Script `mikrotik-routeros-username-brute`

Script types: portrule
Categories: intrusive, discovery
Download: https://svn.nmap.org/nmap/scripts/mikrotik-routeros-username-brute.nse

Script Summary

Attempts to enumerate valid usernames on MikroTik devices running the Winbox service on port 8291 in MikroTik-RouterOS.

This script takes a wordlist from the user and modifies a baseline payload by adding the username to it. If the server responds with 35 bytes, the username is invalid; if the response is 51 bytes, the username is valid.

Script Arguments

mikrotik-routeros-username-brute.wordlist: A file with usernames to try, one per line.

Example Usage

nmap -p 8291 --script mikrotik-routeros-username-brute  --script-args=wordlist=<wordlist path>  <target>

Requires

io
table
oops
shortport
nmap
stdnse
string

Author:

deauther890

License: Same as Nmap--See https://nmap.org/book/man-legal.html

Script mikrotik-routeros-username-brute

Script Summary

Script Arguments

Example Usage

Requires

Script `mikrotik-routeros-username-brute`