Script http-sitemap-generator

Script types: portrule
Categories: discovery, intrusive
Download: https://svn.nmap.org/nmap/scripts/http-sitemap-generator.nse

Script Summary

Spiders a web server and displays its directory structure along with number and types of files in each folder. Note that files listed as having an 'Other' extension are ones that have no extension or that are a root document.

Script Arguments

http-sitemap-generator.withindomain

only spider URLs within the same domain. This widens the scope from withinhost and can not be used in combination. (default: false)

http-sitemap-generator.maxdepth

the maximum amount of directories beneath the initial url to spider. A negative value disables the limit. (default: 3)

http-sitemap-generator.maxpagecount

the maximum amount of pages to visit. A negative value disables the limit (default: 20)

http-sitemap-generator.url

the url to start spidering. This is a URL relative to the scanned host eg. /default.html (default: /)

http-sitemap-generator.withinhost

only spider URLs within the same host. (default: true)

slaxml.debug

See the documentation for the slaxml library.

httpspider.doscraping, httpspider.maxdepth, httpspider.maxpagecount, httpspider.noblacklist, httpspider.url, httpspider.useheadfornonwebfiles, httpspider.withindomain, httpspider.withinhost

See the documentation for the httpspider library.

http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline, http.truncated-ok, http.useragent

See the documentation for the http library.

smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername

See the documentation for the smbauth library.

Example Usage

nmap --script http-sitemap-generator -p 80 <host>

Script Output

PORT   STATE SERVICE REASON
80/tcp open  http    syn-ack
| http-sitemap-generator:
|   Directory structure:
|     /
|       Other: 1
|     /images/
|       png: 1
|     /shared/css/
|       css: 1
|     /shared/images/
|       gif: 1; png: 1
|   Longest directory structure:
|     Depth: 2
|     Dir: /shared/css/
|   Total files found (by extension):
|_    Other: 1; css: 1; gif: 1; png: 2

Requires

• shortport
• stdnse
• url
• httpspider
• string
• table

---

Author:

• Piotr Olma

License: Same as Nmap--See https://nmap.org/book/man-legal.html