124
◾
Ethical Hacking and Penetration Testing Guide
Therefore, using automated scanners such as Nessus, OpenVas, or Netexpose could be very dan-
gerous and can cause such systems to crash.
Luckily, we have a great alternative with nmap’s new script called vulscan.nse. The script would
require two arguments to run: the first argument is “–sv”, which is commonly used to perform
service detection with nmap.; the second argument is “–script=vulscan.nse”, which is the default
syntax for using an nmap script.
Installation
A vulnscan.nse script is not installed in nmap, we need to download the script and extract its con-
tents to the
usr/local/share/nmap/scripts
directory. Here is how we can do it:
root@root: cd/usr/local/share/nmap/scripts
root@root:/usr/local/share/nmap/scripts# wget
www.computec.ch/mruef/software/nmap _ nse _ vulscan-1.0.tar.gz
root@root:/usr/localshare/nmap/scripts# tar xvzf nmap _ nse _
vulscan-1.0.tar.gz.
Usage
Now that we have installed vulscan.nse script, we will use the following command to run it:
nmap –sV –script=vulscan.nse
Dostları ilə paylaş: