Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: HTTP fingerprint NSE?

From: David Fifield <david () bamsoftware com>
Date: Wed, 16 May 2012 16:22:29 -0700
On Wed, May 16, 2012 at 07:18:47PM -0400, stripes wrote:

On Mon, May 14, 2012 at 08:38:55PM -0700, David Fifield wrote:

You should start with the section labeled

------------------------------------------------
----               ATTACKS                  ----
------------------------------------------------
-- These will search for and possibly exploit vulnerabilities.

Some of these, I'm sure, already have scripts. For example, this one is
http-vmware-path-vuln.nse


For the ones that already have scripts, should they be left in the
http-fingerprints.lua or should they be cleaned up as the NSEs are
written?


Leave them in http-fingerprints.lua. People running http-enum will still
want to see them.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: