File http-open-proxy
Download: http://nmap.org/svn/scripts/http-open-proxy.nse
User Summary
Checks if an HTTP proxy is open.
The script attempts to connect to www.google.com through the (possible) proxy and checks for a valid HTTP response code.
Valid HTTP response codes are actually: 200, 301, 302.
If the target is an open proxy, this script causes the target to retrieve a web page from www.google.com.
Script Arguments
proxy.url
Url that will be requested to the proxy
proxy.pattern
Pattern that will be searched inside the request results
Script Output
Interesting ports on scanme.nmap.org (64.13.134.52): PORT STATE SERVICE 8080/tcp open http-proxy | proxy-open-http: Potentially OPEN proxy. |_ Methods succesfully tested: GET HEAD CONNECT
Requires
categories default discovery external intrusive
author Arturo 'Buanzo' Busleiman
copyright © Same as Nmap--See http://nmap.org/book/man-legal.html
Functions
| custom_test (host, port, test_url, pattern) | Performs the custom test, with user's arguments |
| default_test (host, port) | Performs the default test First: Default google request and checks for Server: gws Seconde: Request to wikipedia.org and checks for wikimedia pattern Third: Request to computerhistory.org and checks for museum pattern |
Functions
- custom_test (host, port, test_url, pattern)
-
Performs the custom test, with user's arguments
Parameters
- host: The host table
- port: The port table
- test_url: The url te send the request
- pattern: The pattern to check for valid result
Return values:
- status (if any request was succeded
- response String with supported methods
- default_test (host, port)
-
Performs the default test First: Default google request and checks for Server: gws Seconde: Request to wikipedia.org and checks for wikimedia pattern Third: Request to computerhistory.org and checks for museum pattern
If any of the requests is succesful, the proxy is considered open If all get requests return the same result, the user is alerted that the proxy might be redirecting his requests (very common on wi-fi connections at airports, cafes, etc.)
Parameters
- host: The host table
- port: The port table
Return values:
- status (if any request was succeded
- response String with supported methods




