Index

A

• Account class
  • used, for returning valid accounts / Returning valid accounts via Account objects
• advanced host discovery, NSE scripts
  • about / Advanced host discovery
  • hosts, discovering with broadcast pings / Discovering hosts with broadcast pings
  • listening to LAN, for target discovery / Listening to your LAN to discover targets
• applications, NSE scripts
  • information gathering / Information-gathering
  • advanced host discovery / Advanced host discovery
  • password auditing / Password auditing
  • vulnerability scanning / Vulnerability scanning
• APSB13-13
  • URL / Implementing structured output in your scripts
• arithmetic metamethods
  • about / Arithmetic metamethods
  • __add / Arithmetic metamethods
  • __mul / Arithmetic metamethods
  • __sub / Arithmetic metamethods
  • __div / Arithmetic metamethods
  • __unm / Arithmetic metamethods
  • __pow / Arithmetic metamethods
  • __concat / Arithmetic metamethods
• arrays
  • about / Arrays

B

• Berkeley Software Distribution (BSD)
  • about / License
• bin.unpack() method / Packing and unpacking binary data
• binary data
  • packing / Packing and unpacking binary data
  • unpacking / Packing and unpacking binary data
• bin library
  • URL / Packing and unpacking binary data
• Booleans, Lua / Booleans
• broadcast-igmp-discovery script
  • URL, for official documentation / mygroupnames.db
• broadcast-ping script / Discovering hosts with broadcast pings
• brute-force password auditing attacks
  • scripting, against MikroTik RouterOS API / Writing an NSE script to launch password-auditing attacks against the MikroTik RouterOS API
• brute force attacks
  • username and password lists / Username and password lists used in brute-force attacks
• brute NSE library
  • URL / Working with the brute NSE library
  • about / Working with the brute NSE library
  • Account class / Working with the brute NSE library
  • Engine class / Working with the brute NSE library
  • Options class / Working with the brute NSE library
  • Error class / Working with the brute NSE library
  • working with / Selecting a brute mode
  • modes / Selecting a brute mode
  • modes, selecting / Selecting a brute mode
  • Driver class, implementing / Implementing the Driver class
  • options / Passing library and user options
  • valid accounts, returning via Account class / Returning valid accounts via Account objects
  • execution errors, handling with Error class / Handling execution errors gracefully with the Error class
• brute NSE library, options
  • mode / Passing library and user options
  • firstOnly / Passing library and user options
  • passonly / Passing library and user options
  • max_retries / Passing library and user options
  • delay / Passing library and user options
  • max_guesses / Passing library and user options
  • useraspass / Passing library and user options
  • emptypass / Passing library and user options
  • title / Passing library and user options
  • nostore / Passing library and user options

C

• captures
  • about / Captures
• catch function
  • about / Exception handling in NSE scripts
• categories, NSE scripts
  • safe / Running NSE scripts, Script categories
  • auth / Script categories
  • broadcast / Script categories
  • brute / Script categories
  • default / Script categories
  • discovery / Script categories
  • dos / Script categories
  • exploit / Script categories
  • external / Script categories
  • fuzzer / Script categories
  • intrusive / Script categories
  • malware / Script categories
  • version / Script categories
  • vuln / Script categories
• character classes
  • about / Character classes
• cldrn/nmap-nse-scripts, GitHub
  • URL / Setting up a development environment
• coercion, Lua / Coercion
• comments, Lua / Comments
• common data structures, Lua
  • about / Common data structures
  • tables / Tables
  • arrays / Arrays
  • linked lists / Linked lists
  • sets / Sets
  • queues / Queues
• concatenation
  • about / Concatenation
• conditional statements, Lua
  • if-then / Conditional statements – if-then, else, and elseif
  • else-if / Conditional statements – if-then, else, and elseif
  • else / Conditional statements – if-then, else, and elseif
• condition variables
  • about / Condition variables
• coroutine, Lua
  • about / Coroutines
  • creating / Creating a coroutine
  • executing / Executing a coroutine
  • status, obtaining of / Getting the status of a coroutine
  • yielding / Yielding a coroutine
• coroutine.create function / Creating a coroutine
• coroutine.resume function / Executing a coroutine
• coroutine.running function / Determining the running coroutine
• coroutine.status() function / Working with coroutines
• coroutine.status function / Getting the status of a coroutine
• coroutine.yield function / Yielding a coroutine
• coroutines
  • about / Coroutines
  • states / Coroutines
  • coroutine.create(f) function / Coroutines
  • coroutine.resume (co [, val1, ···]) function / Coroutines
  • coroutine.running() function / Coroutines
  • coroutine.status(co) function / Coroutines
  • coroutine.wrap(f) function / Coroutines
  • coroutine.yield(···) function / Coroutines
  • working with / Working with coroutines
  • URL / Working with coroutines
• creds NSE library
  • about / creds
  • URL / creds, Managing user credentials found during scans
  • used, for managing user credentials / Managing user credentials found during scans
• custom data structures, Lua
  • about / Custom data structures
  • http-enum database / http-enum database
  • http-default-accounts / http-default-accounts

D

• data
  • sending, NSE sockets used / Sending data using NSE sockets
  • receiving, NSE sockets used / Receiving data using NSE sockets
• data directory
  • locating / Locating your data directory
• data directory search order
  • about / Data directory search order
• data types, Lua
  • number / Data types
  • string / Data types
  • boolean / Data types
  • table / Data types
  • function / Data types
  • nil / Data types
  • userdata / Data types
  • thread / Data types
• DBMS auditing data files
  • about / DBMS-auditing data files
  • mysql-cis.audit / mysql-cis.audit
  • oracle-default-accounts.lst / oracle-default-accounts.lst
  • oracle-sids / oracle-sids
• debugging information
  • including, in NSE script output / Including debugging information
• development environment
  • setting up / Setting up a development environment
• Driver class
  • implementing / Implementing the Driver class
  • login() function / Implementing the Driver class
  • connect() function / Implementing the Driver class
  • disconnect() function / Implementing the Driver class
  • check() function / Implementing the Driver class
• dummy assignments, Lua / Dummy assignments

E

• else-if conditional statement
  • about / Conditional statements – if-then, else, and elseif
• elseif keyword
  • about / Conditional statements – if-then, else, and elseif
• else statement
  • about / Conditional statements – if-then, else, and elseif
• entry, Lua table
  • name field / http-devframework-fingerprints.lua
  • rapidDetect field / http-devframework-fingerprints.lua
  • consumingDetect field / http-devframework-fingerprints.lua
• environment variables
  • about / Exploring environment variables
  • SCRIPT_PATH / Exploring environment variables
  • SCRIPT_NAME / Exploring environment variables
  • SCRIPT_TYPE / Exploring environment variables
• Error class
  • used, for handling execution errors / Handling execution errors gracefully with the Error class
• Ethernet frames
  • building / Building Ethernet frames
• ethernet_send() method / Sending packets to/from IP and Ethernet layers
• exception handling
  • about / Exception handling in NSE scripts
  • URL / Exception handling in NSE scripts
• exploit NSE category
  • about / The exploit NSE category
  • http-csrf / The exploit NSE category
  • http-stored-xss / The exploit NSE category
  • http-adobe-coldfusion-apsa1301 / The exploit NSE category
  • http-iis-short-name-brute / The exploit NSE category
  • jdwp-exec / The exploit NSE category
  • smb-check-vulns / The exploit NSE category
  • URL / The exploit NSE category
• expressions
  • advanced script selection, performing with / Advanced script selection with expressions

