Kali linux 2016.2(Rolling)中的auxiliary模块详解
不多说,直接上干货!root@kali:~# msfconsole
______________________________________________________________________________
| |
| 3Kom SuperHack II Logon |
|______________________________________________________________________________|
| |
| |
| |
| User Name: [ security ] |
| |
| Password: [ ] |
| |
| |
| |
| [ OK ] |
|______________________________________________________________________________|
| |
| http://metasploit.com |
|______________________________________________________________________________|
Tired of typing 'set RHOSTS'? Click & pwn with Metasploit Pro
Learn more on http://rapid7.com/metasploit
=[ metasploit v4.12.41-dev ]
+ -- --=[ 1597 exploits - 912 auxiliary - 274 post ]
+ -- --=[ 458 payloads - 39 encoders - 8 nops ]
+ -- --=[ Free Metasploit Pro trial: http://r-7.co/trymsp ]
msf > show auxiliary
Auxiliary
=========
Name Disclosure DateRank Description
---- ------------------- -----------
admin/2wire/xslt_password_reset 2007-08-15 normal2Wire Cross-Site Request Forgery Password Reset Vulnerability
admin/android/google_play_store_uxss_xframe_rce normalAndroid Browser RCE Through Google Play Store XFO
admin/appletv/appletv_display_image normalApple TV Image Remote Control
admin/appletv/appletv_display_video normalApple TV Video Remote Control
admin/atg/atg_client normalVeeder-Root Automatic Tank Gauge (ATG) Administrative Client
admin/backupexec/dump normalVeritas Backup Exec Windows Remote File Access
admin/backupexec/registry normalVeritas Backup Exec Server Registry Access
admin/chromecast/chromecast_reset normalChromecast Factory Reset DoS
admin/chromecast/chromecast_youtube normalChromecast YouTube Remote Control
admin/cisco/cisco_asa_extrabacon normalCisco ASA Authentication Bypass (EXTRABACON)
admin/cisco/cisco_secure_acs_bypass normalCisco Secure ACS Unauthorized Password Change
admin/cisco/vpn_3000_ftp_bypass 2006-08-23 normalCisco VPN Concentrator 3000 FTP Unauthorized Administrative Access
admin/db2/db2rcmd 2004-03-04 normalIBM DB2 db2rcmd.exe Command Execution Vulnerability
admin/edirectory/edirectory_dhost_cookie normalNovell eDirectory DHOST Predictable Session Cookie
admin/edirectory/edirectory_edirutil normalNovell eDirectory eMBox Unauthenticated File Access
admin/emc/alphastor_devicemanager_exec 2008-05-27 normalEMC AlphaStor Device Manager Arbitrary Command Execution
admin/emc/alphastor_librarymanager_exec 2008-05-27 normalEMC AlphaStor Library Manager Arbitrary Command Execution
admin/firetv/firetv_youtube normalAmazon Fire TV YouTube Remote Control
admin/hp/hp_data_protector_cmd 2011-02-07 normalHP Data Protector 6.1 EXEC_CMD Command Execution
admin/hp/hp_imc_som_create_account 2013-10-08 normalHP Intelligent Management SOM Account Creation
admin/http/arris_motorola_surfboard_backdoor_xss 2015-04-08 normalArris / Motorola Surfboard SBG6580 Web Interface Takeover
admin/http/axigen_file_access 2012-10-31 normalAxigen Arbitrary File Read and Delete
admin/http/cfme_manageiq_evm_pass_reset 2013-11-12 normalRed Hat CloudForms Management Engine 5.1 miq_policy/explorer SQL Injection
admin/http/contentkeeper_fileaccess normalContentKeeper Web Appliance mimencode File Access
admin/http/dlink_dir_300_600_exec_noauth 2013-02-04 normalD-Link DIR-600 / DIR-300 Unauthenticated Remote Command Execution
admin/http/dlink_dir_645_password_extractor normalD-Link DIR 645 Password Extractor
admin/http/dlink_dsl320b_password_extractor normalD-Link DSL 320B Password Extractor
admin/http/foreman_openstack_satellite_priv_esc 2013-06-06 normalForeman (Red Hat OpenStack/Satellite) users/create Mass Assignment
admin/http/hp_web_jetadmin_exec 2004-04-27 normalHP Web JetAdmin 6.5 Server Arbitrary Command Execution
admin/http/iis_auth_bypass 2010-07-02 normalMS10-065 Microsoft IIS 5 NTFS Stream Authentication Bypass
admin/http/intersil_pass_reset 2007-09-10 normalIntersil (Boa) HTTPd Basic Authentication Password Reset
admin/http/iomega_storcenterpro_sessionid normalIomega StorCenter Pro NAS Web Authentication Bypass
admin/http/jboss_bshdeployer normalJBoss JMX Console Beanshell Deployer WAR Upload and Deployment
admin/http/jboss_deploymentfilerepository normalJBoss JMX Console DeploymentFileRepository WAR Upload and Deployment
admin/http/jboss_seam_exec 2010-07-19 normalJBoss Seam 2 Remote Command Execution
admin/http/joomla_registration_privesc 2016-10-25 normalJoomla Account Creation and Privilege Escalation
admin/http/kaseya_master_admin 2015-09-23 normalKaseya VSA Master Administrator Account Creation
admin/http/katello_satellite_priv_esc 2014-03-24 normalKatello (Red Hat Satellite) users/update_roles Missing Authorization
admin/http/limesurvey_file_download 2015-10-12 normalLimesurvey Unauthenticated File Download
admin/http/linksys_e1500_e2500_exec 2013-02-05 normalLinksys E1500/E2500 Remote Command Execution
admin/http/linksys_tmunblock_admin_reset_bof 2014-02-19 normalLinksys WRT120N tmUnblock Stack Buffer Overflow
admin/http/linksys_wrt54gl_exec 2013-01-18 normalLinksys WRT54GL Remote Command Execution
admin/http/manage_engine_dc_create_admin 2014-12-31 normalManageEngine Desktop Central Administrator Account Creation
admin/http/manageengine_dir_listing 2015-01-28 normalManageEngine Multiple Products Arbitrary Directory Listing
admin/http/manageengine_file_download 2015-01-28 normalManageEngine Multiple Products Arbitrary File Download
admin/http/manageengine_pmp_privesc 2014-11-08 normalManageEngine Password Manager SQLAdvancedALSearchResult.cc Pro SQL Injection
admin/http/mutiny_frontend_read_delete 2013-05-15 normalMutiny 5 Arbitrary File Read and Delete
admin/http/netflow_file_download 2014-11-30 normalManageEngine NetFlow Analyzer Arbitrary File Download
admin/http/netgear_auth_download 2016-02-04 normalNETGEAR ProSafe Network Management System 300 Authenticated File Download
admin/http/netgear_soap_password_extractor 2015-02-11 normalNetgear Unauthenticated SOAP Password Extractor
admin/http/nexpose_xxe_file_read normalNexpose XXE Arbitrary File Read
admin/http/novell_file_reporter_filedelete normalNovell File Reporter Agent Arbitrary File Delete
admin/http/nuuo_nvrmini_reset 2016-08-04 normalNUUO NVRmini 2 / NETGEAR ReadyNAS Surveillance Default Configuration Load and Administrator Password Reset
admin/http/openbravo_xxe 2013-10-30 normalOpenbravo ERP XXE Arbitrary File Read
admin/http/rails_devise_pass_reset 2013-01-28 normalRuby on Rails Devise Authentication Password Reset
admin/http/scrutinizer_add_user 2012-07-27 normalPlixer Scrutinizer NetFlow and sFlow Analyzer HTTP Authentication Bypass
admin/http/sophos_wpa_traversal 2013-04-03 normalSophos Web Protection Appliance patience.cgi Directory Traversal
admin/http/sysaid_admin_acct 2015-06-03 normalSysAid Help Desk Administrator Account Creation
admin/http/sysaid_file_download 2015-06-03 normalSysAid Help Desk Arbitrary File Download
admin/http/sysaid_sql_creds 2015-06-03 normalSysAid Help Desk Database Credentials Disclosure
admin/http/telpho10_credential_dump 2016-09-02 normalTelpho10 Backup Credentials Dumper
admin/http/tomcat_administration normalTomcat Administration Tool Default Access
admin/http/tomcat_utf8_traversal 2009-01-09 normalTomcat UTF-8 Directory Traversal Vulnerability
admin/http/trendmicro_dlp_traversal 2009-01-09 normalTrendMicro Data Loss Prevention 5.5 Directory Traversal
admin/http/typo3_sa_2009_001 2009-01-20 normalTYPO3 sa-2009-001 Weak Encryption Key File Disclosure
admin/http/typo3_sa_2009_002 2009-02-10 normalTypo3 sa-2009-002 File Disclosure
admin/http/typo3_sa_2010_020 normalTYPO3 sa-2010-020 Remote File Disclosure
admin/http/typo3_winstaller_default_enc_keys normalTYPO3 Winstaller Default Encryption Keys
admin/http/vbulletin_upgrade_admin 2013-10-09 normalvBulletin Administrator Account Creation
admin/http/webnms_cred_disclosure 2016-07-04 normalWebNMS Framework Server Credential Disclosure
admin/http/webnms_file_download 2016-07-04 normalWebNMS Framework Server Arbitrary Text File Download
admin/http/wp_custom_contact_forms 2014-08-07 normalWordPress custom-contact-forms Plugin SQL Upload
admin/http/wp_easycart_privilege_escalation 2015-02-25 normalWordPress WP EasyCart Plugin Privilege Escalation
admin/http/wp_wplms_privilege_escalation 2015-02-09 normalWordPress WPLMS Theme Privilege Escalation
admin/http/zyxel_admin_password_extractor normalZyXEL GS1510-16 Password Extractor
admin/kerberos/ms14_068_kerberos_checksum 2014-11-18 normalMS14-068 Microsoft Kerberos Checksum Validation Vulnerability
admin/maxdb/maxdb_cons_exec 2008-01-09 normalSAP MaxDB cons.exe Remote Command Injection
admin/misc/sercomm_dump_config 2013-12-31 normalSerComm Device Configuration Dump
admin/misc/wol normalUDP Wake-On-Lan (WOL)
admin/motorola/wr850g_cred 2004-09-24 normalMotorola WR850G v4.03 Credentials
admin/ms/ms08_059_his2006 2008-10-14 normalMicrosoft Host Integration Server 2006 Command Execution Vulnerability
admin/mssql/mssql_enum normalMicrosoft SQL Server Configuration Enumerator
admin/mssql/mssql_enum_domain_accounts normalMicrosoft SQL Server SUSER_SNAME Windows Domain Account Enumeration
admin/mssql/mssql_enum_domain_accounts_sqli normalMicrosoft SQL Server SQLi SUSER_SNAME Windows Domain Account Enumeration
admin/mssql/mssql_enum_sql_logins normalMicrosoft SQL Server SUSER_SNAME SQL Logins Enumeration
admin/mssql/mssql_escalate_dbowner normalMicrosoft SQL Server Escalate Db_Owner
admin/mssql/mssql_escalate_dbowner_sqli normalMicrosoft SQL Server SQLi Escalate Db_Owner
admin/mssql/mssql_escalate_execute_as normalMicrosoft SQL Server Escalate EXECUTE AS
admin/mssql/mssql_escalate_execute_as_sqli normalMicrosoft SQL Server SQLi Escalate Execute AS
admin/mssql/mssql_exec normalMicrosoft SQL Server xp_cmdshell Command Execution
admin/mssql/mssql_findandsampledata normalMicrosoft SQL Server Find and Sample Data
admin/mssql/mssql_idf normalMicrosoft SQL Server Interesting Data Finder
admin/mssql/mssql_ntlm_stealer normalMicrosoft SQL Server NTLM Stealer
