Home page logo
/
Zenmap screenshot
Intro Reference Guide Book Install Guide
Download Changelog Zenmap GUI Docs
Bug Reports OS Detection Propaganda Related Projects
In the Movies In the News
Example Nmap output

File telnet-ntlm-info

Script types: portrule
Categories: default, discovery, safe
Download: https://svn.nmap.org/nmap/scripts/telnet-ntlm-info.nse

User Summary

This script enumerates information from remote Microsoft Telnet services with NTLM authentication enabled.

Sending a MS-TNAP NTLM authentication request with null credentials will cause the remote service to respond with a NTLMSSP message disclosing information to include NetBIOS, DNS, and OS build version.

Script Arguments

smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername

See the documentation for the smbauth library.

Example Usage

nmap -p 23 --script telnet-ntlm-info <target>

Script Output

23/tcp   open     telnet
| telnet-ntlm-info:
|   Target_Name: ACTIVETELNET
|   NetBIOS_Domain_Name: ACTIVETELNET
|   NetBIOS_Computer_Name: HOST-TEST2
|   DNS_Domain_Name: somedomain.com
|   DNS_Computer_Name: host-test2.somedomain.com
|   DNS_Tree_Name: somedomain.com
|_  Product_Version: 5.1.2600

Requires


Author:

  • Justin Cacak

License: Same as Nmap--See https://nmap.org/book/man-legal.html

Nmap Site Navigation

Intro Reference Guide Book Install Guide
Download Changelog Zenmap GUI Docs
Bug Reports OS Detection Propaganda Related Projects
In the Movies In the News
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]