F

• FIFO queue
  • about / Queues
• file
  • NSE script arguments, loading from / Loading script arguments from a file
  • opening / Opening a file
  • reading / Reading a file
  • writing / Writing a file
  • closing / Closing a file
• file modes, Lua
  • w / Modes
  • w+ / Modes
  • a+ / Modes
• flow control structures, Lua
  • about / Flow control structures
  • conditional statements / Conditional statements – if-then, else, and elseif
  • while loop / Loops – while
  • repeat loop / Loops – repeat
  • for loops / Loops – for
• for loops / Loops – for
• fuzzdb project
  • URL / http-sql-errors.lst

G

• grepable output format
  • about / The weakness of the grepable format
  • limitations / The weakness of the grepable format
  • URL / The weakness of the grepable format

H

• Halcyon IDE
  • about / Halcyon IDE
  • URL / Halcyon IDE
• hardmatch / Phases of version detection
• heartbleed vulnerability
  • exploiting / Exploiting the infamous heartbleed vulnerability
• host
  • connecting to, NSE sockets used / Connecting to a host using NSE sockets
• hostmap-* set of scripts / Finding all hostnames resolving to the same IP address
• host table, NSE arguments
  • about / Host table
  • host.os field / Host table
  • host.ip field / Host table
  • host.name field / Host table
  • host.targetname field / Host table
  • host.directly_connected field / Host table
  • host.mac_addr field / Host table
  • host.mac_addr_next_hop field / Host table
  • host.mac_addr_src field / Host table
  • host.interface_mtu field / Host table
  • host.bin_ip field / Host table
  • host.bin_ip_src field / Host table
  • host.times field / Host table
  • host.traceroute field / Host table
• HTML report
  • generating, for NSE script output / NSE script output in the HTML report
• http-default-accounts / http-default-accounts
• http-devframework-fingerprints.lua file
  • about / http-devframework-fingerprints.lua
• http-devframework script
  • URL, for official documentation / http-devframework-fingerprints.lua
• http-enum database / http-enum database
• http-enum script
  • URL, for official documentation / http-fingerprints.lua
• http-fingerprints.lua file
  • about / http-fingerprints.lua
• http-folders.txt file
  • about / http-folders.txt
• http-iis-webdav-vuln script
  • URL, for official documentation / http-folders.txt
• http-slowloris-check script / Detecting web servers vulnerable to slow denial-of-service attacks
• http-slowloris NSE exploit
  • URL / Consuming TCP connections with NSE
• http-slowloris script / Detecting web servers vulnerable to slow denial-of-service attacks
• http-sql-errors.lst file
  • about / http-sql-errors.lst
• http-sql-injection script
  • URL, for official documentation / http-sql-errors.lst
• http-vhosts script
  • URL, for official documentation / vhosts-default.lst
• http-web-files-extensions.lst file
  • about / http-web-files-extensions.lst
• http-wordpress-plugins script
  • URL, for official documentation / wp-plugins.lst
• http NSE library
  • about / http
  • URL / http

I

• I/O operations, Lua
  • about / I/O operations
  • file modes / Modes
  • file, opening / Opening a file
  • file, reading / Reading a file
  • file, writing / Writing a file
  • file, closing / Closing a file
• if-then conditional statement
  • about / Conditional statements – if-then, else, and elseif
• ike-fingerprints.lua file
  • about / ike-fingerprints.lua
• ike-version script
  • URL, for official documentation / ike-fingerprints.lua
• indexes, Lua / Indexes
• information gathering, NSE scripts
  • about / Information-gathering
  • UPNP information, collecting / Collecting UPNP information
  • hostnames, finding for resolving same IP address / Finding all hostnames resolving to the same IP address
• installation, Nmap / Installing Nmap
• io.close function / Closing a file
• io.open function / Opening a file
• io.read function / Reading a file
• io.write function / Writing a file
• ipairs() function
  • about / Loops – for
• ip_send() method / Sending packets to/from IP and Ethernet layers

