Re: nmap nse script telnet-brute

[nnposter <nnposter () users sourceforge net>]

Based on the telnet banner (privately provided) I was able to get hold
of a similar target and to run telnet-brute against it.

An issue in my case was that the authenticated user is presented with a
custom menu that is not matching any of the empirical patterns for
recognizing a successful login.

Please test an updated version of the script from the SVN at
https://svn.nmap.org/nmap/scripts/telnet-brute.nse

It is still possible that your target is presenting some other content,
in which case I will need all the server-side data sent to the client
right after it receives password, up to and including the prompt.


That said, even with the original, unmodified script I have not
experienced the endless looping you are describing. The script ran for
about 15 seconds. (The updated script confirms the correct password in
about 2 seconds.)


Cheers,
nnposter
_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/