Scripts
| citrix-brute-xml |
Attempts to guess valid credentials for the Citrix PN Web Agent XML Service. The XML service authenticates against the local Windows server or the Active Directory. |
| ftp-anon |
Checks if an FTP server allows anonymous logins. |
| ftp-brute |
Tries to get FTP login credentials by guessing usernames and passwords. |
| http-auth |
Retrieves the authentication scheme and realm of a web service that requires authentication. |
| ldap-brute |
Performs password guessing against LDAP |
| mysql-brute |
Performs password guessing against MySQL |
| mysql-empty-password |
Checks for MySQL servers with an empty root and/or anonymous password |
| oracle-sid-brute |
Guesses Oracle instance/sid names against the TNS-listener |
| pop3-brute |
Tries to log into a POP3 account by guessing usernames and passwords. |
| smb-brute |
Attempts to guess username/password combinations over SMB, storing discovered combinations for use in other scripts. Every attempt will be made to get a valid list of users and to verify each username before actually using them. When a username is discovered, besides being printed, it is also saved in the Nmap registry so other Nmap scripts can use it. That means that if you're going to run smb-brute.nse, you should run other smb scripts you want. This checks passwords in a case-insensitive way, determining case after a password is found, for Windows versions before Vista. |
| snmp-brute |
Attempts to find an SNMP community string by brute force guessing. |
| telnet-brute |
Tries to get Telnet login credentials by guessing usernames and passwords. |
| x11-access |
Checks if you're allowed to connect to the X server |