File nessus-brute

脚本使用类型: portrule
脚本所属分类: intrusive, brute
脚本下载地址: http://nmap.org/svn/scripts/nessus-brute.nse

User Summary

Performs brute force password auditing against a Nessus vulnerability scanning daemon using the NTP 1.2 protocol.

Script Arguments

passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb

Example Usage

执行格式

nmap --script nessus-brute -p 1241 <host>

Script Output

PORT     STATE SERVICE
1241/tcp open  nessus
| nessus-brute: 
|   Accounts
|     nessus:nessus - Valid credentials
|   Statistics
|_    Performed 35 guesses in 75 seconds, average tps: 0

This script does not appear to perform well when run using multiple threads
Although, it's very slow running under a single thread it does work as intended

Requires

• brute
• creds
• nmap
• shortport

Author: Patrik Karlsson

License: VER007 整理 http://www.ver007.com