admin/mssql/mssql_ntlm_stealer_sqli normalMicrosoft SQL Server SQLi NTLM Stealer
admin/mssql/mssql_sql normalMicrosoft SQL Server Generic Query
admin/mssql/mssql_sql_file normalMicrosoft SQL Server Generic Query from File
admin/mysql/mysql_enum normalMySQL Enumeration Module
admin/mysql/mysql_sql normalMySQL SQL Generic Query
admin/natpmp/natpmp_map normalNAT-PMP Port Mapper
admin/netbios/netbios_spoof normalNetBIOS Response Brute Force Spoof (Direct)
admin/officescan/tmlisten_traversal normalTrendMicro OfficeScanNT Listener Traversal Arbitrary File Access
admin/oracle/ora_ntlm_stealer 2009-04-07 normalOracle SMB Relay Code Execution
admin/oracle/oracle_login 2008-11-20 normalOracle Account Discovery
admin/oracle/oracle_sql 2007-12-07 normalOracle SQL Generic Query
admin/oracle/oraenum normalOracle Database Enumeration
admin/oracle/osb_execqr 2009-01-14 normalOracle Secure Backup exec_qr() Command Injection Vulnerability
admin/oracle/osb_execqr2 2009-08-18 normalOracle Secure Backup Authentication Bypass/Command Injection Vulnerability
admin/oracle/osb_execqr3 2010-07-13 normalOracle Secure Backup Authentication Bypass/Command Injection Vulnerability
admin/oracle/post_exploitation/win32exec 2007-12-07 normalOracle Java execCommand (Win32)
admin/oracle/post_exploitation/win32upload 2005-02-10 normalOracle URL Download
admin/oracle/sid_brute 2009-01-07 normalOracle TNS Listener SID Brute Forcer
admin/oracle/tnscmd 2009-02-01 normalOracle TNS Listener Command Issuer
admin/pop2/uw_fileretrieval 2000-07-14 normalUoW pop2d Remote File Retrieval Vulnerability
admin/postgres/postgres_readfile normalPostgreSQL Server Generic Query
admin/postgres/postgres_sql normalPostgreSQL Server Generic Query
admin/sap/sap_configservlet_exec_noauth 2012-11-01 normalSAP ConfigServlet OS Command Execution
admin/sap/sap_mgmt_con_osexec normalSAP Management Console OSExecute
admin/scada/advantech_webaccess_dbvisitor_sqli 2014-04-08 normalAdvantech WebAccess SQL Injection
admin/scada/ge_proficy_substitute_traversal 2013-01-22 normalGE Proficy Cimplicity WebView substitute.bcl Directory Traversal
admin/scada/modicon_command 2012-04-05 normalSchneider Modicon Remote START/STOP Command
admin/scada/modicon_password_recovery 2012-01-19 normalSchneider Modicon Quantum Password Recovery
admin/scada/modicon_stux_transfer 2012-04-05 normalSchneider Modicon Ladder Logic Upload/Download
admin/scada/multi_cip_command 2012-01-19 normalAllen-Bradley/Rockwell Automation EtherNet/IP CIP Commands
admin/scada/phoenix_command 2015-05-20 normalPhoenixContact PLC Remote START/STOP Command
admin/scada/yokogawa_bkbcopyd_client 2014-08-09 normalYokogawa BKBCopyD.exe Client
admin/serverprotect/file normalTrendMicro ServerProtect File Access
admin/smb/check_dir_file normalSMB Scanner Check File/Directory Utility
admin/smb/delete_file normalSMB File Delete Utility
admin/smb/download_file normalSMB File Download Utility
admin/smb/list_directory normalSMB Directory Listing Utility
admin/smb/psexec_command normalMicrosoft Windows Authenticated Administration Utility
admin/smb/psexec_ntdsgrab normalPsExec NTDS.dit And SYSTEM Hive Download Utility
admin/smb/samba_symlink_traversal normalSamba Symlink Directory Traversal
admin/smb/upload_file normalSMB File Upload Utility
admin/sunrpc/solaris_kcms_readfile 2003-01-22 normalSolaris KCMS + TTDB Arbitrary File Read
admin/tftp/tftp_transfer_util normalTFTP File Transfer Utility
admin/tikiwiki/tikidblib 2006-11-01 normalTikiWiki Information Disclosure
admin/upnp/soap_portmapping normalUPnP IGD SOAP Port Mapping Utility
admin/vmware/poweroff_vm normalVMWare Power Off Virtual Machine
admin/vmware/poweron_vm normalVMWare Power On Virtual Machine
admin/vmware/tag_vm normalVMWare Tag Virtual Machine
admin/vmware/terminate_esx_sessions normalVMWare Terminate ESX Login Sessions
admin/vnc/realvnc_41_bypass 2006-05-15 normalRealVNC NULL Authentication Mode Bypass
admin/vxworks/apple_airport_extreme_password normalApple Airport Extreme Password Extraction (WDBRPC)
admin/vxworks/dlink_i2eye_autoanswer normalD-Link i2eye Video Conference AutoAnswer (WDBRPC)
admin/vxworks/wdbrpc_memory_dump normalVxWorks WDB Agent Remote Memory Dump
admin/vxworks/wdbrpc_reboot normalVxWorks WDB Agent Remote Reboot
admin/webmin/edit_html_fileaccess 2012-09-06 normalWebmin edit_html.cgi file Parameter Traversal Arbitrary File Access
admin/webmin/file_disclosure 2006-06-30 normalWebmin File Disclosure
admin/zend/java_bridge 2011-03-28 normalZend Server Java Bridge Design Flaw Remote Code Execution
analyze/jtr_aix normalJohn the Ripper AIX Password Cracker
analyze/jtr_crack_fast normalJohn the Ripper Password Cracker (Fast Mode)
analyze/jtr_linux normalJohn the Ripper Linux Password Cracker
analyze/jtr_mssql_fast normalJohn the Ripper MS SQL Password Cracker (Fast Mode)
analyze/jtr_mysql_fast normalJohn the Ripper MySQL Password Cracker (Fast Mode)
analyze/jtr_oracle_fast normalJohn the Ripper Oracle Password Cracker (Fast Mode)
analyze/jtr_postgres_fast
normalJohn the Ripper Postgres SQL Password Cracker
bnat/bnat_router normalBNAT Router
bnat/bnat_scan normalBNAT Scanner
client/smtp/emailer normalGeneric Emailer (SMTP)
crawler/msfcrawler normalMetasploit Web Crawler
docx/word_unc_injector normalMicrosoft Word UNC Path Injector
dos/android/android_stock_browser_iframe 2012-12-01 normalAndroid Stock Browser Iframe DOS
dos/cisco/ios_http_percentpercent 2000-04-26 normalCisco IOS HTTP GET /%% Request Denial of Service
dos/dhcp/isc_dhcpd_clientid normalISC DHCP Zero Length ClientID Denial of Service Module
dos/dns/bind_tkey 2015-07-28 normalBIND TKEY Query Denial of Service
dos/freebsd/nfsd/nfsd_mount normalFreeBSD Remote NFS RPC Request Denial of Service
dos/hp/data_protector_rds 2011-01-08 normalHP Data Protector Manager RDS DOS
dos/http/3com_superstack_switch 2004-06-24 normal3Com SuperStack Switch Denial of Service
dos/http/apache_commons_fileupload_dos 2014-02-06 normalApache Commons FileUpload and Apache Tomcat DoS
dos/http/apache_mod_isapi 2010-03-05 normalApache mod_isapi Dangling Pointer
dos/http/apache_range_dos 2011-08-19 normalApache Range Header DoS (Apache Killer)
dos/http/apache_tomcat_transfer_encoding 2010-07-09 normalApache Tomcat Transfer-Encoding Information Disclosure and DoS
dos/http/canon_wireless_printer 2013-06-18 normalCanon Wireless Printer Denial Of Service
dos/http/dell_openmanage_post 2004-02-26 normalDell OpenManage POST Request Heap Overflow (win32)
dos/http/f5_bigip_apm_max_sessions normalF5 BigIP Access Policy Manager Session Exhaustion Denial of Service
dos/http/gzip_bomb_dos 2004-01-01 normalGzip Memory Bomb Denial Of Service
dos/http/hashcollision_dos 2011-12-28 normalHashtable Collisions
dos/http/monkey_headers 2013-05-30 normalMonkey HTTPD Header Parsing Denial of Service (DoS)
dos/http/ms15_034_ulonglongadd normalMS15-034 HTTP Protocol Stack Request Handling Denial-of-Service
dos/http/nodejs_pipelining 2013-10-18 normalNode.js HTTP Pipelining Denial of Service
dos/http/novell_file_reporter_heap_bof 2012-11-16 normalNFR Agent Heap Overflow Vulnerability
dos/http/rails_action_view 2013-12-04 normalRuby on Rails Action View MIME Memory Exhaustion
dos/http/rails_json_float_dos 2013-11-22 normalRuby on Rails JSON Processor Floating Point Heap Overflow DoS
dos/http/sonicwall_ssl_format 2009-05-29 normalSonicWALL SSL-VPN Format String Vulnerability
dos/http/webrick_regex 2008-08-08 normalRuby WEBrick::HTTP::DefaultFileHandler DoS
dos/http/wordpress_long_password_dos 2014-11-20 normalWordPress Long Password DoS
dos/http/wordpress_xmlrpc_dos 2014-08-06 normalWordpress XMLRPC DoS
dos/mdns/avahi_portzero 2008-11-14 normalAvahi Source Port 0 DoS
dos/misc/dopewars 2009-10-05 normalDopewars Denial of Service
dos/misc/ibm_sametime_webplayer_dos 2013-11-07 normalIBM Lotus Sametime WebPlayer DoS
dos/misc/ibm_tsm_dos 2015-12-15 normalIBM Tivoli Storage Manager FastBack Server Opcode 0x534 Denial of Service
dos/misc/memcached normalMemcached Remote Denial of Service
dos/ntp/ntpd_reserved_dos 2009-10-04 normalNTP.org ntpd Reserved Mode Denial of Service
dos/pptp/ms02_063_pptp_dos 2002-09-26 normalMS02-063 PPTP Malformed Control Data Kernel Denial of Service
dos/samba/lsa_addprivs_heap normalSamba lsa_io_privilege_set Heap Overflow
dos/samba/lsa_transnames_heap normalSamba lsa_io_trans_names Heap Overflow
dos/samba/read_nttrans_ea_list normalSamba read_nttrans_ea_list Integer Overflow
dos/sap/sap_soap_rfc_eps_delete_file normalSAP SOAP EPS_DELETE_FILE File Deletion
dos/scada/beckhoff_twincat 2011-09-13 normalBeckhoff TwinCAT SCADA PLC 2.11.0.2004 DoS
dos/scada/d20_tftp_overflow 2012-01-19 normalGeneral Electric D20ME TFTP Server Buffer Overflow DoS
dos/scada/igss9_dataserver 2011-12-20 normal7-Technologies IGSS 9 IGSSdataServer.exe DoS
dos/scada/yokogawa_logsvr 2014-03-10 normalYokogawa CENTUM CS 3000 BKCLogSvr.exe Heap Buffer Overflow
dos/smtp/sendmail_prescan 2003-09-17 normalSendmail SMTP Address prescan Memory Corruption
dos/solaris/lpd/cascade_delete normalSolaris LPD Arbitrary File Delete
dos/ssl/dtls_changecipherspec 2000-04-26 normalOpenSSL DTLS ChangeCipherSpec Remote DoS
dos/ssl/dtls_fragment_overflow 2014-06-05 normalOpenSSL DTLS Fragment Buffer Overflow DoS
dos/ssl/openssl_aesni 2013-02-05 normalOpenSSL TLS 1.1 and 1.2 AES-NI DoS
dos/syslog/rsyslog_long_tag 2011-09-01 normalrsyslog Long Tag Off-By-Two DoS
dos/tcp/junos_tcp_opt normalJuniper JunOS Malformed TCP Option
dos/tcp/synflood normalTCP SYN Flooder
dos/upnp/miniupnpd_dos 2013-03-27 normalMiniUPnPd 1.4 Denial of Service (DoS) Exploit
dos/windows/appian/appian_bpm 2007-12-17 normalAppian Enterprise Business Suite 5.6 SP1 DoS
dos/windows/browser/ms09_065_eot_integer 2009-11-10 normalMicrosoft Windows EOT Font Table Directory Integer Overflow
dos/windows/ftp/filezilla_admin_user 2005-11-07 normalFileZilla FTP Server Admin Interface Denial of Service
dos/windows/ftp/filezilla_server_port 2006-12-11 normalFileZilla FTP Server Malformed PORT Denial of Service