J

• Java Debug Wire Protocol data files
  • about / Java Debug Wire Protocol data files
  • JDWPExecCmd.java / JDWPExecCmd.java
  • JDWPSystemInfo.class / JDWPSystemInfo.class
• JDWPExecCmd.java file
  • about / JDWPExecCmd.java
• JDWPSystemInfo.class
  • about / JDWPSystemInfo.class

L

• Libpcap
  • URL / Working with NSE sockets
• linked lists
  • about / Linked lists
• Lua
  • concepts / Quick notes about Lua
  • parallelism mechanism / Parallelism mechanisms in Lua
• Lua, concepts
  • comments / Comments
  • dummy assignments / Dummy assignments
  • indexes / Indexes
  • semantics / Semantics
  • coercion / Coercion
  • Booleans / Booleans
  • flow control structures / Flow control structures, Loops – repeat, Loops – for
  • data types / Data types
  • string handling / String handling
  • common data structures / Common data structures
  • custom data structures / Custom data structures
  • I/O operations / I/O operations
  • coroutine / Coroutines
  • metatables / Metatables and metamethods
  • metamethods / Metatables and metamethods

M

• magic characters
  • about / Magic characters
• mastering-nse.com
  • URL / Username dictionaries
• metamethods, Lua
  • about / Metatables and metamethods
  • arithmetic metamethods / Arithmetic metamethods
  • relational metamethods / Relational metamethods
• mikrotik-routeros-brute script
  • URL / Writing an NSE script to launch password-auditing attacks against the MikroTik RouterOS API
• MikroTik RouterOS API
  • brute-force password auditing attacks, scripting against / Writing an NSE script to launch password-auditing attacks against the MikroTik RouterOS API
• modbus-discover script
  • about / NSE script – modbus-discover
• msrpc libraries
  • documentation, URL / Detecting vulnerable Windows systems
• mutexes
  • about / Mutexes
  • creating / Mutexes
• mygroupnames.db file
  • about / mygroupnames.db
• mysql-audit script / Detecting insecure MySQL server configurations
  • URL, for official documentation / mysql-cis.audit
• mysql-brute script / Brute-forcing MySQL passwords
• mysql-cis.audit file
  • about / mysql-cis.audit
• mysql-vuln-cve2012-2122.nse script
  • URL / Exception handling in NSE scripts

