PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 22:21:29 +00:00
Code Issues Projects Releases Wiki Activity

Do copyediting of NSEDoc. This is a first pass up to ms-sql-xp-cmdshell.

Browse Source
This commit is contained in:
david
2010-07-09 23:32:18 +00:00
parent 0e7f78bcd0
commit b9633ed69b
47 changed files with 316 additions and 335 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
scripts/http-malware-host.nse
View File

@@ -1,12 +1,12 @@
description = [[
Looks for signature of known server compromises. Currently, the only signature it looks for is
the one discussed here:
<http://blog.unmaskparasites.com/2009/09/11/dynamic-dns-and-botnet-of-zombie-web-servers/>
Looks for signature of known server compromises.
This is done by requesting the page /ts/in.cgi?open2 and looking for an errant 302 (it attempts
to detect srevers that always return 302).
Thanks to Denis from the above link for finding this technique!
Currently, the only signature it looks for is the one discussed here:
http://blog.unmaskparasites.com/2009/09/11/dynamic-dns-and-botnet-of-zombie-web-servers/.
This is done by requesting the page <code>/ts/in.cgi?open2</code> and
looking for an errant 302 (it attempts to detect servers that always
return 302). Thanks to Denis from the above link for finding this
technique!
]]
---