dos/windows/ftp/guildftp_cwdlist 2008-10-12 normalGuild FTPd 0.999.8.11/0.999.14 Heap Corruption
dos/windows/ftp/iis75_ftpd_iac_bof 2010-12-21 normalMicrosoft IIS FTP Server Encoded Response Overflow Trigger
dos/windows/ftp/iis_list_exhaustion 2009-09-03 normalMicrosoft IIS FTP Server LIST Stack Exhaustion
dos/windows/ftp/solarftp_user 2011-02-22 normalSolar FTP Server Malformed USER Denial of Service
dos/windows/ftp/titan626_site 2008-10-14 normalTitan FTP Server 6.26.630 SITE WHO DoS
dos/windows/ftp/vicftps50_list 2008-10-24 normalVictory FTP Server 5.0 LIST DoS
dos/windows/ftp/winftp230_nlst 2008-09-26 normalWinFTP 2.3.0 NLST Denial of Service
dos/windows/ftp/xmeasy560_nlst 2008-10-13 normalXM Easy Personal FTP Server 5.6.0 NLST DoS
dos/windows/ftp/xmeasy570_nlst 2009-03-27 normalXM Easy Personal FTP Server 5.7.0 NLST DoS
dos/windows/games/kaillera 2011-07-02 normalKaillera 0.86 Server Denial of Service
dos/windows/http/ms10_065_ii6_asp_dos 2010-09-14 normalMicrosoft IIS 6.0 ASP Stack Exhaustion Denial of Service
dos/windows/http/pi3web_isapi 2008-11-13 normalPi3Web ISAPI DoS
dos/windows/llmnr/ms11_030_dnsapi 2011-04-12 normalMicrosoft Windows DNSAPI.dll LLMNR Buffer Underrun DoS
dos/windows/nat/nat_helper 2006-10-26 normalMicrosoft Windows NAT Helper Denial of Service
dos/windows/rdp/ms12_020_maxchannelids 2012-03-16 normalMS12-020 Microsoft Remote Desktop Use-After-Free DoS
dos/windows/smb/ms05_047_pnp normalMicrosoft Plug and Play Service Registry Overflow
dos/windows/smb/ms06_035_mailslot 2006-07-11 normalMicrosoft SRV.SYS Mailslot Write Corruption
dos/windows/smb/ms06_063_trans normalMicrosoft SRV.SYS Pipe Transaction No Null
dos/windows/smb/ms09_001_write normalMicrosoft SRV.SYS WriteAndX Invalid DataOffset
dos/windows/smb/ms09_050_smb2_negotiate_pidhigh normalMicrosoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference
dos/windows/smb/ms09_050_smb2_session_logoff normalMicrosoft SRV2.SYS SMB2 Logoff Remote Kernel NULL Pointer Dereference
dos/windows/smb/ms10_006_negotiate_response_loop normalMicrosoft Windows 7 / Server 2008 R2 SMB Client Infinite Loop
dos/windows/smb/ms10_054_queryfs_pool_overflow normalMicrosoft Windows SRV.SYS SrvSmbQueryFsInformation Pool Overflow DoS
dos/windows/smb/ms11_019_electbowser normalMicrosoft Windows Browser Pool DoS
dos/windows/smb/rras_vls_null_deref 2006-06-14 normalMicrosoft RRAS InterfaceAdjustVLSPointers NULL Dereference
dos/windows/smb/vista_negotiate_stop normalMicrosoft Vista SP0 SMB Negotiate Protocol DoS
dos/windows/smtp/ms06_019_exchange 2004-11-12 normalMS06-019 Exchange MODPROP Heap Overflow
dos/windows/ssh/sysax_sshd_kexchange 2013-03-17 normalSysax Multi-Server 6.10 SSHD Key Exchange Denial of Service
dos/windows/tftp/pt360_write 2008-10-29 normalPacketTrap TFTP Server 2.2.5459.0 DoS
dos/windows/tftp/solarwinds 2010-05-21 normalSolarWinds TFTP Server 10.4.0.10 Denial of Service
dos/wireshark/capwap 2014-04-28 normalWireshark CAPWAP Dissector DoS
dos/wireshark/chunked 2007-02-22 normalWireshark chunked_encoding_dissector Function DOS
dos/wireshark/cldap 2011-03-01 normalWireshark CLDAP Dissector DOS
dos/wireshark/ldap 2008-03-28 normalWireshark LDAP Dissector DOS
fuzzers/dns/dns_fuzzer normalDNS and DNSSEC Fuzzer
fuzzers/ftp/client_ftp normalSimple FTP Client Fuzzer
fuzzers/ftp/ftp_pre_post normalSimple FTP Fuzzer
fuzzers/http/http_form_field normalHTTP Form Field Fuzzer
fuzzers/http/http_get_uri_long normalHTTP GET Request URI Fuzzer (Incrementing Lengths)
fuzzers/http/http_get_uri_strings normalHTTP GET Request URI Fuzzer (Fuzzer Strings)
fuzzers/ntp/ntp_protocol_fuzzer normalNTP Protocol Fuzzer
fuzzers/smb/smb2_negotiate_corrupt normalSMB Negotiate SMB2 Dialect Corruption
fuzzers/smb/smb_create_pipe normalSMB Create Pipe Request Fuzzer
fuzzers/smb/smb_create_pipe_corrupt normalSMB Create Pipe Request Corruption
fuzzers/smb/smb_negotiate_corrupt normalSMB Negotiate Dialect Corruption
fuzzers/smb/smb_ntlm1_login_corrupt normalSMB NTLMv1 Login Request Corruption
fuzzers/smb/smb_tree_connect normalSMB Tree Connect Request Fuzzer
fuzzers/smb/smb_tree_connect_corrupt normalSMB Tree Connect Request Corruption
fuzzers/smtp/smtp_fuzzer normalSMTP Simple Fuzzer
fuzzers/ssh/ssh_kexinit_corrupt normalSSH Key Exchange Init Corruption
fuzzers/ssh/ssh_version_15 normalSSH 1.5 Version Fuzzer
fuzzers/ssh/ssh_version_2 normalSSH 2.0 Version Fuzzer
fuzzers/ssh/ssh_version_corrupt normalSSH Version Corruption
fuzzers/tds/tds_login_corrupt normalTDS Protocol Login Request Corruption Fuzzer
fuzzers/tds/tds_login_username normalTDS Protocol Login Request Username Fuzzer
gather/alienvault_iso27001_sqli 2014-03-30 normalAlienVault Authenticated SQL Injection Arbitrary File Read
gather/alienvault_newpolicyform_sqli 2014-05-09 normalAlienVault Authenticated SQL Injection Arbitrary File Read
gather/android_browser_file_theft normalAndroid Browser File Theft
gather/android_browser_new_tab_cookie_theft normalAndroid Browser "Open in New Tab" Cookie Theft
gather/android_htmlfileprovider normalAndroid Content Provider File Disclosure
gather/android_object_tag_webview_uxss 2014-10-04 normalAndroid Open Source Platform (AOSP) Browser UXSS
gather/android_stock_browser_uxss normalAndroid Open Source Platform (AOSP) Browser UXSS
gather/apache_rave_creds normalApache Rave User Information Disclosure
gather/apple_safari_ftp_url_cookie_theft 2015-04-08 normalApple OSX/iOS/Windows Safari Non-HTTPOnly Cookie Theft
gather/apple_safari_webarchive_uxss 2013-02-22 normalMac OS X Safari .webarchive File Format UXSS
gather/avtech744_dvr_accounts normalAVTECH 744 DVR Account Information Retrieval
gather/browser_info 2016-03-22 normalHTTP Client Information Gather
gather/checkpoint_hostname 2011-12-14 normalCheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure
gather/chromecast_wifi normalChromecast Wifi Enumeration
gather/citrix_published_applications normalCitrix MetaFrame ICA Published Applications Scanner
gather/citrix_published_bruteforce normalCitrix MetaFrame ICA Published Applications Bruteforcer
gather/coldfusion_pwd_props 2013-05-07 normalColdFusion 'password.properties' Hash Extraction
gather/corpwatch_lookup_id normalCorpWatch Company ID Information Search
gather/corpwatch_lookup_name normalCorpWatch Company Name Information Search
gather/d20pass 2012-01-19 normalGeneral Electric D20 Password Recovery
gather/darkcomet_filedownloader 2012-10-08 normalDarkComet Server Remote File Download Exploit
gather/doliwamp_traversal_creds 2014-01-12 normalDoliWamp 'jqueryFileTree.php' Traversal Gather Credentials
gather/drupal_openid_xxe 2012-10-17 normalDrupal OpenID External Entity Injection
gather/eaton_nsm_creds 2012-06-26 normalNetwork Shutdown Module sort_values Credential Dumper
gather/emc_cta_xxe 2014-03-31 normalEMC CTA v10.0 Unauthenticated XXE Arbitrary File Read
gather/enum_dns normalDNS Record Scanner and Enumerator
gather/eventlog_cred_disclosure 2014-11-05 normalManageEngine Eventlog Analyzer Managed Hosts Administrator Credential Disclosure
gather/external_ip normalDiscover External IP via Ifconfig.me
gather/f5_bigip_cookie_disclosure normalF5 BigIP Backend Cookie Disclosure
gather/firefox_pdfjs_file_theft normalFirefox PDF.js Browser File Theft
gather/flash_rosetta_jsonp_url_disclosure 2014-07-08 normalFlash "Rosetta" JSONP GET/POST Response Disclosure
gather/hp_enum_perfd normalHP Operations Manager Perfd Environment Scanner
gather/hp_snac_domain_creds 2013-09-09 normalHP ProCurve SNAC Domain Controller Credential Dumper
gather/huawei_wifi_info 2013-11-11 normalHuawei Datacard Information Disclosure Vulnerability
gather/ibm_sametime_enumerate_users 2013-12-27 normalIBM Lotus Notes Sametime User Enumeration
gather/ibm_sametime_room_brute 2013-12-27 normalIBM Lotus Notes Sametime Room Name Bruteforce
gather/ibm_sametime_version 2013-12-27 normalIBM Lotus Sametime Version Enumeration
gather/ie_sandbox_findfiles 2016-08-09 normalInternet Explorer Iframe Sandbox File Name Disclosure Vulnerability
gather/ie_uxss_injection 2015-02-01 normalMS15-018 Microsoft Internet Explorer 10 and 11 Cross-Domain JavaScript Injection
gather/impersonate_ssl normalHTTP SSL Certificate Impersonation
gather/java_rmi_registry normalJava RMI Registry Interfaces Enumeration
gather/jenkins_cred_recovery normalJenkins Domain Credential Recovery
gather/joomla_com_realestatemanager_sqli 2015-10-22 normalJoomla Real Estate Manager Component Error-Based SQL Injection
gather/joomla_contenthistory_sqli 2015-10-22 normalJoomla com_contenthistory Error-Based SQL Injection
gather/joomla_weblinks_sqli 2014-03-02 normalJoomla weblinks-categories Unauthenticated SQL Injection Arbitrary File Read
gather/kerberos_enumusers normalKerberos Domain User Enumeration
gather/konica_minolta_pwd_extract normalKonica Minolta Password Extractor
gather/lansweeper_collector normalLansweeper Credential Collector
gather/mantisbt_admin_sqli 2014-02-28 normalMantisBT Admin SQL Injection Arbitrary File Read
gather/mcafee_epo_xxe 2015-01-06 normalMcAfee ePolicy Orchestrator Authenticated XXE Credentials Exposure
gather/memcached_extractor normalMemcached Extractor
gather/mongodb_js_inject_collection_enum 2014-06-07 normalMongoDB NoSQL Collection Enumeration Via Injection
gather/ms14_052_xmldom 2014-09-09 normalMS14-052 Microsoft Internet Explorer XMLDOM Filename Disclosure
gather/mybb_db_fingerprint 2014-02-13 normalMyBB Database Fingerprint
gather/natpmp_external_address normalNAT-PMP External Address Scanner
gather/opennms_xxe 2015-01-08 normalOpenNMS Authenticated XXE
gather/safari_file_url_navigation 2014-01-16 normalMac OS X Safari file:// Redirection Sandbox Escape
gather/search_email_collector normalSearch Engine Domain Email Address Collector
gather/searchengine_subdomains_collector normalSearch Engine Subdomains Collector
gather/shodan_search normalShodan Search
gather/snare_registry normalSnare Lite for Windows Registry Access
