Scripts
| afp-brute |
Performs password guessing against Apple Filing Protocol (AFP) |
| citrix-brute-xml |
Attempts to guess valid credentials for the Citrix PN Web Agent XML Service. The XML service authenticates against the local Windows server or the Active Directory. |
| drda-brute |
Performs password guessing against databases supporting the IBM DB2 protocol such as Informix, DB2 and Derby |
| ftp-anon |
Checks if an FTP server allows anonymous logins. |
| ftp-brute |
Tries to get FTP login credentials by guessing usernames and passwords. |
| http-auth |
Retrieves the authentication scheme and realm of a web service that requires authentication. |
| ldap-brute |
Attempts to brute-force LDAP authentication. By default
it uses the built-in username and password lists. In order to use your
own lists use the |
| ms-sql-brute |
Performs password guessing against Microsoft SQL Server (ms-sql). |
| ms-sql-empty-password |
Attempts to authenticate using an empty password for the sysadmin (sa) account. |
| ms-sql-hasdbaccess |
Queries Microsoft SQL Server (ms-sql) for a list of databases a user has access to. |
| mysql-brute |
Performs password guessing against MySQL |
| mysql-empty-password |
Checks for MySQL servers with an empty password for |
| oracle-sid-brute |
Guesses Oracle instance/SID names against the TNS-listener. |
| pgsql-brute |
Performs password guessing against PostgreSQL. |
| pop3-brute |
Tries to log into a POP3 account by guessing usernames and passwords. |
| smb-brute |
Attempts to guess username/password combinations over SMB, storing discovered combinations
for use in other scripts. Every attempt will be made to get a valid list of users and to
verify each username before actually using them. When a username is discovered, besides
being printed, it is also saved in the Nmap registry so other Nmap scripts can use it. That
means that if you're going to run |
| snmp-brute |
Attempts to find an SNMP community string by brute force guessing. |
| telnet-brute |
Tries to get Telnet login credentials by guessing usernames and passwords. |
| vnc-brute |
Performs password guessing against VNC |
| x11-access |
Checks if you're allowed to connect to the X server. |




