based on http-wordpress-brute
Thanks for this! We're trying to avoid having separate brute scripts for web apps, since we vastly improved http-form-brute in Nmap 7.10. If it doesn't just work right away, could you try converting your script to an entry in the known_apps table in that script? There are already entries for Wordpress, Joomla, MediaWiki, etc. that you could use as a starting place. Let us know what you think!
added drupal to http-form-brute
Oh my bad, I added drupal to http-form-brute
Add Drupal to known apps. Closes #555