Writing an NSE script to launch password-auditing attacks against the MikroTik RouterOS API

Let's tie everything together by writing a complete NSE script that uses all the libraries seen in this chapter. On this occasion, we will target devices running MikroTik RouterOS 3.x and higher versions with API access enabled.

The API service usually runs on TCP port 8728, and it allows administrative access to the devices running this operating system. Often, administrators will lock down HTTP and SSH but not the API. Let's write a script that helps us perform brute-force password-auditing against this service:

First, let's start with the information tags and required libraries:

description = [[ Performs brute force password auditing against Mikrotik RouterOS ...

Get Mastering the Nmap Scripting Engine now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering the Nmap Scripting Engine by Paulino Calderón Pale

Writing an NSE script to launch password-auditing attacks against the MikroTik RouterOS API

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly