mirror of
https://github.com/nmap/nmap.git
synced 2025-12-10 09:49:05 +00:00
9cf7f14afe
with http.get_url() or create more complex requests with http.request(). There is also an http.get() function which takes components (hostname, port, and path) rather than a URL. The HTTPAuth, robots, and showHTMLTitle NSE scripts have been updated to use this library. Sven Klemm wrote all of this code.
52 lines
1.2 KiB
Lua
52 lines
1.2 KiB
Lua
-- dvt <diman.todorov@gmail.com>
|
|
-- See nmaps COPYING for licence
|
|
|
|
id = "HTML title"
|
|
|
|
description = "Connects to an HTTP server and extracts the title of the default page."
|
|
|
|
author = "Diman Todorov <diman.todorov@gmail.com>"
|
|
|
|
license = "See nmaps COPYING for licence"
|
|
|
|
categories = {"demo", "safe"}
|
|
|
|
require 'http'
|
|
|
|
portrule = function(host, port)
|
|
if not (port.service == 'http' or port.service == 'https') then
|
|
return false
|
|
end
|
|
-- Don't bother running on SSL ports if we don't have SSL.
|
|
if (port.service == 'https' or port.version.service_tunnel == 'ssl')
|
|
and not nmap.have_ssl() then
|
|
return false
|
|
end
|
|
return true
|
|
end
|
|
|
|
action = function(host, port)
|
|
local data, result, title, protocol
|
|
|
|
data = http.get( host, port, '/' )
|
|
result = data.body
|
|
|
|
-- watch out, this doesn't really work for all html tags
|
|
result = string.gsub(result, "<(/?%a+)>", function(c) return "<" .. string.lower(c) .. ">" end)
|
|
|
|
title = string.match(result, "<title>(.+)</title>")
|
|
|
|
if title ~= nil then
|
|
result = string.gsub(title , "[\n\r\t]", "")
|
|
if string.len(title) > 50 then
|
|
stdnse.print_debug("showHTMLTitle.nse: Title got truncated!");
|
|
result = string.sub(result, 1, 62) .. "..."
|
|
end
|
|
else
|
|
result = "Site doesn't have a title."
|
|
end
|
|
|
|
return result
|
|
end
|
|
|