gather/solarwinds_orion_sqli 2015-02-24 normalSolarwinds Orion AccountManagement.asmx GetAccounts Admin Creation
gather/ssllabs_scan normalSSL Labs API Client
gather/trackit_sql_domain_creds 2014-10-07 normalBMC / Numara Track-It! Domain Administrator and SQL Server User Password Disclosure
gather/vbulletin_vote_sqli 2013-03-24 normalvBulletin Password Collector via nodeid SQL Injection
gather/windows_deployment_services_shares normalMicrosoft Windows Deployment Services Unattend Gatherer
gather/wp_all_in_one_migration_export 2015-03-19 normalWordPress All-in-One Migration Export
gather/wp_ultimate_csv_importer_user_extract 2015-02-02 normalWordPress Ultimate CSV Importer User Table Extract
gather/wp_w3_total_cache_hash_extract normalWordPress W3-Total-Cache Plugin 0.9.2.4 (or before) Username and Hash Extract
gather/xbmc_traversal 2012-11-04 normalXBMC Web Server Directory Traversal
gather/xerox_pwd_extract normalXerox Administrator Console Password Extractor
gather/xerox_workcentre_5xxx_ldap normalXerox Workcentre 5735 LDAP Service Redential Extractor
gather/zabbix_toggleids_sqli 2016-08-11 normalZabbix toggle_ids SQL Injection
gather/zoomeye_search normalZoomEye Search
parser/unattend normalAuxilliary Parser Windows Unattend Passwords
pdf/foxit/authbypass 2009-03-09 normalFoxit Reader Authorization Bypass
scanner/acpp/login normalApple Airport ACPP Authentication Scanner
scanner/afp/afp_login normalApple Filing Protocol Login Utility
scanner/afp/afp_server_info normalApple Filing Protocol Info Enumerator
scanner/backdoor/energizer_duo_detect normalEnergizer DUO Trojan Scanner
scanner/chargen/chargen_probe 1996-02-08 normalChargen Probe Utility
scanner/couchdb/couchdb_enum normalCouchDB Enum Utility
scanner/couchdb/couchdb_login normalCouchDB Login Utility
scanner/db2/db2_auth normalDB2 Authentication Brute Force Utility
scanner/db2/db2_version normalDB2 Probe Utility
scanner/db2/discovery normalDB2 Discovery Service Detection
scanner/dcerpc/endpoint_mapper normalEndpoint Mapper Service Discovery
scanner/dcerpc/hidden normalHidden DCERPC Service Discovery
scanner/dcerpc/management normalRemote Management Interface Discovery
scanner/dcerpc/tcp_dcerpc_auditor normalDCERPC TCP Service Auditor
scanner/dcerpc/windows_deployment_services normalMicrosoft Windows Deployment Services Unattend Retrieval
scanner/dect/call_scanner normalDECT Call Scanner
scanner/dect/station_scanner normalDECT Base Station Scanner
scanner/discovery/arp_sweep normalARP Sweep Local Network Discovery
scanner/discovery/empty_udp normalUDP Empty Prober
scanner/discovery/ipv6_multicast_ping normalIPv6 Link Local/Node Local Ping Discovery
scanner/discovery/ipv6_neighbor normalIPv6 Local Neighbor Discovery
scanner/discovery/ipv6_neighbor_router_advertisement normalIPv6 Local Neighbor Discovery Using Router Advertisement
scanner/discovery/udp_probe normalUDP Service Prober
scanner/discovery/udp_sweep normalUDP Service Sweeper
scanner/dlsw/dlsw_leak_capture 2014-11-17
normalCisco DLSw Information Disclosure Scanner
scanner/dns/dns_amp normalDNS Amplification Scanner
scanner/elasticsearch/indices_enum normalElasticSearch Indices Enumeration Utility
scanner/emc/alphastor_devicemanager normalEMC AlphaStor Device Manager Service
scanner/emc/alphastor_librarymanager normalEMC AlphaStor Library Manager Service
scanner/finger/finger_users normalFinger Service User Enumerator
scanner/ftp/anonymous normalAnonymous FTP Access Detection
scanner/ftp/bison_ftp_traversal 2015-09-28 normalBisonWare BisonFTP Server 3.5 Directory Traversal Information Disclosure
scanner/ftp/colorado_ftp_traversal 2016-08-11 normalColoradoFTP Server 1.3 Build 8 Directory Traversal Information Disclosure
scanner/ftp/ftp_login normalFTP Authentication Scanner
scanner/ftp/ftp_version normalFTP Version Scanner
scanner/ftp/konica_ftp_traversal 2015-09-22 normalKonica Minolta FTP Utility 1.00 Directory Traversal Information Disclosure
scanner/ftp/pcman_ftp_traversal 2015-09-28 normalPCMan FTP Server 2.0.7 Directory Traversal Information Disclosure
scanner/ftp/titanftp_xcrc_traversal 2010-06-15 normalTitan FTP XCRC Directory Traversal Information Disclosure
scanner/h323/h323_version normalH.323 Version Scanner
scanner/http/a10networks_ax_directory_traversal 2014-01-28 normalA10 Networks AX Loadbalancer Directory Traversal
scanner/http/accellion_fta_statecode_file_read 2015-07-10 normalAccellion FTA 'statecode' Cookie Arbitrary File Read
scanner/http/adobe_xml_inject normalAdobe XML External Entity Injection
scanner/http/allegro_rompager_misfortune_cookie 2014-12-17 normalAllegro Software RomPager 'Misfortune Cookie' (CVE-2014-9222) Scanner
scanner/http/apache_activemq_source_disclosure normalApache ActiveMQ JSP Files Source Disclosure
scanner/http/apache_activemq_traversal normalApache ActiveMQ Directory Traversal
scanner/http/apache_mod_cgi_bash_env 2014-09-24 normalApache mod_cgi Bash Environment Variable Injection (Shellshock) Scanner
scanner/http/apache_userdir_enum normalApache "mod_userdir" User Enumeration
scanner/http/appletv_login normalAppleTV AirPlay Login Utility
scanner/http/atlassian_crowd_fileaccess normalAtlassian Crowd XML Entity Expansion Remote File Access
scanner/http/axis_local_file_include normalApache Axis2 v1.4.1 Local File Inclusion
scanner/http/axis_login normalApache Axis2 Brute Force Utility
scanner/http/backup_file normalHTTP Backup File Scanner
scanner/http/barracuda_directory_traversal 2010-10-08 normalBarracuda Multiple Product "locale" Directory Traversal
scanner/http/bitweaver_overlay_type_traversal 2012-10-23 normalBitweaver overlay_type Directory Traversal
scanner/http/blind_sql_query normalHTTP Blind SQL Injection Scanner
scanner/http/bmc_trackit_passwd_reset 2014-12-09 normalBMC TrackIt! Unauthenticated Arbitrary User Password Change
scanner/http/brute_dirs normalHTTP Directory Brute Force Scanner
scanner/http/buffalo_login normalBuffalo NAS Login Utility
scanner/http/caidao_bruteforce_login normalChinese Caidao Backdoor Bruteforce
scanner/http/canon_wireless 2013-06-18 normalCanon Printer Wireless Configuration Disclosure
scanner/http/cert normalHTTP SSL Certificate Checker
scanner/http/chef_webui_login normalChef Web UI Brute Force Utility
scanner/http/chromecast_webserver normalChromecast Web Server Scanner
scanner/http/cisco_asa_asdm normalCisco ASA ASDM Bruteforce Login Utility
scanner/http/cisco_device_manager 2000-10-26 normalCisco Device HTTP Device Manager Access
scanner/http/cisco_ios_auth_bypass 2001-06-27 normalCisco IOS HTTP Unauthorized Administrative Access
scanner/http/cisco_ironport_enum normalCisco Ironport Bruteforce Login Utility
scanner/http/cisco_nac_manager_traversal normalCisco Network Access Manager Directory Traversal Vulnerability
scanner/http/cisco_ssl_vpn normalCisco SSL VPN Bruteforce Login Utility
scanner/http/cisco_ssl_vpn_priv_esc 2014-04-09 normalCisco ASA SSL VPN Privilege Escalation Vulnerability
scanner/http/clansphere_traversal 2012-10-23 normalClanSphere 2011.3 Local File Inclusion Vulnerability
scanner/http/coldfusion_locale_traversal normalColdFusion Server Check
scanner/http/coldfusion_version normalColdFusion Version Scanner
scanner/http/concrete5_member_list normalConcrete5 Member List Enumeration
scanner/http/copy_of_file normalHTTP Copy File Scanner
scanner/http/crawler normalWeb Site Crawler
scanner/http/dell_idrac normalDell iDRAC Default Login
scanner/http/dir_listing normalHTTP Directory Listing Scanner
scanner/http/dir_scanner normalHTTP Directory Scanner
scanner/http/dir_webdav_unicode_bypass normalMS09-020 IIS6 WebDAV Unicode Auth Bypass Directory Scanner
scanner/http/dlink_dir_300_615_http_login normalD-Link DIR-300A / DIR-320 / DIR-615D HTTP Login Utility
scanner/http/dlink_dir_615h_http_login normalD-Link DIR-615H HTTP Login Utility
scanner/http/dlink_dir_session_cgi_http_login normalD-Link DIR-300B / DIR-600B / DIR-815 / DIR-645 HTTP Login Utility
scanner/http/dlink_user_agent_backdoor 2013-10-12 normalD-Link User-Agent Backdoor Scanner
scanner/http/dolibarr_login normalDolibarr ERP/CRM Login Utility
scanner/http/drupal_views_user_enum 2010-07-02 normalDrupal Views Module Users Enumeration
scanner/http/ektron_cms400net normalEktron CMS400.NET Default Password Scanner
scanner/http/elasticsearch_traversal normalElasticSearch Snapshot API Directory Traversal
scanner/http/enum_wayback normalArchive.org Stored Domain URLs
scanner/http/error_sql_injection normalHTTP Error Based SQL Injection Scanner
scanner/http/etherpad_duo_login normalEtherPAD Duo Login Bruteforce Utility
scanner/http/f5_bigip_virtual_server normalF5 BigIP HTTP Virtual Server Scanner
scanner/http/f5_mgmt_scanner normalF5 Networks Devices Management Interface Scanner
scanner/http/file_same_name_dir normalHTTP File Same Name Directory Scanner
scanner/http/files_dir normalHTTP Interesting File Scanner
scanner/http/frontpage_login normalFrontPage Server Extensions Anonymous Login Scanner
scanner/http/git_scanner normalHTTP Git Scanner
scanner/http/gitlab_login normalGitLab Login Utility
scanner/http/gitlab_user_enum 2014-11-21 normalGitLab User Enumeration
scanner/http/glassfish_login normalGlassFish Brute Force Utility
scanner/http/goahead_traversal normalEmbedthis GoAhead Embedded Web Server Directory Traversal
scanner/http/groupwise_agents_http_traversal normalNovell Groupwise Agents HTTP Directory Traversal
scanner/http/host_header_injection normalHTTP Host Header Injection Detection
scanner/http/hp_imc_bims_downloadservlet_traversal normalHP Intelligent Management BIMS DownloadServlet Directory Traversal
scanner/http/hp_imc_faultdownloadservlet_traversal normalHP Intelligent Management FaultDownloadServlet Directory Traversal
scanner/http/hp_imc_ictdownloadservlet_traversal normalHP Intelligent Management IctDownloadServlet Directory Traversal
scanner/http/hp_imc_reportimgservlt_traversal normalHP Intelligent Management ReportImgServlt Directory Traversal
scanner/http/hp_imc_som_file_download normalHP Intelligent Management SOM FileDownloadServlet Arbitrary Download
