April 2005
Intermediate to advanced
344 pages
11h 59m
English
Content preview from Network Security ToolsBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
The NASL Interpreter
Use the
NASL interpreter,
nasl, to run and test NASL scripts via the command
line. Invoke it with the -v flag to see what
version is installed on your system:
[notroot]$ nasl -v
nasl 2.0.10
Copyright (C) 1999 - 2003 Renaud Deraison <deraison@cvs.nessus.org>
Copyright (C) 2002 - 2003 Michel Arboi <arboi@noos.fr>
See the license for detailsA vanilla Nessus installation comes packaged with NASL scripts that
act as
plug-ins for the
Nessus scanner. The Nessus server executes these scripts to test for
vulnerabilities, and you can find the scripts in the
/usr/local/lib/ness/plugins/ directory. You can
execute these scripts directly by invoking them with
nasl. For example, the
finger.nasl
script checks to see if
fingerd is enabled on a remote host. Finger is a
service that listens on port 79 by default, and you can use it to
query information about
users. To run this script
against a host with the IP address of 192.168.1.1 using the NASL
interpreter, execute the following:
[notroot]$ nasl -t 192.168.1.1 finger.nasl ** WARNING : packet forgery will not work ** as NASL is not running as root The 'finger' service provides useful information to attackers, since it allows them to gain usernames, check if a machine is being used, and so on... Here is the output we obtained for 'root' : Login: root Name: System Administrator Directory: /var/root Shell: /bin/sh On since Wed 5 May 08:51 (CDT) on ttyp2 from 127.0.0.1:0.0 No Mail. No Plan. Solution : comment out the 'finger' ...Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.