A collection of Nmap NSE scripts that I made.
Branch: master
Clone or download
michenriksen
michenriksen Initial commit
Latest commit 34579f2 Jan 14, 2013
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore Initial commit Jan 14, 2013
README.md Initial commit Jan 14, 2013
http-apache-server-status.nse Initial commit Jan 14, 2013
http-rails-xml-parser.nse Initial commit Jan 14, 2013

README.md

Nmap NSE Scripts

A collection of Nmap NSE scripts that I made.

Scripts:

http-rails-xml-parser

This script sends a specially crafted XML body in a POST request to any detected web services to see if it is a Ruby on Rails server that is vulnerable to the recently discovered CVE-2013-0156 bug.

Usage:

$ nmap -sV --script http-rails-xml-parser <target>

http-apache-server-status

This script checks if a web server is serving the Apache Server Status page which might contain a lot of interesting information. Daniel Cid did some research and found big sites having the server-status page wide open to the public. Read more about it here.

Usage:

$ nmap -sV --script http-apache-server-status <target>