PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-07 21:21:31 +00:00
Code Issues Projects Releases Wiki Activity
Files
5136ad0668bd57db02e40ac7811443cfe33799c4
nmap/scripts/http-headers.nse
ron 5136ad0668 Fixed a NSEDoc comment on http-header.nse
2009-08-29 14:46:57 +00:00

92 lines
2.2 KiB
Lua
Raw Blame History

description = [[
Does a GET request for the root folder ("/"), and displays the HTTP headers returned.
]]
---
--@output
-- Interesting ports on scanme.nmap.org (64.13.134.52):
-- PORT STATE SERVICE
-- 80/tcp open http syn-ack
-- | http-headers: (HEAD used)
-- | HTTP/1.1 200 OK
-- | Date: Thu, 27 Aug 2009 15:46:39 GMT
-- | Server: Apache/2.2.11 (Unix) PHP/5.2.8
-- | Connection: close
-- |_ Content-Type: text/html;charset=ISO-8859-1
--
--@args path The path to request, such as '/index.php'. Default: '/'.
--@args useget Set to force GET requests instead of HEAD.
author = "Ron Bowes <ron@skullsecurity.org>"
license = "Same as Nmap--See http://nmap.org/book/man-legal.html"
categories = {"discovery"}
require "shortport"
require "http"
portrule = function(host, port)
local svc = { std = { ["http"] = 1, ["http-alt"] = 1 },
ssl = { ["https"] = 1, ["https-alt"] = 1 } }
if port.protocol ~= 'tcp'
or not ( svc.std[port.service] or svc.ssl[port.service] ) then
return false
end
-- Don't bother running on SSL ports if we don't have SSL.
if (svc.ssl[port.service] or port.version.service_tunnel == 'ssl')
and not nmap.have_ssl() then
return false
end
return true
end
action = function(host, port)
local path = nmap.registry.args.path
local request_type = "HEAD"
if(path == nil) then
path = '/'
end
local status = false
local result
-- Check if the user didn't want HEAD to be used
if(nmap.registry.args.useget == nil) then
-- Try using HEAD first
status, result = http.can_use_head(host, port, path)
end
-- If head failed, try using GET
if(status == false) then
stdnse.print_debug(1, "http-headers.nse: HEAD request failed, falling back to GET")
result = http.get(host, port, path)
request_type = "GET"
end
if(result == nil) then
if(nmap.debugging() > 0) then
return "ERROR: Header request failed"
else
return nil
end
end
if(result.rawheader == nil) then
if(nmap.debugging() > 0) then
return "ERROR: Header request didn't return a proper header"
else
return nil
end
end
local response = "(" .. request_type .. " used)\n"
for _, header in ipairs(result.rawheader) do
response = response .. header .. "\n"
end
return response
end
Reference in New Issue View Git Blame Copy Permalink