Skip to content

Instantly share code, notes, and snippets.

View sec-js's full-sized avatar

sec-js

13 followers · 23 following
  • Dallas texas
View GitHub Profile
@sec-js
sec-js / windowsports.html
Created October 21, 2022 21:54
windows Ports
Windows Ports
List of Ports
Port Protocol Application protocol System service name
n/a GRE GRE (IP protocol 47) Routing and Remote Access
n/a ESP IPsec ESP (IP protocol 50) Routing and Remote Access
n/a AH IPsec AH (IP protocol 51) Routing and Remote Access
7 TCP Echo Simple TCP/IP Services
7 UDP Echo Simple TCP/IP Services
9 TCP Discard Simple TCP/IP Services
9 UDP Discard Simple TCP/IP Services
@sec-js
sec-js / Script http-auth-finder.md
Created October 19, 2022 21:12
Spiders a web site to find web pages requiring form-based or HTTP-based authentication. The results are returned in a table with each url and the detected method.

Script http-auth-finder Script types: portrule Categories: discovery, safe Download: https://svn.nmap.org/nmap/scripts/http-auth-finder.nse

Script Summary Spiders a web site to find web pages requiring form-based or HTTP-based authentication. The results are returned in a table with each url and the detected method.

See also: http-auth.nse

@sec-js
sec-js / nmapscriptingbanner.txt
Created October 19, 2022 21:11
**root@KaliLinux** **:****~****\# nmap -sT 172.16.36.135 -p 22 --script=banner**
**
**
Nmap also used the banner script to collect the service
banner associated with that port. This same technique can be applied to a sequential range
of ports using the -- notation:
@sec-js
sec-js / nmapscriptingbanner.sh
Created October 19, 2022 21:11
**root@KaliLinux** **:****~****\# nmap -sT 172.16.36.135 -p 22 --script=banner**
**
**
Nmap also used the banner script to collect the service
banner associated with that port. This same technique can be applied to a sequential range
of ports using the -- notation:
@sec-js
sec-js / banner.py
Created October 19, 2022 21:10
#!/usr/bin/python
import socket
import select
import sys
if len(sys.argv) != 4:
@sec-js
sec-js / banner_nmap_nse.md
Created October 19, 2022 21:10
A simple banner grabber which connects to an open TCP port and prints out anything sent by the listening service within five seconds. The banner will be truncated to fit into a single line, but an extra line may be printed for every increase in the level of verbosity requested on the command line.

Script banner Script types: Categories: discovery, safe Download: https://svn.nmap.org/nmap/scripts/banner.nse

Script Summary A simple banner grabber which connects to an open TCP port and prints out anything sent by the listening service within five seconds.

The banner will be truncated to fit into a single line, but an extra line may be printed for every increase in the level of verbosity requested on the command line.

@sec-js
sec-js / Script http-auth-finder.md
Created October 19, 2022 21:09
Spiders a web site to find web pages requiring form-based or HTTP-based authentication. The results are returned in a table with each url and the detected method.

Script http-auth-finder Script types: portrule Categories: discovery, safe Download: https://svn.nmap.org/nmap/scripts/http-auth-finder.nse

Script Summary Spiders a web site to find web pages requiring form-based or HTTP-based authentication. The results are returned in a table with each url and the detected method.

See also: http-auth.nse

@sec-js
sec-js / authspoofnsenmap.md
Created October 19, 2022 21:09

Script auth-spoof Script types: portrule Categories: malware, safe Download: https://svn.nmap.org/nmap/scripts/auth-spoof.nse

Script Summary Checks for an identd (auth) server which is spoofing its replies.

Tests whether an identd (auth) server responds with an answer before we even send the query. This sort of identd spoofing can be a sign of malware infection, though it can also be used for legitimate privacy reasons.

@sec-js
sec-js / Script http-auth-finder.md
Created October 19, 2022 21:08
Spiders a web site to find web pages requiring form-based or HTTP-based authentication. The results are returned in a table with each url and the detected method.

Script http-auth-finder Script types: portrule Categories: discovery, safe Download: https://svn.nmap.org/nmap/scripts/http-auth-finder.nse

Script Summary Spiders a web site to find web pages requiring form-based or HTTP-based authentication. The results are returned in a table with each url and the detected method.

See also: http-auth.nse

@sec-js
sec-js / Script http-default-accounts.md
Created October 19, 2022 21:06
Tests for access with default credentials used by a variety of web applications and devices. It works similar to http-enum, we detect applications by matching known paths and launching a login routine using default credentials when found. This script depends on a fingerprint file containing the target’s information: name, category, location path…

Script http-default-accounts Script types: portrule Categories: discovery, auth, intrusive Download: https://svn.nmap.org/nmap/scripts/http-default-accounts.nse

Script Summary Tests for access with default credentials used by a variety of web applications and devices.

It works similar to http-enum, we detect applications by matching known paths and launching a login routine using default credentials when found. This script depends on a fingerprint file containing the target's information: name, category, location paths, default credentials and login routine.