Formatting the Script Output | Mastering the Nmap Scripting Engine

Sign In Start Free Trial

Book Overview & Buying
Table Of Contents
Feedback & Rating

Mastering the Nmap Scripting Engine

By : Paulino Calderon

5 (1)

Mastering the Nmap Scripting Engine

5 (1)

By: Paulino Calderon

Overview of this book

If you want to learn to write your own scripts for the Nmap Scripting Engine, this is the book for you. It is perfect for network administrators, information security professionals, and even Internet enthusiasts who are familiar with Nmap.

Mastering the Nmap Scripting Engine

Mastering the Nmap Scripting Engine

Credits

Credits

About the Author

About the Author

Acknowledgments

Acknowledgments

About the Reviewers

About the Reviewers

www.PacktPub.com

www.PacktPub.com

Preface

Preface

Free Chapter

Introduction to the Nmap Scripting Engine

Introduction to the Nmap Scripting Engine

Installing Nmap

Running NSE scripts

Script categories

Scan phases and NSE

Applications of NSE scripts

Setting up a development environment

Adding new scripts

Summary

Lua Fundamentals

Lua Fundamentals

Quick notes about Lua

Flow control structures

Data types

String handling

Common data structures

I/O operations

Coroutines

Metatables and metamethods

Summary

NSE Data Files

NSE Data Files

Locating your data directory

Data directory search order

Username and password lists used in brute-force attacks

Web application auditing data files

DBMS-auditing data files

Java Debug Wire Protocol data files

Other NSE data files

Other Nmap data files

Summary

Exploring the Nmap Scripting Engine API and Libraries

Exploring the Nmap Scripting Engine API and Libraries

Understanding the structure of an NSE script

Exploring environment variables

Accessing the Nmap API

The NSE registry

Writing NSE libraries

Exploring other popular NSE libraries

Summary

Enhancing Version Detection

Enhancing Version Detection

Understanding version detection mode in NSE

Writing your own version detection scripts

Examples of version detection scripts

Summary

Developing Brute-force Password-auditing Scripts

Developing Brute-force Password-auditing Scripts

Working with the brute NSE library

Reading usernames and password lists with the unpwdb NSE library

Managing user credentials found during scans

Writing an NSE script to launch password-auditing attacks against the MikroTik RouterOS API

Summary

Formatting the Script Output

Formatting the Script Output

Output formats and Nmap Scripting Engine

XML structured output

Printing verbosity messages

Including debugging information

The weakness of the grepable format

NSE script output in the HTML report

Summary

Working with Network Sockets and Binary Data

Working with Network Sockets and Binary Data

Working with NSE sockets

Understanding advanced network I/O

Manipulating raw packets

Raw packet handling and NSE sockets

Summary

Parallelism

Parallelism

Parallelism options in Nmap

Parallelism mechanisms in Lua

Parallelism mechanisms in NSE

Consuming TCP connections with NSE

Summary

Vulnerability Detection and Exploitation

Vulnerability Detection and Exploitation

Vulnerability scanning

Reporting vulnerabilities

Summary

Scan Phases

Scan Phases

NSE Script Template

NSE Script Template

Other templates online

Script Categories

Script Categories

Nmap Options Mind Map

Nmap Options Mind Map

References

References

Index

Index

Customer Reviews

5 (1)

5 star

100%

4 star

0%

3 star

0%

2 star

0%

1 star

0%

Output formats and Nmap Scripting Engine

Let's quickly recap how Nmap formats the output of a scan. If we run the default NSE category (-sC) against the scanme.nmap.org host, we get the following output:

nmap -n -Pn -p80 -sC scanme.nmap.org

PORT   STATE SERVICE
80/tcp open  http
|_http-title: Go ahead and ScanMe!

By default, Nmap returns the normal output if no option is given. The available output options are:

Normal output (-oN)
XML output (-oX)
Grepable output (-oG)
Script kiddie (-oS)

Tip

The -oA <basename> argument saves the output in normal, XML, and grepable formats. I personally use this option all the time. Let's say we want to scan port 80 with NSE and save the results in all formats. We would use a command similar to the following:

$nmap -p80 -sC -oA scanme.nmap.org scanme.nmap.org

When the scan is complete, new files will be generated in your current directory:

scanme.nmap.org.gnmap
scanme.nmap.org.nmap
scanme.nmap.org.xml

These files correspond to the results of the scan in grepable...

Visually different images

CONTINUE READING

83

Tech Concepts

36

Programming languages

73

Tech Tools

Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.

Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.

50+ new titles added per month and exclusive early access to books as they are being written.

Mastering the Nmap Scripting Engine

Search

Your notes and bookmarks