N

• network I/O
  • about / Understanding advanced network I/O
  • socket, opening for raw packet capture / Opening a socket for raw packet capture
  • raw packets, receiving / Receiving raw packets
  • packets, sending to/from IP / Sending packets to/from IP and Ethernet layers
  • packets, sending to/from Ethernet layers / Sending packets to/from IP and Ethernet layers
• new scripts
  • adding / Adding new scripts
• Nmap
  • installing / Installing Nmap
  • URL, for downloading / Installing Nmap
  • building, from source code / Building Nmap from source code
  • working copy, updating / Keeping Nmap up to date
  • URL / Applications of NSE scripts
  • parallelism options / Parallelism options in Nmap
• Nmap's license
  • URL, for documentation / License
• nmap-service-probes file
  • about / Taking a closer look at the file format
  • URL / Taking a closer look at the file format
  • directive documentation, URL / Taking a closer look at the file format
• nmap.mutex() function / Mutexes
• nmap.new_dnet() method / Sending packets to/from IP and Ethernet layers
• nmap.new_socket() function
  • protocol / Creating an NSE socket
  • af / Creating an NSE socket
• Nmap API
  • accesing / Accessing the Nmap API
  • NSE arguments / NSE arguments
  • exception handling / Exception handling in NSE scripts
• Nmap data files
  • references / Other Nmap data files
• Nmap distribution
  • about / Other templates online
• Nmap distribution, templates
  • URL, for downloading / Other templates online
• Nmap Fingerprint Submitter
  • URL / Updating the version probes database
• nmap libraries
  • URL / XML structured output
• NSE
  • and scan phases / Scan phases and NSE
  • version detection mode / Understanding version detection mode in NSE
  • about / Nmap Scripting Engine
  • parallelism mechanisms / Parallelism mechanisms in NSE
  • used, for consuming TCP connections / Consuming TCP connections with NSE
• NSE arguments
  • host table / Host table
  • port table / Port table
• NSE data files
  • about / Other NSE data files
  • mygroupnames.db / mygroupnames.db
  • rtsp-urls.txt / rtsp-urls.txt
  • snmpcommunities.lst / snmpcommunities.lst
  • ssl-ciphers / ssl-ciphers
  • ssl-fingerprints / ssl-fingerprints
  • ike-fingerprints.lua / ike-fingerprints.lua
  • tftplist.txt / tftplist.txt
• NSE libraries
  • about / Writing NSE libraries, Exploring other popular NSE libraries
  • creating / Writing NSE libraries
  • functionality, extending / Extending the functionality of an NSE library
  • brute NSE library / Extending the functionality of an NSE library
  • NSE modules, written in C/C++ / NSE modules in C/C++
  • URL, for documentation / NSE modules in C/C++
  • stdnse / stdnse
  • openssl / openssl
  • target / target
  • shortport / shortport
  • creds / creds
  • vulns / vulns
• NSE modules
  • written in C/C++ / NSE modules in C/C++
• NSE registry
  • about / The NSE registry
• NSE script arguments
  • about / NSE script arguments
  • loading, from file / Loading script arguments from a file
• NSE scripts
  • running / Running NSE scripts
  • categories / Script categories
  • selecting / NSE script selection
  • selecting, by script name / Selecting by script name or category
  • selecting, by category / Selecting by script name or category
  • selecting, by filename / Selecting by filename or folder
  • selecting, by folder / Selecting by filename or folder
  • selecting, with expressions / Advanced script selection with expressions
  • execution, forcing / Forcing the execution of NSE scripts
  • debugging / Debugging NSE scripts
  • rules / NSE script rules
  • applications / Applications of NSE scripts
  • fields / Understanding the structure of an NSE script
  • example / A sample NSE script
  • vulns library, using / Using the vulns library in your NSE scripts
• NSE scripts, fields
  • description / Understanding the structure of an NSE script
  • categories / Understanding the structure of an NSE script
  • action / Understanding the structure of an NSE script
  • execution rule / Understanding the structure of an NSE script
• NSE scripts, optional fields
  • author / Author
  • license / License
  • dependencies / Dependencies
• NSE sockets
  • about / Working with NSE sockets
  • creating / Creating an NSE socket
  • used, for connecting to host / Connecting to a host using NSE sockets
  • used, for sending data / Sending data using NSE sockets
  • used, for receiving data / Receiving data using NSE sockets
  • closing / Closing NSE sockets
  • payload stored in file, sending / Example script – sending a payload stored in a file over a NSE socket
  • and raw packet, handling / Raw packet handling and NSE sockets
• NSE threads
  • about / NSE threads
  • condition variables / Condition variables
  • mutexes / Mutexes

O

• OpenSSL
  • URL / SSL
• openssl NSE library
  • about / openssl
  • URL / openssl
• oracle-default-accounts.lst file
  • about / oracle-default-accounts.lst
• oracle-default-accounts script
  • URL, for official documentation / oracle-default-accounts.lst
• oracle-sid-brute script
  • URL, for official documentation / oracle-sids
• oracle-sids file
  • about / oracle-sids
• output, NSE scripts
  • Nmap structured output / Output formats and Nmap Scripting Engine
  • XML structured output / Output formats and Nmap Scripting Engine, XML structured output
  • verbosity messages, printing / Printing verbosity messages
  • debugging information, including / Including debugging information
  • grepable output format, limitations / The weakness of the grepable format
  • HTML report, generating / NSE script output in the HTML report