scanner/http/hp_sitescope_getfileinternal_fileaccess normalHP SiteScope SOAP Call getFileInternal Remote File Access
scanner/http/hp_sitescope_getsitescopeconfiguration normalHP SiteScope SOAP Call getSiteScopeConfiguration Configuration Access
scanner/http/hp_sitescope_loadfilecontent_fileaccess normalHP SiteScope SOAP Call loadFileContent Remote File Access
scanner/http/hp_sys_mgmt_login normalHP System Management Homepage Login Utility
scanner/http/http_header normalHTTP Header Detection
scanner/http/http_hsts normalHTTP Strict Transport Security (HSTS) Detection
scanner/http/http_login normalHTTP Login Utility
scanner/http/http_put normalHTTP Writable Path PUT/DELETE File Access
scanner/http/http_traversal normalGeneric HTTP Directory Traversal Utility
scanner/http/http_version normalHTTP Version Detection
scanner/http/httpbl_lookup normalHttp:BL Lookup
scanner/http/iis_internal_ip normalMicrosoft IIS HTTP Internal IP Disclosure
scanner/http/influxdb_enum normalInfluxDB Enum Utility
scanner/http/infovista_enum normalInfoVista VistaPortal Application Bruteforce Login Utility
scanner/http/ipboard_login normalIP Board Login Auxiliary Module
scanner/http/jboss_status normalJBoss Status Servlet Information Gathering
scanner/http/jboss_vulnscan normalJBoss Vulnerability Scanner
scanner/http/jenkins_command normalJenkins-CI Unauthenticated Script-Console Scanner
scanner/http/jenkins_enum normalJenkins-CI Enumeration
scanner/http/jenkins_login normalJenkins-CI Login Utility
scanner/http/joomla_bruteforce_login normalJoomla Bruteforce Login Utility
scanner/http/joomla_ecommercewd_sqli_scanner 2015-03-20 normalWeb-Dorado ECommerce WD for Joomla! search_category_id SQL Injection Scanner
scanner/http/joomla_gallerywd_sqli_scanner 2015-03-30 normalGallery WD for Joomla! Unauthenticated SQL Injection Scanner
scanner/http/joomla_pages normalJoomla Page Scanner
scanner/http/joomla_plugins normalJoomla Plugins Scanner
scanner/http/joomla_version normalJoomla Version Scanner
scanner/http/linknat_vos_traversal normalLinknat Vos Manager Traversal
scanner/http/linksys_e1500_traversal normalLinksys E1500 Directory Traversal Vulnerability
scanner/http/litespeed_source_disclosure normalLiteSpeed Source Code Disclosure/Download
scanner/http/lucky_punch normalHTTP Microsoft SQL Injection Table XSS Infection
scanner/http/majordomo2_directory_traversal 2011-03-08 normalMajordomo2 _list_file_get() Directory Traversal
scanner/http/manageengine_desktop_central_login normalManageEngine Desktop Central Login Utility
scanner/http/manageengine_deviceexpert_traversal 2012-03-18 normalManageEngine DeviceExpert 5.6 ScheduleResultViewer FileName Traversal
scanner/http/manageengine_deviceexpert_user_creds 2014-08-28 normalManageEngine DeviceExpert User Credentials
scanner/http/manageengine_securitymanager_traversal 2012-10-19 normalManageEngine SecurityManager Plus 5.5 Directory Traversal
scanner/http/mediawiki_svg_fileaccess normalMediaWiki SVG XML Entity Expansion Remote File Access
scanner/http/mod_negotiation_brute normalApache HTTPD mod_negotiation Filename Bruter
scanner/http/mod_negotiation_scanner normalApache HTTPD mod_negotiation Scanner
scanner/http/ms09_020_webdav_unicode_bypass normalMS09-020 IIS6 WebDAV Unicode Authentication Bypass
scanner/http/ms15_034_http_sys_memory_dump normalMS15-034 HTTP Protocol Stack Request Handling HTTP.SYS Memory Information Disclosure
scanner/http/mybook_live_login normalWestern Digital MyBook Live Login Utility
scanner/http/netdecision_traversal 2012-03-07 normalNetDecision NOCVision Server Directory Traversal
scanner/http/netgear_sph200d_traversal normalNetgear SPH200D Directory Traversal Vulnerability
scanner/http/nginx_source_disclosure normalNginx Source Code Disclosure/Download
scanner/http/novell_file_reporter_fsfui_fileaccess 2012-11-16 normalNFR Agent FSFUI Record Arbitrary Remote File Access
scanner/http/novell_file_reporter_srs_fileaccess 2012-11-16 normalNFR Agent SRS Record Arbitrary Remote File Access
scanner/http/novell_mdm_creds normalNovell Zenworks Mobile Device Managment Admin Credentials
scanner/http/ntlm_info_enumeration normalHost Information Enumeration via NTLM Authentication
scanner/http/octopusdeploy_login normalOctopus Deploy Login Utility
scanner/http/open_proxy normalHTTP Open Proxy Detection
scanner/http/openmind_messageos_login normalOpenMind Message-OS Portal Login Brute Force Utility
scanner/http/options normalHTTP Options Detection
scanner/http/oracle_demantra_database_credentials_leak 2014-02-28 normalOracle Demantra Database Credentials Leak
scanner/http/oracle_demantra_file_retrieval 2014-02-28 normalOracle Demantra Arbitrary File Retrieval with Authentication Bypass
scanner/http/oracle_ilom_login normalOracle ILO Manager Login Brute Force Utility
scanner/http/owa_ews_login normalOWA Exchange Web Services (EWS) Login Scanner
scanner/http/owa_iis_internal_ip 2012-12-17 normalOutlook Web App (OWA) / Client Access Server (CAS) IIS HTTP Internal IP Disclosure
scanner/http/owa_login normalOutlook Web App (OWA) Brute Force Utility
scanner/http/pocketpad_login normalPocketPAD Login Bruteforce Force Utility
scanner/http/prev_dir_same_name_file normalHTTP Previous Directory File Scanner
scanner/http/radware_appdirector_enum normalRadware AppDirector Bruteforce Login Utility
scanner/http/rails_json_yaml_scanner normalRuby on Rails JSON Processor YAML Deserialization Scanner
scanner/http/rails_mass_assignment normalRuby On Rails Attributes Mass Assignment Scanner
scanner/http/rails_xml_yaml_scanner normalRuby on Rails XML Processor YAML Deserialization Scanner
scanner/http/replace_ext normalHTTP File Extension Scanner
scanner/http/rewrite_proxy_bypass normalApache Reverse Proxy Bypass Vulnerability Scanner
scanner/http/rfcode_reader_enum normalRFCode Reader Web Interface Login / Bruteforce Utility
scanner/http/rips_traversal normalRIPS Scanner Directory Traversal
scanner/http/robots_txt normalHTTP Robots.txt Content Scanner
scanner/http/s40_traversal 2011-04-07 normalS40 0.4.2 CMS Directory Traversal Vulnerability
scanner/http/sap_businessobjects_user_brute normalSAP BusinessObjects User Bruteforcer
scanner/http/sap_businessobjects_user_brute_web normalSAP BusinessObjects Web User Bruteforcer
scanner/http/sap_businessobjects_user_enum normalSAP BusinessObjects User Enumeration
scanner/http/sap_businessobjects_version_enum normalSAP BusinessObjects Version Detection
scanner/http/scraper normalHTTP Page Scraper
scanner/http/sentry_cdu_enum normalSentry Switched CDU Bruteforce Login Utility
scanner/http/servicedesk_plus_traversal 2015-10-03 normalManageEngine ServiceDesk Plus Path Traversal
scanner/http/sevone_enum 2013-06-07 normalSevOne Network Performance Management Application Brute Force Login Utility
scanner/http/simple_webserver_traversal 2013-01-03 normalSimple Web Server 2.3-RC1 Directory Traversal
scanner/http/smt_ipmi_49152_exposure 2014-06-19 normalSupermicro Onboard IPMI Port 49152 Sensitive File Exposure
scanner/http/smt_ipmi_cgi_scanner 2013-11-06 normalSupermicro Onboard IPMI CGI Vulnerability Scanner
scanner/http/smt_ipmi_static_cert_scanner 2013-11-06 normalSupermicro Onboard IPMI Static SSL Certificate Scanner
scanner/http/smt_ipmi_url_redirect_traversal 2013-11-06 normalSupermicro Onboard IPMI url_redirect.cgi Authenticated Directory Traversal
scanner/http/soap_xml normalHTTP SOAP Verb/Noun Brute Force Scanner
scanner/http/sockso_traversal 2012-03-14 normalSockso Music Host Server 1.5 Directory Traversal
scanner/http/splunk_web_login normalSplunk Web Interface Login Utility
scanner/http/squid_pivot_scanning normalSquid Proxy Port Scanner
scanner/http/squiz_matrix_user_enum 2011-11-08 normalSquiz Matrix User Enumeration Scanner
scanner/http/ssl normalHTTP SSL Certificate Information
scanner/http/ssl_version 2014-10-14 normalHTTP SSL/TLS Version Detection (POODLE scanner)
scanner/http/support_center_plus_directory_traversal 2014-01-28 normalManageEngine Support Center Plus Directory Traversal
scanner/http/svn_scanner normalHTTP Subversion Scanner
scanner/http/svn_wcdb_scanner normalSVN wc.db Scanner
scanner/http/sybase_easerver_traversal 2011-05-25 normalSybase Easerver 6.3 Directory Traversal
scanner/http/symantec_brightmail_ldapcreds 2015-12-17 normalSymantec Messaging Gateway 10 Exposure of Stored AD Password Vulnerability
scanner/http/symantec_brightmail_logfile 2012-11-30 normalSymantec Messaging Gateway 9.5 Log File Download Vulnerability
scanner/http/symantec_web_gateway_login normalSymantec Web Gateway Login Utility
scanner/http/titan_ftp_admin_pwd normalTitan FTP Administrative Password Disclosure
scanner/http/title normalHTTP HTML Title Tag Content Grabber
scanner/http/tomcat_enum normalApache Tomcat User Enumeration
scanner/http/tomcat_mgr_login normalTomcat Application Manager Login Utility
scanner/http/tplink_traversal_noauth normalTP-Link Wireless Lite N Access Point Directory Traversal Vulnerability
scanner/http/trace normalHTTP Cross-Site Tracing Detection
scanner/http/trace_axd normalHTTP trace.axd Content Scanner
scanner/http/typo3_bruteforce normalTypo3 Login Bruteforcer
scanner/http/vcms_login normalV-CMS Login Utility
scanner/http/verb_auth_bypass normalHTTP Verb Authentication Bypass Scanner
scanner/http/vhost_scanner normalHTTP Virtual Host Brute Force Scanner
scanner/http/wangkongbao_traversal normalWANGKONGBAO CNS-1000 and 1100 UTM Directory Traversal
scanner/http/web_vulndb normalHTTP Vuln Scanner
scanner/http/webdav_internal_ip normalHTTP WebDAV Internal IP Scanner
scanner/http/webdav_scanner normalHTTP WebDAV Scanner
scanner/http/webdav_website_content normalHTTP WebDAV Website Content Scanner
scanner/http/webpagetest_traversal 2012-07-13 normalWebPageTest Directory Traversal
scanner/http/wildfly_traversal 2014-10-22 normalWildFly Directory Traversal
scanner/http/wordpress_cp_calendar_sqli 2015-03-03 normalWordPress CP Multi-View Calendar Unauthenticated SQL Injection Scanner
