nfs-ls
脚本使用类型:
脚本所属分类:
discovery, safe
脚本下载地址: http://nmap.org/svn/scripts/nfs-ls.nse
Attempts to get useful information about files from NFS exports.
The output is intended to resemble the output of ls
.
The script starts by enumerating and mounting the remote NFS exports. After that it performs an NFS GETATTR procedure call for each mounted point in order to get its ACLs. For each mounted directory the script will try to list its file entries with their attributes.
Since the file attributes shown in the results are the result of GETATTR, READDIRPLUS, and similar procedures, the attributes are the attributes of the local filesystem.
These access permissions are shown only with NFSv3:
If set, limits the amount of files returned by the script. If set to 0 or less, all files are shown. The default value is 10.
Specifies which one of the last mac times to use in the files attributes output. Possible values are:
m
: last modification time (mtime)
a
: last access time (atime)
c
: last change time (ctime)
m
(mtime).
If set to 1
or true
,
shows file sizes in a human readable format with suffixes like
KB
and MB
.
执行格式
nmap -sV --script=nfs-ls <target>
PORT STATE SERVICE 111/tcp open rpcbind | nfs-ls: | Arguments: | maxfiles: 10 (file listing output limited) | | NFS Export: /mnt/nfs/files | NFS Access: Read Lookup NoModify NoExtend NoDelete NoExecute | PERMISSION UID GID SIZE MODIFICATION TIME FILENAME | drwxr-xr-x 1000 100 4096 2010-06-17 12:28 /mnt/nfs/files | drwxr--r-- 1000 1002 4096 2010-05-14 12:58 sources | -rw------- 1000 1002 23606 2010-06-17 12:28 notes | | NFS Export: /home/storage/backup | NFS Access: Read Lookup Modify Extend Delete NoExecute | PERMISSION UID GID SIZE MODIFICATION TIME FILENAME | drwxr-xr-x 1000 100 4096 2010-06-11 22:31 /home/storage/backup | -rw-r--r-- 1000 1002 0 2010-06-10 08:34 filetest | drwx------ 1000 100 16384 2010-02-05 17:05 lost+found | -rw-r--r-- 0 0 5 2010-06-10 11:32 rootfile |_ lrwxrwxrwx 1000 1002 8 2010-06-10 08:34 symlink
Author: Patrik Karlsson, Djalal Harouni
License: VER007 整理 http://www.ver007.com