Need an exploit.lua library to unify exploit script interface #186

dmiller-nmap · 2015-07-11T02:28:50Z

Possible function: x

Possibly include some things like:

function to return the value of the most-specific provided script-arg between "exploit.cmd" and "SCRIPT_NAME.cmd".
function to produce and detect a unique string on various architectures (e.g. PHP, Java, cmd.exe, /bin/sh), useful for confirming code execution.
lists of known files to check for file inclusion or directory traversal bugs
common output format like vulns.lua? Or just use vulns.lua.

cldrn · 2015-07-20T13:48:24Z

Hi Daniel,

What do you mean in number 1? Implementing logic that will select a value if BOTH arguments were set?

dmiller-nmap · 2015-07-20T18:02:51Z

@cldrn Yes, a way to use --script-args 'exploit.cmd="uname -a", vuln-script-x.cmd="whoami"' and get the right thing.

h4ck3rk3y · 2015-09-01T18:25:41Z

i had a similar idea regarding directory traversal and lfi scripts earlier. a lot of them have similar code we could use an exploit library. is anyone assigned to this?

p-l- · 2015-09-01T18:29:02Z

@cldrn that's what is implemented for the ls module proposal (see #106).

dmiller-nmap added enhancement NSE labels Jul 11, 2015

dmiller-nmap added the GSoC Idea label Jan 6, 2016

wongwaituck mentioned this issue Aug 8, 2017

exploit.lua #960

Open

nmap / nmap Public

Need an exploit.lua library to unify exploit script interface #186

Need an exploit.lua library to unify exploit script interface #186

dmiller-nmap commented Jul 11, 2015

cldrn commented Jul 20, 2015

dmiller-nmap commented Jul 20, 2015

h4ck3rk3y commented Sep 1, 2015

p-l- commented Sep 1, 2015

nmap / nmap Public

Need an exploit.lua library to unify exploit script interface #186

Need an exploit.lua library to unify exploit script interface #186

Comments

dmiller-nmap commented Jul 11, 2015

cldrn commented Jul 20, 2015

dmiller-nmap commented Jul 20, 2015

h4ck3rk3y commented Sep 1, 2015

p-l- commented Sep 1, 2015