diff --git a/scripts/clock-skew.nse b/scripts/clock-skew.nse index 3f1e732a3..1054240ad 100644 --- a/scripts/clock-skew.nse +++ b/scripts/clock-skew.nse @@ -1,5 +1,4 @@ local coroutine = require "coroutine" -local datetime = require "datetime" local formulas = require "formulas" local math = require "math" local nmap = require "nmap" diff --git a/scripts/firewalk.nse b/scripts/firewalk.nse index 098022b9a..698291bfa 100644 --- a/scripts/firewalk.nse +++ b/scripts/firewalk.nse @@ -1,4 +1,3 @@ -local bin = require "bin" local ipOps = require "ipOps" local math = require "math" local nmap = require "nmap" @@ -1061,4 +1060,3 @@ action = function(host) return report(scanner) end - diff --git a/scripts/ftp-anon.nse b/scripts/ftp-anon.nse index 3679b5c6e..50274b547 100644 --- a/scripts/ftp-anon.nse +++ b/scripts/ftp-anon.nse @@ -5,7 +5,6 @@ local shortport = require "shortport" local stdnse = require "stdnse" local string = require "string" local table = require "table" -local sslcert = require "sslcert" description = [[ Checks if an FTP server allows anonymous logins. diff --git a/scripts/ftp-syst.nse b/scripts/ftp-syst.nse index bf667494c..f2a99bfbf 100644 --- a/scripts/ftp-syst.nse +++ b/scripts/ftp-syst.nse @@ -1,8 +1,6 @@ local ftp = require "ftp" local shortport = require "shortport" local stdnse = require "stdnse" -local string = require "string" -local table = require "table" description = [[ Sends FTP SYST and STAT commands and returns the result. diff --git a/scripts/ganglia-info.nse b/scripts/ganglia-info.nse index a035105c3..30d6c9ca7 100644 --- a/scripts/ganglia-info.nse +++ b/scripts/ganglia-info.nse @@ -3,7 +3,6 @@ local nmap = require "nmap" local shortport = require "shortport" local slaxml = require "slaxml" local stdnse = require "stdnse" -local string = require "string" local table = require "table" description = [[ @@ -244,4 +243,3 @@ action = function( host, port ) if #state.result then return state.result end end - diff --git a/scripts/hostmap-robtex.nse b/scripts/hostmap-robtex.nse index 69531de91..6ad7af325 100644 --- a/scripts/hostmap-robtex.nse +++ b/scripts/hostmap-robtex.nse @@ -1,9 +1,7 @@ local http = require "http" local ipOps = require "ipOps" local stdnse = require "stdnse" -local string = require "string" local slaxml = require "slaxml" -local table = require "table" description = [[ Discovers hostnames that resolve to the target's IP address by querying the online Robtex service at http://ip.robtex.com/. diff --git a/scripts/http-default-accounts.nse b/scripts/http-default-accounts.nse index 68795cbd7..ca431083f 100644 --- a/scripts/http-default-accounts.nse +++ b/scripts/http-default-accounts.nse @@ -4,7 +4,6 @@ local http = require "http" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" -local string = require "string" local table = require "table" description = [[ diff --git a/scripts/http-domino-enum-passwords.nse b/scripts/http-domino-enum-passwords.nse index 2223d4e75..5543a577a 100644 --- a/scripts/http-domino-enum-passwords.nse +++ b/scripts/http-domino-enum-passwords.nse @@ -4,7 +4,6 @@ local io = require "io" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" -local string = require "string" local table = require "table" description = [[ diff --git a/scripts/http-internal-ip-disclosure.nse b/scripts/http-internal-ip-disclosure.nse index 1cff0a189..aeb04b92c 100644 --- a/scripts/http-internal-ip-disclosure.nse +++ b/scripts/http-internal-ip-disclosure.nse @@ -1,4 +1,3 @@ -local http = require "http" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" diff --git a/scripts/http-ntlm-info.nse b/scripts/http-ntlm-info.nse index 89e68cd78..440634096 100644 --- a/scripts/http-ntlm-info.nse +++ b/scripts/http-ntlm-info.nse @@ -1,4 +1,3 @@ -local bin = require "bin" local os = require "os" local datetime = require "datetime" local http = require "http" diff --git a/scripts/http-svn-enum.nse b/scripts/http-svn-enum.nse index d7c3c7927..4a231137c 100644 --- a/scripts/http-svn-enum.nse +++ b/scripts/http-svn-enum.nse @@ -3,7 +3,6 @@ local shortport = require "shortport" local slaxml = require "slaxml" local stdnse = require "stdnse" local tab = require "tab" -local table = require "table" description = [[Enumerates users of a Subversion repository by examining logs of most recent commits. ]] @@ -131,4 +130,3 @@ action = function(host, port) end end end - diff --git a/scripts/http-svn-info.nse b/scripts/http-svn-info.nse index 66d4da485..257d38ca3 100644 --- a/scripts/http-svn-info.nse +++ b/scripts/http-svn-info.nse @@ -2,7 +2,6 @@ local http = require "http" local shortport = require "shortport" local slaxml = require "slaxml" local stdnse = require "stdnse" -local string = require "string" description = [[Requests information from a Subversion repository. ]] diff --git a/scripts/http-vuln-cve2013-6786.nse b/scripts/http-vuln-cve2013-6786.nse index 8307973de..6696fae81 100644 --- a/scripts/http-vuln-cve2013-6786.nse +++ b/scripts/http-vuln-cve2013-6786.nse @@ -37,7 +37,6 @@ categories = {"exploit","vuln"} local http = require "http" local nmap = require "nmap" local shortport = require "shortport" -local string = require "string" local vulns = require "vulns" local stdnse = require "stdnse" diff --git a/scripts/http-vuln-cve2014-3704.nse b/scripts/http-vuln-cve2014-3704.nse index 3f2ecff8d..44e5616de 100644 --- a/scripts/http-vuln-cve2014-3704.nse +++ b/scripts/http-vuln-cve2014-3704.nse @@ -6,7 +6,6 @@ local string = require "string" local table = require "table" local url = require "url" local vulns = require "vulns" -local re = require "re" local openssl = require "openssl" description = [[ diff --git a/scripts/http-vuln-cve2015-1427.nse b/scripts/http-vuln-cve2015-1427.nse index f14cd33c1..832eeef3c 100644 --- a/scripts/http-vuln-cve2015-1427.nse +++ b/scripts/http-vuln-cve2015-1427.nse @@ -4,7 +4,6 @@ local stdnse = require "stdnse" local string = require "string" local vulns = require "vulns" local json = require "json" -local base64 = require "base64" local nmap = require "nmap" description = [[ @@ -208,4 +207,3 @@ action = function(host, port) cleanup() return report:make_output(vuln_table) end - diff --git a/scripts/http-vuln-cve2017-1001000.nse b/scripts/http-vuln-cve2017-1001000.nse index 4446dc60a..ed32580ea 100644 --- a/scripts/http-vuln-cve2017-1001000.nse +++ b/scripts/http-vuln-cve2017-1001000.nse @@ -1,23 +1,21 @@ local http = require "http" local shortport = require "shortport" -local string = require "string" local stdnse = require "stdnse" -local url = require "url" local vulns = require "vulns" local json = require "json" -description = [[ -Attempts to detect a privilege escalation vulnerability in Wordpress 4.7.0 and 4.7.1 that +description = [[ +Attempts to detect a privilege escalation vulnerability in Wordpress 4.7.0 and 4.7.1 that allows unauthenticated users to inject content in posts. -The script connects to the Wordpress REST API to obtain the list of published posts and -grabs the user id and date from there. Then it attempts to update the date field in the -post with the same date information we just obtained. If the request doesn’t return an +The script connects to the Wordpress REST API to obtain the list of published posts and +grabs the user id and date from there. Then it