scanner/http/wordpress_ghost_scanner normalWordPress XMLRPC GHOST Vulnerability Scanner
scanner/http/wordpress_login_enum normalWordPress Brute Force and User Enumeration Utility
scanner/http/wordpress_multicall_creds normalWordpress XML-RPC system.multicall Credential Collector
scanner/http/wordpress_pingback_access normalWordpress Pingback Locator
scanner/http/wordpress_scanner normalWordpress Scanner
scanner/http/wordpress_xmlrpc_login normalWordpress XML-RPC Username/Password Login Scanner
scanner/http/wp_contus_video_gallery_sqli 2015-02-24 normalWordPress Contus Video Gallery Unauthenticated SQL Injection Scanner
scanner/http/wp_dukapress_file_read normalWordPress DukaPress Plugin File Read Vulnerability
scanner/http/wp_gimedia_library_file_read normalWordPress GI-Media Library Plugin Directory Traversal Vulnerability
scanner/http/wp_mobile_pack_info_disclosure normalWordPress Mobile Pack Information Disclosure Vulnerability
scanner/http/wp_mobileedition_file_read normalWordPress Mobile Edition File Read Vulnerability
scanner/http/wp_nextgen_galley_file_read normalWordPress NextGEN Gallery Directory Read Vulnerability
scanner/http/wp_simple_backup_file_read normalWordPress Simple Backup File Read Vulnerability
scanner/http/wp_subscribe_comments_file_read normalWordPress Subscribe Comments File Read Vulnerability
scanner/http/xpath normalHTTP Blind XPATH 1.0 Injector
scanner/http/yaws_traversal 2011-11-25 normalYaws Web Server Directory Traversal
scanner/http/zabbix_login normalZabbix Server Brute Force Utility
scanner/http/zenworks_assetmanagement_fileaccess normalNovell ZENworks Asset Management 7.5 Remote File Access
scanner/http/zenworks_assetmanagement_getconfig normalNovell ZENworks Asset Management 7.5 Configuration Access
scanner/ike/cisco_ike_benigncertain 2016-09-29 normalCisco IKE Information Disclosure
scanner/imap/imap_version normalIMAP4 Banner Grabber
scanner/ip/ipidseq normalIPID Sequence Scanner
scanner/ipmi/ipmi_cipher_zero 2013-06-20 normalIPMI 2.0 Cipher Zero Authentication Bypass Scanner
scanner/ipmi/ipmi_dumphashes 2013-06-20 normalIPMI 2.0 RAKP Remote SHA1 Password Hash Retreival
scanner/ipmi/ipmi_version normalIPMI Information Discovery
scanner/jenkins/jenkins_udp_broadcast_enum normalJenkins Server Broadcast Enumeration
scanner/kademlia/server_info normalGather Kademlia Server Information
scanner/llmnr/query normalLLMNR Query
scanner/lotus/lotus_domino_hashes normalLotus Domino Password Hash Collector
scanner/lotus/lotus_domino_login normalLotus Domino Brute Force Utility
scanner/lotus/lotus_domino_version normalLotus Domino Version
scanner/mdns/query normalmDNS Query
scanner/misc/cctv_dvr_login normalCCTV DVR Login Scanning Utility
scanner/misc/clamav_control 2016-06-08 normalClamAV Remote Command Transmitter
scanner/misc/dahua_dvr_auth_bypass normalDahua DVR Auth Bypass Scanner
scanner/misc/dvr_config_disclosure normalMultiple DVR Manufacturers Configuration Disclosure
scanner/misc/easycafe_server_fileaccess normalEasyCafe Server Remote File Access
scanner/misc/ib_service_mgr_info normalBorland InterBase Services Manager Information
scanner/misc/java_rmi_server 2011-10-15 normalJava RMI Server Insecure Endpoint Code Execution Scanner
scanner/misc/oki_scanner normalOKI Printer Default Login Credential Scanner
scanner/misc/poisonivy_control_scanner normalPoison Ivy Command and Control Scanner
scanner/misc/raysharp_dvr_passwords normalRay Sharp DVR Password Retriever
scanner/misc/rosewill_rxs3211_passwords normalRosewill RXS-3211 IP Camera Password Retriever
scanner/misc/sercomm_backdoor_scanner 2013-12-31 normalSerComm Network Device Backdoor Detection
scanner/misc/sunrpc_portmapper normalSunRPC Portmap Program Enumerator
scanner/misc/zenworks_preboot_fileaccess normalNovell ZENworks Configuration Management Preboot Service Remote File Access
scanner/mongodb/mongodb_login normalMongoDB Login Utility
scanner/motorola/timbuktu_udp 2009-09-25 normalMotorola Timbuktu Service Detection
scanner/msf/msf_rpc_login normalMetasploit RPC Interface Login Utility
scanner/msf/msf_web_login normalMetasploit Web Interface Login Utility
scanner/mssql/mssql_hashdump normalMSSQL Password Hashdump
scanner/mssql/mssql_login normalMSSQL Login Utility
scanner/mssql/mssql_ping normalMSSQL Ping Utility
scanner/mssql/mssql_schemadump normalMSSQL Schema Dump
scanner/mysql/mysql_authbypass_hashdump 2012-06-09 normalMySQL Authentication Bypass Password Dump
scanner/mysql/mysql_file_enum normalMYSQL File/Directory Enumerator
scanner/mysql/mysql_hashdump normalMYSQL Password Hashdump
scanner/mysql/mysql_login normalMySQL Login Utility
scanner/mysql/mysql_schemadump normalMYSQL Schema Dump
scanner/mysql/mysql_version normalMySQL Server Version Enumeration
scanner/mysql/mysql_writable_dirs normalMYSQL Directory Write Test
scanner/natpmp/natpmp_portscan normalNAT-PMP External Port Scanner
scanner/nessus/nessus_ntp_login normalNessus NTP Login Utility
scanner/nessus/nessus_rest_login normalNessus RPC Interface Login Utility
scanner/nessus/nessus_xmlrpc_login normalNessus XMLRPC Interface Login Utility
scanner/nessus/nessus_xmlrpc_ping normalNessus XMLRPC Interface Ping Utility
scanner/netbios/nbname normalNetBIOS Information Discovery
scanner/nexpose/nexpose_api_login normalNeXpose API Interface Login Utility
scanner/nfs/nfsmount normalNFS Mount Scanner
scanner/ntp/ntp_monlist normalNTP Monitor List Scanner
scanner/ntp/ntp_nak_to_the_future normalNTP "NAK to the Future"
scanner/ntp/ntp_peer_list_dos 2014-08-25 normalNTP Mode 7 PEER_LIST DoS Scanner
scanner/ntp/ntp_peer_list_sum_dos 2014-08-25 normalNTP Mode 7 PEER_LIST_SUM DoS Scanner
scanner/ntp/ntp_readvar normalNTP Clock Variables Disclosure
scanner/ntp/ntp_req_nonce_dos 2014-08-25 normalNTP Mode 6 REQ_NONCE DRDoS Scanner
scanner/ntp/ntp_reslist_dos 2014-08-25 normalNTP Mode 7 GET_RESTRICT DRDoS Scanner
scanner/ntp/ntp_unsettrap_dos 2014-08-25 normalNTP Mode 6 UNSETTRAP DRDoS Scanner
scanner/openvas/openvas_gsad_login normalOpenVAS gsad Web Interface Login Utility
scanner/openvas/openvas_omp_login normalOpenVAS OMP Login Utility
scanner/openvas/openvas_otp_login normalOpenVAS OTP Login Utility
scanner/oracle/emc_sid normalOracle Enterprise Manager Control SID Discovery
scanner/oracle/isqlplus_login normalOracle iSQL*Plus Login Utility
scanner/oracle/isqlplus_sidbrute normalOracle iSQLPlus SID Check
scanner/oracle/oracle_hashdump normalOracle Password Hashdump
scanner/oracle/oracle_login
normalOracle RDBMS Login Utility
scanner/oracle/sid_brute normalOracle TNS Listener SID Bruteforce
scanner/oracle/sid_enum 2009-01-07 normalOracle TNS Listener SID Enumeration
scanner/oracle/spy_sid normalOracle Application Server Spy Servlet SID Enumeration
scanner/oracle/tnslsnr_version 2009-01-07 normalOracle TNS Listener Service Version Query
scanner/oracle/tnspoison_checker 2012-04-18 normalOracle TNS Listener Checker
scanner/oracle/xdb_sid normalOracle XML DB SID Discovery
scanner/oracle/xdb_sid_brute normalOracle XML DB SID Discovery via Brute Force
scanner/pcanywhere/pcanywhere_login normalPcAnywhere Login Scanner
scanner/pcanywhere/pcanywhere_tcp normalPcAnywhere TCP Service Discovery
scanner/pcanywhere/pcanywhere_udp normalPcAnywhere UDP Service Discovery
scanner/pop3/pop3_login normalPOP3 Login Utility
scanner/pop3/pop3_version normalPOP3 Banner Grabber
scanner/portmap/portmap_amp normalPortmapper Amplification Scanner
scanner/portscan/ack normalTCP ACK Firewall Scanner
scanner/portscan/ftpbounce normalFTP Bounce Port Scanner
scanner/portscan/syn normalTCP SYN Port Scanner
scanner/portscan/tcp normalTCP Port Scanner
scanner/portscan/xmas normalTCP "XMas" Port Scanner
scanner/postgres/postgres_dbname_flag_injection normalPostgreSQL Database Name Command Line Flag Injection
scanner/postgres/postgres_hashdump normalPostgres Password Hashdump
scanner/postgres/postgres_login normalPostgreSQL Login Utility
scanner/postgres/postgres_schemadump normalPostgres Schema Dump
scanner/postgres/postgres_version normalPostgreSQL Version Probe
scanner/printer/canon_iradv_pwd_extract normalCanon IR-Adv Password Extractor
scanner/printer/printer_delete_file normalPrinter File Deletion Scanner
scanner/printer/printer_download_file normalPrinter File Download Scanner
scanner/printer/printer_env_vars normalPrinter Environment Variables Scanner
scanner/printer/printer_list_dir normalPrinter Directory Listing Scanner
scanner/printer/printer_list_volumes normalPrinter Volume Listing Scanner
scanner/printer/printer_ready_message normalPrinter Ready Message Scanner
scanner/printer/printer_upload_file normalPrinter File Upload Scanner
scanner/printer/printer_version_info normalPrinter Version Information Scanner
scanner/quake/server_info normalGather Quake Server Information
scanner/rdp/ms12_020_check normalMS12-020 Microsoft Remote Desktop Checker
scanner/redis/file_upload 2015-11-11 normalRedis File Upload
scanner/redis/redis_login normalRedis Login Utility
scanner/redis/redis_server normalRedis Command Execute Scanner
scanner/rogue/rogue_recv normalRogue Gateway Detection: Receiver
scanner/rogue/rogue_send normalRogue Gateway Detection: Sender
scanner/rservices/rexec_login normalrexec Authentication Scanner
scanner/rservices/rlogin_login normalrlogin Authentication Scanner
scanner/rservices/rsh_login normalrsh Authentication Scanner
scanner/rsync/modules_list normalList Rsync Modules
scanner/sap/sap_ctc_verb_tampering_user_mgmt normalSAP CTC Service Verb Tampering User Management
scanner/sap/sap_hostctrl_getcomputersystem normalSAP Host Agent Information Disclosure
scanner/sap/sap_icf_public_info normalSAP ICF /sap/public/info Service Sensitive Information Gathering
scanner/sap/sap_icm_urlscan normalSAP URL Scanner
scanner/sap/sap_mgmt_con_abaplog normalSAP Management Console ABAP Syslog Disclosure
scanner/sap/sap_mgmt_con_brute_login normalSAP Management Console Brute Force
scanner/sap/sap_mgmt_con_extractusers normalSAP Management Console Extract Users
