mirror of
https://github.com/nmap/nmap.git
synced 2025-12-06 04:31:29 +00:00
e42409be93
The @xmloutput section documentation is not done, and I'm not sure how
to best do it, since it will be the same for all brute.lua scripts. This
is how it looks:
metasploit-msgrpc-brute:
<table key="Accounts">
<table>
<elem key="username">root</elem>
<elem key="state">Valid credentials</elem>
<elem key="password">root</elem>
</table>
</table>
<elem key="Statistics">Performed 3 guesses in 4 seconds, average tps: 0</elem>
creds-summary:
<table key="127.0.0.1">
<table key="9929/nping-echo">
<table>
<elem key="password">123456</elem>
<elem key="state">Valid credentials</elem>
</table>
</table>
<table key="55553/unknown">
<table>
<elem key="username">root</elem>
<elem key="state">Valid credentials</elem>
<elem key="password">root</elem>
</table>
</table>
</table>
42 lines
1.1 KiB
Lua
42 lines
1.1 KiB
Lua
local creds = require "creds"
|
|
|
|
description = [[
|
|
Lists all discovered credentials (e.g. from brute force and default password checking scripts) at end of scan.
|
|
]]
|
|
|
|
---
|
|
--@output
|
|
-- | creds-summary:
|
|
-- | 10.10.10.10
|
|
-- | 22/ssh
|
|
-- | lisbon:jane - Account is valid
|
|
-- | 10.10.10.20
|
|
-- | 21/ftp
|
|
-- | jane:redjohn - Account is locked
|
|
-- | 22/ssh
|
|
-- | cho:secret11 - Account is valid
|
|
-- | 23/telnet
|
|
-- | rigsby:pelt - Account is valid
|
|
-- | pelt:rigsby - Password needs to be changed at next logon
|
|
-- | 80/http
|
|
-- | lisbon:jane - Account is valid
|
|
-- | jane:redjohn - Account is locked
|
|
-- |_ cho:secret11 - Account is valid
|
|
|
|
|
|
author = "Patrik Karlsson"
|
|
license = "Same as Nmap--See http://nmap.org/book/man-legal.html"
|
|
categories = {"auth", "default", "safe"}
|
|
|
|
|
|
postrule = function()
|
|
local all = creds.Credentials:new(creds.ALL_DATA)
|
|
local tab = all:getTable()
|
|
if ( tab and next(tab) ) then return true end
|
|
end
|
|
|
|
action = function()
|
|
local all = creds.Credentials:new(creds.ALL_DATA)
|
|
return all:getTable()
|
|
end
|