nse
@@ -38,33 +38,9 @@ idea to write this one.
-- | Active SMB Sessions:
-- |_ |_ ADMINISTRATOR is connected from 10.100.254.138 for [just logged in, it's probably you], idle for [not idle]
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------
id = "MSRPC: NetSessEnum()"
diff --git a/scripts/smb-enumshares.nse b/scripts/smb-enumshares.nse
index efe56f4f8..81b1aaed5 100644
--- a/scripts/smb-enumshares.nse
+++ b/scripts/smb-enumshares.nse
@@ -58,33 +58,9 @@ doing an authenticated test.
-- | |_ Users: 0, Max:
-- |_ |_ Path: C:\
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------
author = "Ron Bowes"
diff --git a/scripts/smb-enumusers.nse b/scripts/smb-enumusers.nse
index 4b8017c07..7894704b8 100644
--- a/scripts/smb-enumusers.nse
+++ b/scripts/smb-enumusers.nse
@@ -110,33 +110,9 @@ the code I wrote for this is largely based on the techniques used by them.
-- | |_ Type: Alias
-- |_ |_ Domain: LOCALSYSTEM
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------
author = "Ron Bowes"
diff --git a/scripts/smb-os-discovery.nse b/scripts/smb-os-discovery.nse
index 0f4bf9f9c..075852865 100644
--- a/scripts/smb-os-discovery.nse
+++ b/scripts/smb-os-discovery.nse
@@ -18,33 +18,9 @@ they likely won't change the outcome in any meaningful way.
-- | Name: WORKGROUP\TEST1
-- |_ System time: 2008-09-09 20:55:55 UTC-5
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------
author = "Ron Bowes"
diff --git a/scripts/smb-security-mode.nse b/scripts/smb-security-mode.nse
index af8b7b970..7260813bb 100644
--- a/scripts/smb-security-mode.nse
+++ b/scripts/smb-security-mode.nse
@@ -48,33 +48,9 @@ set the username and password, etc.), but it probably won't ever require them.
-- | SMB Security: Challenge/response passwords supported
-- |_ SMB Security: Message signing supported
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------
author = "Ron Bowes"
diff --git a/scripts/smb-serverstats.nse b/scripts/smb-serverstats.nse
index 6c1d74f79..dd7bb5b12 100644
--- a/scripts/smb-serverstats.nse
+++ b/scripts/smb-serverstats.nse
@@ -25,33 +25,9 @@ the numbers that Windows returns. Take the values here with a grain of salt.
-- | |_ Print jobs spooled: 0
-- |_ |_ Files opened (including pipes): 18
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------
author = "Ron Bowes"
diff --git a/scripts/smb-systeminfo.nse b/scripts/smb-systeminfo.nse
index 322f4e736..84430022d 100644
--- a/scripts/smb-systeminfo.nse
+++ b/scripts/smb-systeminfo.nse
@@ -39,33 +39,9 @@ I don't know it), so this doesn't support Vista at all.
-- | |_ Internet Explorer 7.0000
-- |_ |_ Firefox 3.0.3 (en-US)
--
---@args smbusername The SMB username to log in with. The forms "DOMAIN\username" and "username@DOMAIN"
--- are not understood. To set a domain, use the smbdomain argument.
---@args smbdomain The domain to log in with. If you aren't in a domained environment, then anything
--- will (should?) be accepted by the server.
---@args smbpassword The password to connect with. Be cautious with this, since some servers will lock
--- accounts if the incorrect password is given. Although it's rare that the
--- Administrator account can be locked out, in the off chance that it can, you could
--- get yourself in trouble.
---@args smbhash A password hash to use when logging in. This is given as a single hex string (32
--- characters) or a pair of hex strings (both 32 characters, optionally separated by a
--- single character). These hashes are the LanMan or NTLM hash of the user's password,
--- and are stored on disk or in memory. They can be retrieved from memory
--- using the fgdump or pwdump tools.
---@args smbguest If this is set to true or 1, a guest login will be attempted if the normal one
--- fails. This should be harmless, but I thought I would disable it by default anyway
--- because I'm not entirely sure of any possible consequences.
---@args smbtype The type of SMB authentication to use. These are the possible options:
--- * v1: Sends LMv1 and NTLMv1.
--- * LMv1: Sends LMv1 only.
--- * NTLMv1: Sends NTLMv1 only (default).
--- * v2: Sends LMv2 and NTLMv2.
--- * LMv2: Sends LMv2 only.
--- The default, NTLMv1, is a pretty
--- decent compromise between security and compatibility. If you are paranoid, you might
--- want to use v2 or lmv2 for this. (Actually, if you're paranoid, you should be
--- avoiding this protocol altogether :P). If you're using an extremely old system, you
--- might need to set this to v1 or lm, which are less secure but more compatible.
+-- @args smb* This script supports the smbusername,
+-- smbpassword, smbhash, smbguest, and
+-- smbtype script arguments of the smb module.
-----------------------------------------------------------------------