Script ajp-headers

Script types: portrule
Categories: discovery, safe
Download: https://svn.nmap.org/nmap/scripts/ajp-headers.nse

Script Summary

Performs a HEAD or GET request against either the root directory or any optional directory of an Apache JServ Protocol server and returns the server response headers.

Script Arguments

ajp-headers.path

The path to request, such as /index.php. Default /.

slaxml.debug

See the documentation for the slaxml library.

http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline, http.truncated-ok, http.useragent

See the documentation for the http library.

smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername

See the documentation for the smbauth library.

Example Usage

nmap -p 8009 <ip> --script ajp-headers

Script Output

PORT     STATE SERVICE
8009/tcp open  ajp13
| ajp-headers:
|   X-Powered-By: JSP/2.2
|   Set-Cookie: JSESSIONID=goTHax+8ktEcZsBldANHBAuf.undefined; Path=/helloworld
|   Content-Type: text/html;charset=ISO-8859-1
|_  Content-Length: 149

Requires

• ajp
• shortport
• stdnse

---

Author:

• Patrik Karlsson

License: Same as Nmap--See https://nmap.org/book/man-legal.html

portrule

portrule (host, port)

Parameters

host

 

port

 

Usage:

nmap -p 8009 <ip> --script ajp-headers