Nmap Development mailing list archives
Nmap http-open-redirect problem
From: Diago <diago () protonmail ch>
Date: Wed, 01 Feb 2017 10:18:24 -0500
I wanted to test if my site represents any open redirect vulnerability, I have tried with Nmap script https://nmap.org/nsedoc/scripts/http-open-redirect.html it starts the tests and finds only open ports. I wanted to made sure this script works so I created a /redirect.php on my website so when someone enters my site. com/redirect.php?redirect_url=http://anothersite. com it redirects to that, so this way I'm sure my site is vulnerable to open redirect but Nmap doesn't find it when I execute the script, it only finds open ports but not the path affected by open URL vulnerability as script describes on nmap website. What to do? I don't know if I'm doing smthng wrong. Sent from ProtonMail mobile
_______________________________________________ Sent through the dev mailing list https://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- Nmap http-open-redirect problem Diago (Feb 02)
- Re: Nmap http-open-redirect problem Daniel Miller (Feb 02)