P

• pack() method / Packing and unpacking binary data
• packet library
  • URL / Building Ethernet frames
• packets
  • sending, to/from IP / Sending packets to/from IP and Ethernet layers
  • sending, to/from Ethernet layers / Sending packets to/from IP and Ethernet layers
• pairs() iterator function
  • about / Loops – for
• parallelism mechanism, Lua
  • coroutines / Coroutines
• parallelism mechanisms, NSE
  • about / Parallelism mechanisms in NSE
  • NSE threads / NSE threads
• parallelism options, Nmap
  • about / Parallelism options in Nmap
  • multiple hosts, scanning simultaneously / Scanning multiple hosts simultaneously
  • send probe count, increasing / Increasing the number of probes sent
  • timing templates / Timing templates
• password-auditing, NSE scripts
  • about / Password auditing
  • Brute-forcing MySQL passwords / Brute-forcing MySQL passwords
  • Brute-forcing SMTP passwords / Brute-forcing SMTP passwords
• password dictionaries
  • about / Password dictionaries
• password lists
  • reading, with unpwdb NSE library / Reading usernames and password lists with the unpwdb NSE library
• passwords.lst file / Password dictionaries
• patterns
  • about / Patterns
  • captures / Captures
  • repetition operators / Repetition operators
• pcap_open method
  • device parameter / Opening a socket for raw packet capture
  • snaplen parameter / Opening a socket for raw packet capture
  • promisc parameter / Opening a socket for raw packet capture
  • bpf parameter / Opening a socket for raw packet capture
• portrules, version detection script
  • defining / Defining the portrule of a version detection script
• port table, NSE arguments
  • port.number field / Port table
  • port.protocol field / Port table
  • about / Port table
  • port.service field / Port table
  • port.version field / Port table
  • port.state field / Port table
• port version information
  • updating / Updating the port version information
  • match confidence level, setting / Setting the match confidence level
• post-processors
  • about / Getting to know post-processors
  • NSE / Nmap Scripting Engine
  • SSL / SSL

Q

• queues
  • about / Queues

R

• RapidSVN
  • about / Building Nmap from source code
  • URL / Building Nmap from source code
• raw packets
  • socket, opening for / Opening a socket for raw packet capture
  • receiving / Receiving raw packets
  • manipulating / Manipulating raw packets
  • binary data, unpacking / Packing and unpacking binary data
  • binary data, packing / Packing and unpacking binary data
  • Ethernet frames, building / Building Ethernet frames
  • handling / Raw packet handling and NSE sockets
  • and NSE sockets / Raw packet handling and NSE sockets
• RealVNC
  • exploiting / Exploiting RealVNC
• receive_buf() method
  • about / Receiving data using NSE sockets
  • delimiter parameter / Receiving data using NSE sockets
  • keeppattern parameter / Receiving data using NSE sockets
• relational metamethods
  • about / Relational metamethods
  • __eq / Relational metamethods
  • __lt / Relational metamethods
  • __le / Relational metamethods
• repeat loop
  • about / Loops – repeat
• repetition operators
  • about / Repetition operators
• rpc-grind script / NSE script – rpc-grind
• rpcGrinder function / Condition variables
• rtsp-url-brute script
  • URL, for official documentation / rtsp-urls.txt
• rtsp-urls.txt file
  • about / rtsp-urls.txt
• rules, NSE scripts
  • prerule() / NSE script rules
  • postrule() / NSE script rules
  • portrule(host, port) / NSE script rules
  • hostrule() / NSE script rules
• running function / Mutexes

