Nmap Development mailing list archives
xmpp.nse
From: Vasiliy Kulikov <segooon () gmail com>
Date: Sun, 17 Apr 2011 20:26:59 +0400
Hi, I've written a basic version of XMPP server capabilities detection. Currently it lacks some sanity checks, doesn't process xml quotation and doesn't connects to the server as a server (only as a client). Also it needs more detailed description :) It tries to query _xmpp-{server,client}._tcp.%s SRV record and to connect to the specified port. Then it starts standard xml stream and processes the answer. It tries to identify: whether the server supports TLS, what compression methods the server supports, what auth methods the server supports. Possible output: Host script results: | xmpp: | s2s: hermes.jabber.org:5269 | c2s: hermes.jabber.org:5222 | starttls | mechanism: CRAM-MD5 | mechanism: LOGIN | mechanism: PLAIN | mechanism: DIGEST-MD5 | mechanism: SCRAM-SHA-1 |_ compression: zlib I wonder whether it is acceptable to process both DNS and server scan in a single script. In case of division into xmpp-dns and xmpp-scan one has to pass --script-args host=server to the script as the server SRV+A record might differ from the A record. Also maybe it worth trying to start SSL negotiation to get server's SSL sertificate. Any comments are welcome. Thanks, -- Vasiliy
Attachment:
xmpp.nse
Description:
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- xmpp.nse Vasiliy Kulikov (Apr 17)
- Re: xmpp.nse David Fifield (Apr 18)
- Re: xmpp.nse David Fifield (Apr 18)
- Re: xmpp.nse Vasiliy Kulikov (Apr 21)
- Re: xmpp.nse Henri Doreau (Apr 30)
- Re: xmpp.nse Vasiliy Kulikov (May 04)
- Re: xmpp.nse Henri Doreau (May 07)
- Re: xmpp.nse Vasiliy Kulikov (May 08)
- Re: xmpp.nse Vasiliy Kulikov (May 15)
- Re: xmpp.nse Henri Doreau (May 22)
- Re: xmpp.nse Vasiliy Kulikov (May 22)
- Re: xmpp.nse Vasiliy Kulikov (Apr 21)