January 2019
Intermediate to advanced
548 pages
12h 7m
English
In-order to achieve maximum effectiveness, customization of scripts helps penetration testers in finding the right vulnerabilities within the given span of time. However, most of the time attackers do not have the time limit to write one. The following code extract is a Lua NSE script to identify a specific file location that we will search for on the entire subnet using Nmap:
local http=require 'http'
description = [[ This is my custom discovery on the network ]]
categories = {"safe","discovery"}
require("http")function portrule(host, port)
return port.number == 80
end function action(host, port) local response response = http.get(host, port, "/config.php") if response.status and response.status ~= 404 then return ...Read now
Unlock full access