S

• --script-args Nmap option / NSE script arguments
• --script option / NSE script selection
• safe category, NSE scripts
  • banner / Running NSE scripts
  • broadcast-ping / Running NSE scripts
  • dns-recursion / Running NSE scripts
  • upnp-info / Running NSE scripts
  • firewalk / Running NSE scripts
• safe language, Lua / Safe language
• Same Origin Policy (SOP)
  • about / NSE script output in the HTML report
• scanned ports
  • excluding, from version detection / Excluding scanned ports from version detection
• scan phases
  • and NSE / Scan phases and NSE
• script
  • URL / Example script – sending a payload stored in a file over a NSE socket
• semantics, Lua / Semantics
• service detection mode
  • enabling / Understanding version detection mode in NSE
• setmetatable function / Relational metamethods
• sets
  • about / Sets
• set_port_version()function
  • about / Updating the port version information, NSE script – ventrilo-info
• shellshock
  • exploiting, in web applications / Exploiting shellshock in web applications
  • URL / Exploiting shellshock in web applications
• shortport NSE library
  • about / shortport
  • http function / shortport
  • port_or_service function / shortport
  • portnumber function / shortport
  • URL / shortport, Defining the portrule of a version detection script
• Slave IDs (SIDs) / NSE script – modbus-discover
• Slowloris
  • URL / Detecting web servers vulnerable to slow denial-of-service attacks
• Slowloris vulnerability
  • URL / Consuming TCP connections with NSE
• smb libraries
  • documentation, URL / Detecting vulnerable Windows systems
• smtp-brute script / Brute-forcing SMTP passwords
• snmpcommunities.lst file
  • about / snmpcommunities.lst
• softmatch / Phases of version detection
• source code
  • Nmap, building from / Building Nmap from source code
• SSL
  • about / SSL
• ssl-ciphers file
  • about / ssl-ciphers
• ssl-enum-ciphers script
  • URL, for official documentation / ssl-ciphers
• ssl-fingerprints file
  • about / ssl-fingerprints
• ssl-known-key script
  • URL, for official documentation / ssl-fingerprints
• stdnse.base() method / Working with coroutines
• stdnse.get_script_args()function / NSE script arguments
• stdnse.new_thread() function / NSE threads
• stdnse NSE library
  • URL / Writing NSE libraries, stdnse, XML structured output
  • about / stdnse
  • stdnse.get_script_args function / stdnse
  • stdnse.debug function / stdnse
  • stdnse.verbose function / stdnse
  • stdnse.strjoin function / stdnse
  • stdnse.strsplit function / stdnse
  • verbose() function / Printing verbosity messages
• string handling, Lua
  • about / String handling
  • character classes / Character classes
  • magic characters / Magic characters
  • patterns / Patterns
  • concatenation / Concatenation
  • substrings, finding / Finding substrings
  • string repetition / String repetition
  • string length, determining / String length
  • strings, formatting / Formatting strings
  • strings, joining / Splitting and joining strings
  • strings, splitting / Splitting and joining strings
• string length
  • determining / String length
• string repetition / String repetition
• strings
  • formatting / Formatting strings
  • joining / Splitting and joining strings
  • splitting / Splitting and joining strings
• substrings
  • finding / Finding substrings
• Supervisory Control And Data Acquisition (SCADA) / NSE script – modbus-discover

T

• tables
  • about / Tables
• target NSE library
  • about / target
  • URL / target
• targets-sniffer script / Listening to your LAN to discover targets
• TCP connections
  • consuming, with NSE / Consuming TCP connections with NSE
• tftp-enum script
  • URL, for official documentation / tftplist.txt
• tftplist.txt file
  • about / tftplist.txt
• timing templates
  • about / Timing templates
• tls library
  • URL / Exploiting the infamous heartbleed vulnerability

U

• unpwdb NSE library
  • used, for reading usernames / Reading usernames and password lists with the unpwdb NSE library
  • used, for reading password lists / Reading usernames and password lists with the unpwdb NSE library
  • about / Reading usernames and password lists with the unpwdb NSE library
  • usernames() function / Reading usernames and password lists with the unpwdb NSE library
  • passwords() function / Reading usernames and password lists with the unpwdb NSE library
  • URL / Reading usernames and password lists with the unpwdb NSE library
• user credentials
  • managing, with creds NSE library / Managing user credentials found during scans
• username dictionaries
  • about / Username dictionaries
• usernames
  • reading, with unpwdb NSE library / Reading usernames and password lists with the unpwdb NSE library
• usernames.lst file / Username dictionaries

