Nmap Development mailing list archives
[NSE] http-iis-short-name-brute.nse
From: "Dev (nmap)" <dev.kyckel () gmail com>
Date: Sun, 16 Sep 2012 17:12:19 +0200
Hi List,Attached is a NSE implementation of "iis-shortname-scanner-poc" from http://code.google.com/p/iis-shortname-scanner-poc/ .
The script searches for the short name of files and dirs, example output: PORT STATE SERVICE REASON 80/tcp open http | http-iis-short-name-brute: | Folders | aspnet~1 | Files | sql~1.bak |_ test~1.phpIt still needs some testing, but currently I don't have access to an affected IIS installation. Any chance someone here has access to an IIS installation and can test it (or grant me permission to test on the platform) ?
- Jesper
Attachment:
http-iis-short-name-brute.nse
Description:
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] http-iis-short-name-brute.nse Dev (nmap) (Sep 16)
- Re: [NSE] http-iis-short-name-brute.nse Martin Holst Swende (Sep 16)
- Re: [NSE] http-iis-short-name-brute.nse Dev (nmap) (Sep 16)
- Re: [NSE] http-iis-short-name-brute.nse Dev (nmap) (Sep 16)
- Re: [NSE] http-iis-short-name-brute.nse David Fifield (Sep 18)
- Re: [NSE] http-iis-short-name-brute.nse Martin Holst Swende (Sep 16)