File metasploit-msgrpc-brute

脚本使用类型: portrule
脚本所属分类: intrusive, brute
脚本下载地址: http://nmap.org/svn/scripts/metasploit-msgrpc-brute.nse

User Summary

Performs brute force username and password auditing against Metasploit msgrpc interface.

Script Arguments

passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb

smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername

http.max-cache-size, http.max-pipeline, http.pipeline, http.useragent

Example Usage

执行格式

nmap --script metasploit-msgrpc-brute -p 55553 <host>

This script uses brute library to perform password
guessing agains Metasploit's msgrpc interface.

Script Output

PORT      STATE SERVICE REASON
55553/tcp open  unknown syn-ack
| metasploit-msgrpc-brute:
|   Accounts
|     root:root - Valid credentials
|   Statistics
|_    Performed 10 guesses in 10 seconds, average tps: 1

Requires

• brute
• shortport
• stdnse
• string
• http
• bin
• creds

Author: Aleksandar Nikolic

License: VER007 整理 http://www.ver007.com