attempts to update the date field in the +post with the same date information we just obtained. If the request doesn’t return an error, we mark the server as vulnerable. References: -https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-api.html - +https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-api.html + ]] --- @@ -33,13 +31,13 @@ https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-a -- | Content Injection in Wordpress REST API -- | State: VULNERABLE (Exploitable) -- | IDs: CVE:CVE-2017-1001000 --- | Risk factor: Medium CVSSv2: 5.0 (MEDIUM) +-- | Risk factor: Medium CVSSv2: 5.0 (MEDIUM) -- | The privilege escalation vulnerability in WordPress REST API allows --- | the visitors to edit any post on the site +-- | the visitors to edit any post on the site -- | Versions 4.7.0 and 4.7.1 are known to be affected --- | +-- | -- | References: --- |_ https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-api.html +-- |_ https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-api.html -- -- @xmloutput -- @@ -106,7 +104,7 @@ Versions 4.7.0 and 4.7.1 are known to be affected. return vulnReport:make_output(vuln_table) end - --Modifying the uri and checking for response. + --Modifying the uri and checking for response. --Date modification request is being sent. uri = uri ..id..'/'..'?id=' .. id ..'abc'..'&date='..content diff --git a/scripts/http-webdav-scan.nse b/scripts/http-webdav-scan.nse index 79aed3095..c55aa6f6c 100644 --- a/scripts/http-webdav-scan.nse +++ b/scripts/http-webdav-scan.nse @@ -3,7 +3,6 @@ local ipOps = require "ipOps" local table = require "table" local shortport = require "shortport" local stdnse = require "stdnse" -local string = require "string" description = [[ A script to detect WebDAV installations. Uses the OPTIONS and PROPFIND methods. @@ -180,4 +179,3 @@ function action (host, port) if #output > 0 then return output else return nil end end - diff --git a/scripts/imap-ntlm-info.nse b/scripts/imap-ntlm-info.nse index b61b1491f..60a29a896 100644 --- a/scripts/imap-ntlm-info.nse +++ b/scripts/imap-ntlm-info.nse @@ -1,7 +1,6 @@ local comm = require "comm" local os = require "os" local datetime = require "datetime" -local bin = require "bin" local shortport = require "shortport" local sslcert = require "sslcert" local stdnse = require "stdnse" diff --git a/scripts/ip-geolocation-map-kml.nse b/scripts/ip-geolocation-map-kml.nse index 2cae31773..ade7b645b 100644 --- a/scripts/ip-geolocation-map-kml.nse +++ b/scripts/ip-geolocation-map-kml.nse @@ -1,4 +1,3 @@ -local http = require "http" local geoip = require "geoip" local io = require "io" local stdnse = require "stdnse" diff --git a/scripts/ipmi-brute.nse b/scripts/ipmi-brute.nse index e8fc54c3a..170683a92 100644 --- a/scripts/ipmi-brute.nse +++ b/scripts/ipmi-brute.nse @@ -4,8 +4,6 @@ local ipmi = require "ipmi" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" -local string = require "string" -local table = require "table" description = [[ Performs brute force password auditing against IPMI RPC server. diff --git a/scripts/ipv6-multicast-mld-list.nse b/scripts/ipv6-multicast-mld-list.nse index 204fa3ea8..56cb60be7 100644 --- a/scripts/ipv6-multicast-mld-list.nse +++ b/scripts/ipv6-multicast-mld-list.nse @@ -5,7 +5,6 @@ local stdnse = require "stdnse" local string = require "string" local table = require "table" local multicast = require "multicast" -local math = require "math" description = [[ Uses Multicast Listener Discovery to list the multicast addresses subscribed to diff --git a/scripts/ldap-novell-getpass.nse b/scripts/ldap-novell-getpass.nse index b3568cba8..95c762d84 100644 --- a/scripts/ldap-novell-getpass.nse +++ b/scripts/ldap-novell-getpass.nse @@ -1,4 +1,3 @@ -local bin = require "bin" local comm = require "comm" local ldap = require "ldap" local shortport = require "shortport" diff --git a/scripts/nje-pass-brute.nse b/scripts/nje-pass-brute.nse index 906b5cb7e..ad3aa5354 100644 --- a/scripts/nje-pass-brute.nse +++ b/scripts/nje-pass-brute.nse @@ -1,6 +1,4 @@ -local io = require "io" local string = require "string" -local table = require "table" local nmap = require "nmap" local stdnse = require "stdnse" local shortport = require "shortport" @@ -9,7 +7,6 @@ local creds = require "creds" local unpwdb = require "unpwdb" local drda = require "drda" local comm = require "comm" -local nsedebug = require "nsedebug" description = [[ z/OS JES Network Job Entry (NJE) 'I record' password brute forcer. diff --git a/scripts/ntp-info.nse b/scripts/ntp-info.nse index cc77bb01d..01731bd30 100644 --- a/scripts/ntp-info.nse +++ b/scripts/ntp-info.nse @@ -2,7 +2,6 @@ local bin = require "bin" local comm = require "comm" local datetime = require "datetime" local os = require "os" -local math = require "math" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" diff --git a/scripts/omron-info.nse b/scripts/omron-info.nse index d414cc3db..b260c98cb 100644 --- a/scripts/omron-info.nse +++ b/scripts/omron-info.nse @@ -2,7 +2,6 @@ local bin = require "bin" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" -local table = require "table" description = [[ This NSE script is used to send a FINS packet to a remote device. The script diff --git a/scripts/path-mtu.nse b/scripts/path-mtu.nse index 28d322d02..6dc441c43 100644 --- a/scripts/path-mtu.nse +++ b/scripts/path-mtu.nse @@ -1,4 +1,3 @@ -local bin = require "bin" local ipOps = require "ipOps" local math = require "math" local nmap = require "nmap" @@ -398,4 +397,3 @@ action = function(host) return "" .. MTUS[m] .. " <= PMTU < " .. MTUS[m - 1] end end - diff --git a/scripts/pop3-ntlm-info.nse b/scripts/pop3-ntlm-info.nse index 57660da61..9f401a390 100644 --- a/scripts/pop3-ntlm-info.nse +++ b/scripts/pop3-ntlm-info.nse @@ -1,7 +1,6 @@ local comm = require "comm" local os = require "os" local datetime = require "datetime" -local bin = require "bin" local shortport = require "shortport" local stdnse = require "stdnse" local base64 = require "base64" diff --git a/scripts/rmi-vuln-classloader.nse b/scripts/rmi-vuln-classloader.nse index 3a737cde9..e677a8db1 100644 --- a/scripts/rmi-vuln-classloader.nse +++ b/scripts/rmi-vuln-classloader.nse @@ -1,4 +1,3 @@ -local bin = require "bin" local rmi = require "rmi" local shortport = require "shortport" local string = require "string" diff --git a/scripts/smb-double-pulsar-backdoor.nse b/scripts/smb-double-pulsar-backdoor.nse index 819fe0a57..b0b991dfe 100644 --- a/scripts/smb-double-pulsar-backdoor.nse +++ b/scripts/smb-double-pulsar-backdoor.nse @@ -1,4 +1,3 @@ -local bin = require "bin" local smb = require "smb" local vulns = require "vulns" local stdnse = require "stdnse" diff --git a/scripts/smb-protocols.nse b/scripts/smb-protocols.nse index 868e41ef7..ee352ec1c 100644 --- a/scripts/smb-protocols.nse +++ b/scripts/smb-protocols.nse @@ -1,6 +1,5 @@ local smb = require "smb" local stdnse = require "stdnse" -local string = require "string" local nmap = require "nmap" description = [[ @@ -23,8 +22,8 @@ script is the successor to the (removed) smbv2-enabled script. -- @usage nmap -p139 --script smb-protocols -- -- @output --- | smb-protocols: --- | dialects: +-- | smb-protocols: +-- | dialects: -- | NT LM 0.12 (SMBv1) [dangerous, but default] -- | 2.02 -- | 2.10 @@ -52,7 +51,7 @@ hostrule = function(host) end action = function(host,port) - local status, supported_dialects, overrides + local status, supported_dialects, overrides local output = stdnse.output_table() overrides = {} status, supported_dialects = smb.list_dialects(host, overrides) @@ -62,7 +61,7 @@ action = function(host,port) supported_dialects[i] = v .. " (SMBv1) [dangerous, but default]" end end - output.dialects = supported_dialects + output.dialects = supported_dialects end if #output.dialects>0 then diff --git a/scripts/smb-vuln-conficker.nse b/scripts/smb-vuln-conficker.nse index 75987f4e7..60f6deec1 100644 --- a/scripts/smb-vuln-conficker.nse +++ b/scripts/smb-vuln-conficker.nse @@ -1,7 +1,6 @@ local msrpc = require "msrpc" local nmap = require "nmap" local smb = require "smb" -local stdnse = require "stdnse" local string = require "string" local table = require "table" local vulns = require "vulns" diff --git a/scripts/smb-vuln-cve2009-3103.nse b/scripts/smb-vuln-cve2009-3103.nse index b32ae8df3..e1be86776 100644 --- a/scripts/smb-vuln-cve2009-3103.nse +++ b/scripts/smb-vuln-cve2009-3103.nse @@ -1,8 +1,6 @@ -local msrpc = require "msrpc" local nmap = require "nmap" local smb = require "smb" local stdnse = require "stdnse" -local string = require "string" local table = require "table" local vulns = require "vulns" diff --git a/scripts/smb-vuln-ms06-025.nse b/scripts/smb-vuln-ms06-025.nse index 791baf0a6..ea203bcd8 100644 --- a/scripts/smb-vuln-ms06-025.nse +++ b/scripts/smb-vuln-ms06-025.nse @@ -2,7 +2,6 @@ local msrpc = require "msrpc" local nmap = require "nmap" local smb = require "smb" local stdnse = require "stdnse" -local string = require "string" local table = require "table" local vulns = require "vulns" diff --git a/scripts/smb-vuln-ms08-067.nse b/scripts/smb-vuln-ms08-067.nse index 95532264f..49326f344 100644 --- a/scripts/smb-vuln-ms08-067.nse +++ b/scripts/smb-vuln-ms08-067.nse @@ -1,7 +1,6 @@ local msrpc = require "msrpc" local nmap = require "nmap" local smb = require "smb" -local stdnse = require "stdnse" local string = require "string" local table = require "table" local vulns = require "vulns" diff --git a/scripts/smb-vuln-regsvc-dos.nse b/scripts/smb-vuln-regsvc-dos.nse index 6a154f56b..9af2c1433 100644 --- a/scripts/smb-vuln-regsvc-dos.nse +++ b/scripts/smb-vuln-regsvc-dos.nse @@ -1,8 +1,6 @@ local msrpc = require "msrpc" local nmap = require "nmap" local smb = require "smb" -local stdnse = require "stdnse" -local string = require "string" local table = require "table" local vulns = require "vulns" diff --git a/scripts/smb2-capabilities.nse b/scripts/smb2-capabilities.nse index d5dfe476b..c1388b8e2 100644 --- a/scripts/smb2-capabilities.nse +++ b/scripts/smb2-capabilities.nse @@ -1,7 +1,6 @@ local smb = require "smb" local smb2 = require "smb2" local stdnse = require "stdnse" -local string = require "string" local table = require "table" local nmap = require "nmap" @@ -26,10 +25,10 @@ References: -- @usage nmap -p 139 --script smb2-capabilities -- -- @output --- | smb2-capabilities: --- | 2.02: +-- | smb2-capabilities: +-- | 2.02: -- | Distributed File System --- | 2.10: +-- | 2.10: -- | Distributed File System -- | Leasing -- | Multi-credit operations @@ -54,7 +53,7 @@ hostrule = function(host) end action = function(host,port) - local status, smbstate, overrides + local status, smbstate, overrides local output = stdnse.output_table() overrides = {} diff --git a/scripts/smb2-security-mode.nse b/scripts/smb2-security-mode.nse index 2bff35ea8..845a41d2d 100644 --- a/scripts/smb2-security-mode.nse +++ b/scripts/smb2-security-mode.nse @@ -1,7 +1,6 @@ local smb = require "smb" local smb2 = require "smb2" local stdnse = require "stdnse" -local string = require "string" local table = require "table" local nmap = require "nmap" @@ -22,8 +21,8 @@ References: -- @usage nmap -p 139 --script smb2-security-mode -- -- @output --- | smb2-security-mode: --- | 3.11: +-- | smb2-security-mode: +-- | 3.11: -- |_ Message signing enabled but not required -- -- @xmloutput @@ -41,7 +40,7 @@ hostrule = function(host) end action = function(host,port) - local status, smbstate, overrides + local status, smbstate, overrides local output = stdnse.output_table() overrides = overrides or {} @@ -61,7 +60,7 @@ action = function(host,port) -- Signing configuration. SMBv2 servers support two flags: -- * Message signing enabled -- * Message signing required - local signing_enabled, signing_required + local signing_enabled, signing_required if smbstate['security_mode'] & 0x01 == 0x01 then signing_enabled = true end @@ -77,9 +76,9 @@ action = function(host,port) table.insert(message_signing, "Message signing is disabled and not required!") elseif not(signing_enabled) and signing_required then table.insert(message_signing, "Message signing is disabled!") - end - output[stdnse.tohex(dialect[1], {separator = ".", group = 2})] = message_signing - -- We exit after first accepted dialect, + end + output[stdnse.tohex(dialect[1], {separator = ".", group = 2})] = message_signing + -- We exit after first accepted dialect, -- SMB signing configuration appears to be global so -- there is no point of trying other dialects. break diff --git a/scripts/smtp-ntlm-info.nse b/scripts/smtp-ntlm-info.nse index 29ae3f3f8..b331870fa 100644 --- a/scripts/smtp-ntlm-info.nse +++ b/scripts/smtp-ntlm-info.nse @@ -1,7 +1,6 @@ local datetime = require "datetime" local os = require "os" local smtp = require "smtp" -local bin = require "bin" local shortport = require "shortport" local stdnse = require "stdnse" local base64 = require "base64" diff --git a/scripts/snmp-brute.nse b/scripts/snmp-brute.nse index 0c71362a1..f881c90a2 100644 --- a/scripts/snmp-brute.nse +++ b/scripts/snmp-brute.nse @@ -6,7 +6,6 @@ local packet = require "packet" local shortport = require "shortport" local snmp = require "snmp" local stdnse = require "stdnse" -local string = require "string" local unpwdb = require "unpwdb" description = [[ @@ -269,4 +268,3 @@ action = function(host, port) stdnse.debug1("An error occurred: "..result.msg) end end - diff --git a/scripts/ssl-known-key.nse b/scripts/ssl-known-key.nse index 5dd1fc150..f85dfe07b 100644 --- a/scripts/ssl-known-key.nse +++ b/scripts/ssl-known-key.nse @@ -2,7 +2,6 @@ local io = require "io" local nmap = require "nmap" local shortport = require "shortport" local stdnse = require "stdnse" -local string = require "string" local sslcert = require "sslcert" local tls = require "tls" diff --git a/scripts/targets-ipv6-multicast-slaac.nse b/scripts/targets-ipv6-multicast-slaac.nse index 2bf8dec49..4bf01c6ef 100644 --- a/scripts/targets-ipv6-multicast-slaac.nse +++ b/scripts/targets-ipv6-multicast-slaac.nse @@ -2,7 +2,6 @@ local coroutine = require "coroutine" local ipOps = require "ipOps" local math = require "math" local nmap = require "nmap" -local os = require "os" local packet = require "packet" local stdnse = require "stdnse" local string = require "string" diff --git a/scripts/wdb-version.nse b/scripts/wdb-version.nse index 926591220..323806400 100644 --- a/scripts/wdb-version.nse +++ b/scripts/wdb-version.nse @@ -1,5 +1,3 @@ -local bin = require "bin" -local bit = require "bit" local nmap = require "nmap" local rpc = require "rpc" local shortport = require "shortport"