File xmpp-info
Script types:
portrule
Categories:
default, safe, discovery, version
Download: http://nmap.org/svn/scripts/xmpp-info.nse
User Summary
Connects to XMPP server (port 5222) and collects server information such as: supported auth mechanisms, compression methods, whether TLS is supported and mandatory, stream management, language, support of In-Band registration, server capabilities. If possible, studies server vendor.
Script Arguments
xmpp-info.alt_server_name
If set, overwrites alternative hello name sent to the server. This name should differ from the real DNS name. It is used to find out whether the server refuses to talk if a wrong name is used. Default is ".".
xmpp-info.no_starttls
If set, disables TLS processing.
xmpp-info.server_name
If set, overwrites hello name sent to the server. It can be necessary if XMPP server's name differs from DNS name.
smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername
See the documentation for the smbauth library.Example Usage
nmap -sV <target>
Script Output
PORT STATE SERVICE REASON VERSION 5222/tcp open jabber syn-ack ejabberd (Protocol 1.0) | xmpp-info: | XMPP | Lang | ru | v1.0 | features | In-Band Registration | TLS (before TLS stream) | capabilities | node | http://www.process-one.net/en/ejabberd/ | ver | rvAR01fKsc40hT0hOLGDuG25y9o= | COMPRESSION METHODS (1) | zlib | AUTH MECHANISMS (2) | DIGEST-MD5 | PLAIN (in TLS stream) |_ Ignores server name
Requires
Author: Vasiliy Kulikov
License: Same as Nmap--See http://nmap.org/book/man-legal.html