Nmap Development mailing list archives

Re: Nmap Erros on URI using NSE

From: Shritam Bhowmick <shritam.bhowmick () gmail com>
Date: Tue, 19 Aug 2014 13:17:02 +0530

Exactly. I have tested and the script is working. Good work there. Any
ideas to reduce these bottlenecks?

Regards
Shritam Bhowmick
Founder at OpenFire Technologies.
Penetration Tester at+OpenFire Security.
Web Application Analysis and Research.
www.openfire-security.net
http://forum.openfire-security.net

The information contained herein (including any accompanying documents) is
confidential and is intended solely for the addressee(s). It may contain
proprietary, confidential, privileged information or other information
subject to legal restrictions. If you are not the intended recipient of
this message, please do not read, copy, use or disclose this message or its
attachments. Please notify the sender immediately and delete all copies of
this message and any attachments. This e-mail message including
attachment(s), if any, is believed to be free of any virus. However, it is
the responsibility of the recipient to ensure for absence of viruses.
OpenFire Technologies shall not be held responsible nor does it accept
any liability for any damage arising in any way from its use.


On Tue, Aug 19, 2014 at 4:34 AM, <nnposter () users sourceforge net> wrote:

Shritam Bhowmick wrote:

Okay, at last I modified the code. Nnposter is correct if gives you out

the

credentials, but there's something missing to the script, I ran the test
over 20 times by now and I hit 5 successful attempts and rest 15 were

false

positives: look at the results here:

Invalid with same code: http://s22.postimg.org/pq7q8x2y9/invalid.png
Valid with same code: http://s7.postimg.org/6b864ls0b/vlid.png

What's wrong?


Your brute-force run is taking a substantial amount of time, around
270 seconds, while mine was consistently around 45 seconds so you are
experiencing some bottleneck somewhere. I am guessing that the false
hits are generated by receiving incomplete responses from the server.


Cheers,
nnposter
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

Current thread:

Re: Nmap Erros on URI using NSE, (continued)
- - - Re: Nmap Erros on URI using NSE Shritam Bhowmick (Aug 14)
    - Re: Nmap Erros on URI using NSE Shritam Bhowmick (Aug 14)
    - Re: Nmap Erros on URI using NSE Robin Wood (Aug 14)
    - Re: Nmap Erros on URI using NSE Shritam Bhowmick (Aug 14)
    - Re: Nmap Erros on URI using NSE Robin Wood (Aug 14)
    - Re: Nmap Erros on URI using NSE nnposter (Aug 14)
    - Re: Nmap Erros on URI using NSE Robin Wood (Aug 14)
    - Re: Nmap Erros on URI using NSE Shritam Bhowmick (Aug 14)
    - Re: Nmap Erros on URI using NSE Shritam Bhowmick (Aug 15)
    - Re: Nmap Erros on URI using NSE nnposter (Aug 18)
    - Re: Nmap Erros on URI using NSE Shritam Bhowmick (Aug 19)