V

• ventrilo-info script / NSE script – ventrilo-info
• verbose() function
  • level argument / Printing verbosity messages
  • fmt argument / Printing verbosity messages
• verbosity messages
  • printing, in NSE script output / Printing verbosity messages
• Version Control System (VCS) / Building Nmap from source code
• version detection mode, NSE
  • about / Understanding version detection mode in NSE
  • phases / Phases of version detection
  • rarity level, adjusting of version scan / Adjusting the rarity level of a version scan
  • version probes database, updating / Updating the version probes database
  • scanned ports, excluding / Excluding scanned ports from version detection
  • matching, with fallbacks / Using fallbacks to match other version probes
  • post-processors / Getting to know post-processors
• version detection scan
  • phases / Phases of version detection
  • rarity level, adjusting / Adjusting the rarity level of a version scan
  • scanned ports, excluding / Excluding scanned ports from version detection
• version detection scripts
  • writing / Writing your own version detection scripts
  • category, defining / Defining the category of a version detection script
  • portrule, defining / Defining the portrule of a version detection script
  • port version information, updating / Updating the port version information
  • examples / Examples of version detection scripts
  • modbus-discover script / NSE script – modbus-discover
  • ventrilo-info script / NSE script – ventrilo-info
  • rpc-grind script / NSE script – rpc-grind
• version probes
  • matching, with fallbacks / Using fallbacks to match other version probes
• version probes database
  • updating / Updating the version probes database
  • URL / Updating the version probes database
  • file format / Taking a closer look at the file format
• version_port_or_service()function / Defining the portrule of a version detection script
• vhosts-default.lst file
  • about / vhosts-default.lst
• vulnerability
  • reporting / Reporting vulnerabilities
• vulnerability scanning
  • about / Vulnerability scanning
  • exploit NSE category / The exploit NSE category
  • RealVNC, exploiting / Exploiting RealVNC
  • vulnerable Windows systems, detecting / Detecting vulnerable Windows systems
  • infamous heartbleed vulnerability, exploiting / Exploiting the infamous heartbleed vulnerability
  • shellshock in web applications, exploiting / Exploiting shellshock in web applications
• vulnerability scanning, NSE scripts
  • insecure MySQL server configurations, detecting / Detecting insecure MySQL server configurations
  • web servers, detecting vulnerable to slow denial-of-service attacks / Detecting web servers vulnerable to slow denial-of-service attacks
  • SSL servers, detecting vulnerable to CVE-2014-3566 / Detecting SSL servers vulnerable to CVE-2014-3566
• vulns library
  • using, in NSE scripts / Using the vulns library in your NSE scripts
  • URL / Using the vulns library in your NSE scripts
• vulns NSE library
  • about / vulns
  • URL / vulns

W

• web application auditing data files
  • about / Web application auditing data files
  • http-fingerprints.lua / http-fingerprints.lua
  • http-sql-errors.lst / http-sql-errors.lst
  • http-web-files-extensions.lst / http-web-files-extensions.lst
  • http-devframework-fingerprints.lua / http-devframework-fingerprints.lua
  • http-folders.txt / http-folders.txt
  • vhosts-default.lst / vhosts-default.lst
  • wp-plugins.lst / wp-plugins.lst
• web applications
  • shellshock, exploiting / Exploiting shellshock in web applications
• while loop
  • about / Loops – while
• Windows systems
  • vulnerable Windows systems, detecting / Detecting vulnerable Windows systems
• wp-plugins.lst file
  • about / wp-plugins.lst

X

• XML structured output
  • example / Output formats and Nmap Scripting Engine
  • about / XML structured output
  • implementing / Implementing structured output in your scripts
• xpath syntax
  • URL / The weakness of the grepable format