scanner/sap/sap_mgmt_con_getaccesspoints normalSAP Management Console Get Access Points
scanner/sap/sap_mgmt_con_getenv normalSAP Management Console getEnvironment
scanner/sap/sap_mgmt_con_getlogfiles normalSAP Management Console Get Logfile
scanner/sap/sap_mgmt_con_getprocesslist normalSAP Management Console GetProcessList
scanner/sap/sap_mgmt_con_getprocessparameter normalSAP Management Console Get Process Parameters
scanner/sap/sap_mgmt_con_instanceproperties normalSAP Management Console Instance Properties
scanner/sap/sap_mgmt_con_listlogfiles normalSAP Management Console List Logfiles
scanner/sap/sap_mgmt_con_startprofile normalSAP Management Console getStartProfile
scanner/sap/sap_mgmt_con_version normalSAP Management Console Version Detection
scanner/sap/sap_router_info_request normalSAPRouter Admin Request
scanner/sap/sap_router_portscanner normalSAPRouter Port Scanner
scanner/sap/sap_service_discovery normalSAP Service Discovery
scanner/sap/sap_smb_relay normalSAP SMB Relay Abuse
scanner/sap/sap_soap_bapi_user_create1 normalSAP /sap/bc/soap/rfc SOAP Service BAPI_USER_CREATE1 Function User Creation
scanner/sap/sap_soap_rfc_brute_login normalSAP SOAP Service RFC_PING Login Brute Forcer
scanner/sap/sap_soap_rfc_dbmcli_sxpg_call_system_command_exec normalSAP /sap/bc/soap/rfc SOAP Service SXPG_CALL_SYSTEM Function Command Injection
scanner/sap/sap_soap_rfc_dbmcli_sxpg_command_exec normalSAP /sap/bc/soap/rfc SOAP Service SXPG_COMMAND_EXEC Function Command Injection
scanner/sap/sap_soap_rfc_eps_get_directory_listing normalSAP SOAP RFC EPS_GET_DIRECTORY_LISTING Directories Information Disclosure
scanner/sap/sap_soap_rfc_pfl_check_os_file_existence normalSAP SOAP RFC PFL_CHECK_OS_FILE_EXISTENCE File Existence Check
scanner/sap/sap_soap_rfc_ping normalSAP /sap/bc/soap/rfc SOAP Service RFC_PING Function Service Discovery
scanner/sap/sap_soap_rfc_read_table normalSAP /sap/bc/soap/rfc SOAP Service RFC_READ_TABLE Function Dump Data
scanner/sap/sap_soap_rfc_rzl_read_dir normalSAP SOAP RFC RZL_READ_DIR_LOCAL Directory Contents Listing
scanner/sap/sap_soap_rfc_susr_rfc_user_interface normalSAP /sap/bc/soap/rfc SOAP Service SUSR_RFC_USER_INTERFACE Function User Creation
scanner/sap/sap_soap_rfc_sxpg_call_system_exec normalSAP /sap/bc/soap/rfc SOAP Service SXPG_CALL_SYSTEM Function Command Execution
scanner/sap/sap_soap_rfc_sxpg_command_exec normalSAP SOAP RFC SXPG_COMMAND_EXECUTE
scanner/sap/sap_soap_rfc_system_info normalSAP /sap/bc/soap/rfc SOAP Service RFC_SYSTEM_INFO Function Sensitive Information Gathering
scanner/sap/sap_soap_th_saprel_disclosure normalSAP /sap/bc/soap/rfc SOAP Service TH_SAPREL Function Information Disclosure
scanner/sap/sap_web_gui_brute_login normalSAP Web GUI Login Brute Forcer
scanner/scada/digi_addp_reboot normalDigi ADDP Remote Reboot Initiator
scanner/scada/digi_addp_version normalDigi ADDP Information Discovery
scanner/scada/digi_realport_serialport_scan normalDigi RealPort Serial Server Port Scanner
scanner/scada/digi_realport_version normalDigi RealPort Serial Server Version
scanner/scada/indusoft_ntwebserver_fileaccess normalIndusoft WebStudio NTWebServer Remote File Access
scanner/scada/koyo_login 2012-01-19 normalKoyo DirectLogic PLC Password Brute Force Utility
scanner/scada/modbus_findunitid 2012-10-28 normalModbus Unit ID and Station ID Enumerator
scanner/scada/modbusclient normalModbus Client Utility
scanner/scada/modbusdetect 2011-11-01 normalModbus Version Scanner
scanner/scada/profinet_siemens normalSiemens Profinet Scanner
scanner/scada/sielco_winlog_fileaccess normalSielco Sistemi Winlog Remote File Access
scanner/sip/enumerator normalSIP Username Enumerator (UDP)
scanner/sip/enumerator_tcp normalSIP Username Enumerator (TCP)
scanner/sip/options normalSIP Endpoint Scanner (UDP)
scanner/sip/options_tcp normalSIP Endpoint Scanner (TCP)
scanner/sip/sipdroid_ext_enum normalSIPDroid Extension Grabber
scanner/smb/pipe_auditor normalSMB Session Pipe Auditor
scanner/smb/pipe_dcerpc_auditor normalSMB Session Pipe DCERPC Auditor
scanner/smb/psexec_loggedin_users normalMicrosoft Windows Authenticated Logged In Users Enumeration
scanner/smb/smb2 normalSMB 2.0 Protocol Detection
scanner/smb/smb_enum_gpp normalSMB Group Policy Preference Saved Passwords Enumeration
scanner/smb/smb_enumshares normalSMB Share Enumeration
scanner/smb/smb_enumusers normalSMB User Enumeration (SAM EnumUsers)
scanner/smb/smb_enumusers_domain normalSMB Domain User Enumeration
scanner/smb/smb_login normalSMB Login Check Scanner
scanner/smb/smb_lookupsid normalSMB SID User Enumeration (LookupSid)
scanner/smb/smb_uninit_cred normalSamba _netr_ServerPasswordSet Uninitialized Credential State
scanner/smb/smb_version normalSMB Version Detection
scanner/smtp/smtp_enum normalSMTP User Enumeration Utility
scanner/smtp/smtp_ntlm_domain normalSMTP NTLM Domain Extraction
scanner/smtp/smtp_relay normalSMTP Open Relay Detection
scanner/smtp/smtp_version normalSMTP Banner Grabber
scanner/snmp/aix_version normalAIX SNMP Scanner Auxiliary Module
scanner/snmp/arris_dg950 normalArris DG950A Cable Modem Wifi Enumeration
scanner/snmp/brocade_enumhash normalBrocade Password Hash Enumeration
scanner/snmp/cisco_config_tftp normalCisco IOS SNMP Configuration Grabber (TFTP)
scanner/snmp/cisco_upload_file normalCisco IOS SNMP File Upload (TFTP)
scanner/snmp/netopia_enum normalNetopia 3347 Cable Modem Wifi Enumeration
scanner/snmp/sbg6580_enum normalARRIS / Motorola SBG6580 Cable Modem SNMP Enumeration Module
scanner/snmp/snmp_enum normalSNMP Enumeration Module
scanner/snmp/snmp_enum_hp_laserjet normalHP LaserJet Printer SNMP Enumeration
scanner/snmp/snmp_enumshares normalSNMP Windows SMB Share Enumeration
scanner/snmp/snmp_enumusers normalSNMP Windows Username Enumeration
scanner/snmp/snmp_login normalSNMP Community Login Scanner
scanner/snmp/snmp_set normalSNMP Set Module
scanner/snmp/ubee_ddw3611 normalUbee DDW3611b Cable Modem Wifi Enumeration
scanner/snmp/xerox_workcentre_enumusers normalXerox WorkCentre User Enumeration (SNMP)
scanner/ssh/apache_karaf_command_execution 2016-02-09 normalApache Karaf Default Credentials Command Execution
scanner/ssh/cerberus_sftp_enumusers 2014-05-27 normalCerberus FTP Server SFTP Username Enumeration
scanner/ssh/detect_kippo normalKippo SSH Honeypot Detector
scanner/ssh/fortinet_backdoor 2016-01-09 normalFortinet SSH Backdoor Scanner
scanner/ssh/juniper_backdoor 2015-12-20 normalJuniper SSH Backdoor Scanner
scanner/ssh/karaf_login normalApache Karaf Login Utility
scanner/ssh/ssh_enumusers normalSSH Username Enumeration
scanner/ssh/ssh_identify_pubkeys normalSSH Public Key Acceptance Scanner
scanner/ssh/ssh_login normalSSH Login Check Scanner
scanner/ssh/ssh_login_pubkey normalSSH Public Key Login Scanner
scanner/ssh/ssh_version normalSSH Version Scanner
scanner/ssl/openssl_ccs 2014-06-05 normalOpenSSL Server-Side ChangeCipherSpec Injection Scanner
scanner/ssl/openssl_heartbleed 2014-04-07 normalOpenSSL Heartbeat (Heartbleed) Information Leak
scanner/steam/server_info normalGather Steam Server Information
scanner/telephony/wardial normalWardialer
scanner/telnet/brocade_enable_login normalBrocade Enable Login Check Scanner
scanner/telnet/lantronix_telnet_password normalLantronix Telnet Password Recovery
scanner/telnet/lantronix_telnet_version normalLantronix Telnet Service Banner Detection
scanner/telnet/telnet_encrypt_overflow normalTelnet Service Encryption Key ID Overflow Detection
scanner/telnet/telnet_login normalTelnet Login Check Scanner
scanner/telnet/telnet_ruggedcom normalRuggedCom Telnet Password Generator
scanner/telnet/telnet_version normalTelnet Service Banner Detection
scanner/tftp/ipswitch_whatsupgold_tftp 2011-12-12 normalIpSwitch WhatsUp Gold TFTP Directory Traversal
scanner/tftp/netdecision_tftp 2009-05-16 normalNetDecision 4.2 TFTP Directory Traversal
scanner/tftp/tftpbrute normalTFTP Brute Forcer
scanner/udp/udp_amplification normalUDP Amplification Scanner
scanner/udp_scanner_template 2014-03-15 normalUDP Scanner Example
scanner/upnp/ssdp_amp normalSSDP ssdp:all M-SEARCH Amplification Scanner
scanner/upnp/ssdp_msearch normalUPnP SSDP M-SEARCH Information Discovery
scanner/vmware/esx_fingerprint normalVMWare ESX/ESXi Fingerprint Scanner
scanner/vmware/vmauthd_login normalVMWare Authentication Daemon Login Scanner
scanner/vmware/vmauthd_version normalVMWare Authentication Daemon Version Scanner
scanner/vmware/vmware_enum_permissions normalVMWare Enumerate Permissions
scanner/vmware/vmware_enum_sessions normalVMWare Enumerate Active Sessions
scanner/vmware/vmware_enum_users normalVMWare Enumerate User Accounts
scanner/vmware/vmware_enum_vms normalVMWare Enumerate Virtual Machines
scanner/vmware/vmware_host_details normalVMWare Enumerate Host Details
scanner/vmware/vmware_http_login normalVMWare Web Login Scanner
scanner/vmware/vmware_screenshot_stealer normalVMWare Screenshot Stealer
scanner/vmware/vmware_server_dir_trav normalVMware Server Directory Traversal Vulnerability
scanner/vmware/vmware_update_manager_traversal 2011-11-21 normalVMWare Update Manager 4 Directory Traversal
scanner/vnc/vnc_login normalVNC Authentication Scanner
scanner/vnc/vnc_none_auth normalVNC Authentication None Detection
scanner/voice/recorder normalTelephone Line Voice Scanner
scanner/vxworks/wdbrpc_bootline normalVxWorks WDB Agent Boot Parameter Scanner
scanner/vxworks/wdbrpc_version normalVxWorks WDB Agent Version Scanner
scanner/winrm/winrm_auth_methods normalWinRM Authentication Method Detection
scanner/winrm/winrm_cmd normalWinRM Command Runner
scanner/winrm/winrm_login normalWinRM Login Utility
scanner/winrm/winrm_wql normalWinRM WQL Query Runner
scanner/x11/open_x11 normalX11 No-Auth Scanner
server/android_browsable_msf_launch normalAndroid Meterpreter Browsable Launcher
server/android_mercury_parseuri normalAndroid Mercury Browser Intent URI Scheme and Directory Traversal Vulnerability
server/browser_autopwn normalHTTP Client Automatic Exploiter
