Script citrix-enum-apps-xml

Script types: portrule
Categories: discovery, safe
Download: https://svn.nmap.org/nmap/scripts/citrix-enum-apps-xml.nse

Script Summary

Extracts a list of applications, ACLs, and settings from the Citrix XML service.

The script returns more output with higher verbosity.

Script Arguments

slaxml.debug

See the documentation for the slaxml library.

http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline, http.truncated-ok, http.useragent

See the documentation for the http library.

smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername

See the documentation for the smbauth library.

Example Usage

nmap --script=citrix-enum-apps-xml -p 80,443,8080 <host>

Script Output

PORT     STATE SERVICE
8080/tcp open  http-proxy
| citrix-enum-apps-xml:
|   Application: Notepad; Users: Anonymous
|   Application: iexplorer; Users: Anonymous
|_  Application: registry editor; Users: WIN-B4RL0SUCJ29\Joe; Groups: WIN-B4RL0SUCJ29\HR, *CITRIX_BUILTIN*\*CITRIX_ADMINISTRATORS*

PORT     STATE SERVICE
8080/tcp open  http-proxy
| citrix-enum-apps-xml:
|   Application: Notepad
|     Disabled: false
|     Desktop: false
|     On Desktop: false
|     Encryption: basic
|     Encryption enforced: true
|     In start menu: false
|     Publisher: labb1farm
|     SSL: false
|     Remote Access: false
|     Users: Anonymous
|   Application: iexplorer
|     Disabled: false
|     Desktop: false
|     On Desktop: false
|     Encryption: basic
|     Encryption enforced: true
|     In start menu: false
|     Publisher: labb1farm
|     SSL: false
|     Remote Access: false
|     Users: Anonymous
|   Application: registry editor
|     Disabled: false
|     Desktop: false
|     On Desktop: false
|     Encryption: basic
|     Encryption enforced: true
|     In start menu: false
|     Publisher: labb1farm
|     SSL: false
|     Remote Access: false
|     Users: WIN-B4RL0SUCJ29\Joe
|_    Groups: WIN-B4RL0SUCJ29\HR, *CITRIX_BUILTIN*\*CITRIX_ADMINISTRATORS*

Requires


Author:

  • Patrik Karlsson

License: Same as Nmap--See https://nmap.org/book/man-legal.html