Script http-apache-server-status

Script types: portrule
Categories: discovery, safe
Download: https://svn.nmap.org/nmap/scripts/http-apache-server-status.nse

Script Summary

Attempts to retrieve the server-status page for Apache webservers that have mod_status enabled. If the server-status page exists and appears to be from mod_status the script will parse useful information such as the system uptime, Apache version and recent HTTP requests.

References:

• http://httpd.apache.org/docs/2.4/mod/mod_status.html
• https://blog.sucuri.net/2012/10/popular-sites-with-apache-server-status-enabled.html
• https://www.exploit-db.com/ghdb/1355/
• https://github.com/michenriksen/nmap-scripts

Script Arguments

slaxml.debug

See the documentation for the slaxml library.

http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline, http.truncated-ok, http.useragent

See the documentation for the http library.

smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername

See the documentation for the smbauth library.

Example Usage

• nmap -p80 --script http-apache-server-status <target>

• nmap -sV --script http-apache-server-status <target>
  

Script Output

PORT   STATE SERVICE
80/tcp open  http
| http-apache-server-status:
|   Heading: Apache Server Status for example.com (via 127.0.1.1)
|   Server Version:  Apache/2.4.12 (Ubuntu)
|   Server Built:  Jul 24 2015 15:59:00
|   Server Uptime:   53 minutes 31 seconds
|   Server Load:  0.00 0.01 0.05
|   VHosts:
|_    www.example.com:80  GET /server-status HTTP/1.1

Requires

• nmap
• shortport
• http
• stdnse
• string
• table

---

Author:

• Eric Gershman

License: Same as Nmap--See https://nmap.org/book/man-legal.html