File backorifice-brute

脚本使用类型: portrule
脚本所属分类: intrusive, brute
脚本下载地址: http://nmap.org/svn/scripts/backorifice-brute.nse

User Summary

Performs brute force password auditing against the BackOrifice service. The backorifice-brute.ports script argument is mandatory (it specifies ports to run the script against).

Script Arguments

backorifice-brute.ports

(mandatory) List of UDP ports to run the script against separated with "," ex. "U:31337,25252,151-222", "U:1024-1512"

This script uses the brute library to perform password guessing. A successful password guess is stored in the nmap registry, under the nmap.registry.credentials.backorifice table for other BackOrifice scripts to use.

passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb

Example Usage

执行格式

nmap -sU --script backorifice-brute <host> --script-args backorifice-brute.ports=<ports>

Script Output

PORT       STATE  SERVICE
31337/udp  open   BackOrifice
| backorifice-brute:  
|   Accounts:
|     michael => Valid credentials
|   Statistics
|_    Perfomed 60023 guesses in 467 seconds, average tps: 138

Requires

• bin
• bit
• brute
• creds
• nmap
• shortport
• stdnse
• string
• table

Author: Gorjan Petrovski

License: VER007 整理 http://www.ver007.com