Script http-aspnet-debug

Script types: portrule
Categories: vuln, discovery
Download: https://svn.nmap.org/nmap/scripts/http-aspnet-debug.nse

Script Summary

Determines if a ASP.NET application has debugging enabled using a HTTP DEBUG request.

The HTTP DEBUG verb is used within ASP.NET applications to start/stop remote debugging sessions. The script sends a 'stop-debug' command to determine the application's current configuration state but access to RPC services is required to interact with the debugging session. The request does not change the application debugging configuration.

Script Arguments

http-aspnet-debug.path

Path to URI. Default: /

slaxml.debug

See the documentation for the slaxml library.

http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline, http.truncated-ok, http.useragent

See the documentation for the http library.

smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername

See the documentation for the smbauth library.

Example Usage

• nmap --script http-aspnet-debug <target>

• nmap --script http-aspnet-debug --script-args http-aspnet-debug.path=/path <target>
  

Script Output

80/tcp open  http    syn-ack
| http-aspnet-debug:
|_  status: DEBUG is enabled

Requires

• http
• shortport
• stdnse

---

Author:

• Josh Amishav-Zlatin

License: Same as Nmap--See https://nmap.org/book/man-legal.html