server/browser_autopwn2 2015-07-05 normalHTTP Client Automatic Exploiter 2 (Browser Autopwn)
server/capture/drda normalAuthentication Capture: DRDA (DB2, Informix, Derby)
server/capture/ftp normalAuthentication Capture: FTP
server/capture/http normalAuthentication Capture: HTTP
server/capture/http_basic normalHTTP Client Basic Authentication Credential Collector
server/capture/http_javascript_keylogger normalCapture: HTTP JavaScript Keylogger
server/capture/http_ntlm normalHTTP Client MS Credential Catcher
server/capture/imap normalAuthentication Capture: IMAP
server/capture/mssql normalAuthentication Capture: MSSQL
server/capture/mysql normalAuthentication Capture: MySQL
server/capture/pop3 normalAuthentication Capture: POP3
server/capture/postgresql normalAuthentication Capture: PostgreSQL
server/capture/printjob_capture normalPrintjob Capture Service
server/capture/sip normalAuthentication Capture: SIP
server/capture/smb normalAuthentication Capture: SMB
server/capture/smtp normalAuthentication Capture: SMTP
server/capture/telnet normalAuthentication Capture: Telnet
server/capture/vnc normalAuthentication Capture: VNC
server/dhclient_bash_env 2014-09-24 normalDHCP Client Bash Environment Variable Code Injection (Shellshock)
server/dhcp normalDHCP Server
server/dns/spoofhelper normalDNS Spoofing Helper Service
server/fakedns normalFake DNS Service
server/ftp normalFTP File Server
server/http_ntlmrelay normalHTTP Client MS Credential Relayer
server/icmp_exfil normalICMP Exfiltration Service
server/jsse_skiptls_mitm_proxy 2015-01-20 normalJava Secure Socket Extension (JSSE) SKIP-TLS MITM Proxy
server/ms15_134_mcl_leak 2015-12-08 normalMS15-134 Microsoft Windows Media Center MCL Information Disclosure
server/netbios_spoof_nat 2016-06-14 normalNetBIOS Response "BadTunnel" Brute Force Spoof (NAT Tunnel)
server/openssl_altchainsforgery_mitm_proxy 2015-07-09 normalOpenSSL Alternative Chains Certificate Forgery MITM Proxy
server/openssl_heartbeat_client_memory 2014-04-07 normalOpenSSL Heartbeat (Heartbleed) Client Memory Exposure
server/pxeexploit normalPXE Boot Exploit Server
server/regsvr32_command_delivery_server normalRegsvr32.exe (.sct) Command Delivery Server
server/socks4a normalSocks4a Proxy Server
server/socks_unc normalSOCKS Proxy UNC Path Redirection
server/tftp normalTFTP File Server
server/tnftp_savefile 2014-10-28 normaltnftp "savefile" Arbitrary Command Execution
server/webkit_xslt_dropper normalCross Platform Webkit File Dropper
server/wget_symlink_file_write 2014-10-27 normalGNU Wget FTP Symlink Arbitrary Filesystem Access
server/wpad normalWPAD.dat File Server
sniffer/psnuffle normalpSnuffle Packet Sniffer
spoof/arp/arp_poisoning 1999-12-22 normalARP Spoof
spoof/cisco/cdp normalSend Cisco Discovery Protocol (CDP) Packets
spoof/cisco/dtp normalForge Cisco DTP Packets
spoof/dns/bailiwicked_domain 2008-07-21 normalDNS BailiWicked Domain Attack
spoof/dns/bailiwicked_host 2008-07-21 normalDNS BailiWicked Host Attack
spoof/dns/compare_results 2008-07-21 normalDNS Lookup Result Comparison
spoof/llmnr/llmnr_response normalLLMNR Spoofer
spoof/nbns/nbns_response normalNetBIOS Name Service Spoofer
spoof/replay/pcap_replay normalPcap Replay Utility
sqli/oracle/dbms_cdc_ipublish 2008-10-22 normalOracle DB SQL Injection via SYS.DBMS_CDC_IPUBLISH.ALTER_HOTLOG_INTERNAL_CSOURCE
sqli/oracle/dbms_cdc_publish 2008-10-22 normalOracle DB SQL Injection via SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCE
sqli/oracle/dbms_cdc_publish2 2010-04-26 normalOracle DB SQL Injection via SYS.DBMS_CDC_PUBLISH.DROP_CHANGE_SOURCE
sqli/oracle/dbms_cdc_publish3 2010-10-13 normalOracle DB SQL Injection via SYS.DBMS_CDC_PUBLISH.CREATE_CHANGE_SET
sqli/oracle/dbms_cdc_subscribe_activate_subscription 2005-04-18 normalOracle DB SQL Injection via SYS.DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION
sqli/oracle/dbms_export_extension 2006-04-26 normalOracle DB SQL Injection via DBMS_EXPORT_EXTENSION
sqli/oracle/dbms_metadata_get_granted_xml 2008-01-05 normalOracle DB SQL Injection via SYS.DBMS_METADATA.GET_GRANTED_XML
sqli/oracle/dbms_metadata_get_xml 2008-01-05 normalOracle DB SQL Injection via SYS.DBMS_METADATA.GET_XML
sqli/oracle/dbms_metadata_open 2008-01-05 normalOracle DB SQL Injection via SYS.DBMS_METADATA.OPEN
sqli/oracle/droptable_trigger 2009-01-13 normalOracle DB SQL Injection in MDSYS.SDO_TOPO_DROP_FTBL Trigger
sqli/oracle/jvm_os_code_10g 2010-02-01 normalOracle DB 10gR2, 11gR1/R2 DBMS_JVM_EXP_PERMS OS Command Execution
sqli/oracle/jvm_os_code_11g 2010-02-01 normalOracle DB 11g R1/R2 DBMS_JVM_EXP_PERMS OS Code Execution
sqli/oracle/lt_compressworkspace 2008-10-13 normalOracle DB SQL Injection via SYS.LT.COMPRESSWORKSPACE
sqli/oracle/lt_findricset_cursor 2007-10-17 normalOracle DB SQL Injection via SYS.LT.FINDRICSET Evil Cursor Method
sqli/oracle/lt_mergeworkspace 2008-10-22 normalOracle DB SQL Injection via SYS.LT.MERGEWORKSPACE
sqli/oracle/lt_removeworkspace 2008-10-13 normalOracle DB SQL Injection via SYS.LT.REMOVEWORKSPACE
sqli/oracle/lt_rollbackworkspace 2009-05-04 normalOracle DB SQL Injection via SYS.LT.ROLLBACKWORKSPACE
voip/asterisk_login normalAsterisk Manager Login Utility
voip/cisco_cucdm_call_forward normalViproy CUCDM IP Phone XML Services - Call Forwarding Tool
voip/cisco_cucdm_speed_dials normalViproy CUCDM IP Phone XML Services - Speed Dial Attack Tool
voip/sip_deregister normalSIP Deregister Extension
voip/sip_invite_spoof normalSIP Invite Spoof
voip/telisca_ips_lock_control 2015-12-17 normalTelisca IPS Lock Cisco IP Phone Control
vsploit/malware/dns/dns_mariposa normalVSploit Mariposa DNS Query Module
vsploit/malware/dns/dns_query normalVSploit DNS Beaconing Emulation
vsploit/malware/dns/dns_zeus normalVSploit Zeus DNS Query Module
vsploit/pii/email_pii normalVSploit Email PII
vsploit/pii/web_pii normalVSploit Web PII
msf >
auxiliary模块命名规则
操作系统/类型/模块名称
例如:scanner/discovery/arp_sweep
等级代表好用程度
描述就是对auxiliary模块的简介
查看auxiliary下的某个模块的详细信息 : info 模块名
info scanner/discovery/arp_sweep
msf > info scanner/discovery/arp_sweep
Name: ARP Sweep Local Network Discovery
Module: auxiliary/scanner/discovery/arp_sweep
License: Metasploit Framework License (BSD)
Rank: Normal
Provided by:
belch
Basic options:
Name Current SettingRequiredDescription
---- ----------------------------------
INTERFACE no The name of the interface
RHOSTS yes The target address range or CIDR identifier
SHOST no Source IP Address
SMAC no Source MAC Address
THREADS 1 yes The number of concurrent threads
TIMEOUT 5 yes The number of seconds to wait for new data
Description:
Enumerate alive Hosts in local network using ARP requests.
msf >
root@kali:~# msfconsole
....
msf > use auxiliary/scanner/discovery/arp_sweep
msf auxiliary(arp_sweep) > show options
Module options (auxiliary/scanner/discovery/arp_sweep):
Name Current SettingRequiredDescription
---- ----------------------------------
INTERFACE no The name of the interface
RHOSTS yes The target address range or CIDR identifier
SHOST no Source IP Address
SMAC no Source MAC Address
THREADS 1 yes The number of concurrent threads
TIMEOUT 5 yes The number of seconds to wait for new data
msf auxiliary(arp_sweep) >
设置好RHOSTS和THREADS参数后,输入run命令启动扫描器,如下图所示。
msf auxiliary(arp_sweep) > set RHOSTS 202.193.58.13/24
RHOSTS => 202.193.58.13/24
msf auxiliary(arp_sweep) > set THREADS 50
THREADS => 50
msf auxiliary(arp_sweep) > run
[*] 202.193.58.7 appears to be up (UNKNOWN).
[*] 202.193.58.7 appears to be up (UNKNOWN).
[*] 202.193.58.9 appears to be up (UNKNOWN).
[*] 202.193.58.9 appears to be up (UNKNOWN).
[*] 202.193.58.11 appears to be up (UNKNOWN).
[*] 202.193.58.12 appears to be up (UNKNOWN).
[*] 202.193.58.13 appears to be up (UNKNOWN).
[*] 202.193.58.13 appears to be up (ASUSTek COMPUTER INC.).
[*] 202.193.58.14 appears to be up (UNKNOWN).
[*] 202.193.58.19 appears to be up (UNKNOWN).
[*] 202.193.58.20 appears to be up (ELITEGROUP COMPUTER SYSTEMS CO., LTD.).
[*] 202.193.58.23 appears to be up (UNKNOWN).
[*] 202.193.58.26 appears to be up (COMPAL INFORMATION(KUNSHAN)CO.,LTD).
[*] 202.193.58.33 appears to be up (UNKNOWN).
[*] 202.193.58.47 appears to be up (TP-LINK TECHNOLOGIES CO., LTD.).
[*] 202.193.58.48 appears to be up (UNKNOWN).
[*] 202.193.58.53 appears to be up (UNKNOWN).
[*] 202.193.58.55 appears to be up (UNKNOWN).
[*] 202.193.58.58 appears to be up (UNKNOWN).
[*] 202.193.58.60 appears to be up (D-Link International).
[*] 202.193.58.7 appears to be up (UNKNOWN).
[*] 202.193.58.69 appears to be up (COMPAL INFORMATION (KUNSHAN) CO., LTD).
[*] 202.193.58.73 appears to be up (ELITEGROUP COMPUTER SYSTEMS CO., LTD.).
[*] 202.193.58.76 appears to be up (UNKNOWN).
[*] 202.193.58.82 appears to be up (UNKNOWN).
[*] 202.193.58.83 appears to be up (Armorlink shanghai Co. Ltd).
[*] 202.193.58.85 appears to be up (QUANTA COMPUTER INC.).
[*] 202.193.58.7 appears to be up (UNKNOWN).
[*] 202.193.58.98 appears to be up (Advantech Technology (CHINA) Co., Ltd.).
[*] 202.193.59.254 appears to be up (FUJIAN STAR-NET COMMUNICATION CO.,LTD).
[*] 202.193.58.109 appears to be up (UNKNOWN).
[*] 202.193.58.111 appears to be up (UNKNOWN).
[*] 202.193.58.7 appears to be up (UNKNOWN).
[*] 202.193.58.148 appears to be up (UNKNOWN).
[*] 202.193.58.155 appears to be up (Jetway Information Co., Ltd.).
[*] 202.193.58.13 appears to be up (UNKNOWN).
[*] 202.193.58.162 appears to be up (UNKNOWN).
[*] 202.193.58.165 appears to be up (Tenda Technology Co., Ltd.).
[*] 202.193.58.171 appears to be up (UNKNOWN).
[*] 202.193.58.179 appears to be up (UNKNOWN).
[*] 202.193.58.180 appears to be up (Dell Inc).
[*] 202.193.58.13 appears to be up (UNKNOWN).
[*] 202.193.59.254 appears to be up (FUJIAN STAR-NET COMMUNICATION CO.,LTD).
[*] 202.193.58.197 appears to be up (UNKNOWN).
[*] 202.193.58.208 appears to be up (UNKNOWN).
[*] 202.193.58.215 appears to be up (Universal Global Scientific Industrial Co., Ltd.).
[*] 202.193.58.13 appears to be up (UNKNOWN).
[*] 202.193.58.220 appears to be up (UNKNOWN).
[*] 202.193.58.224 appears to be up (UNKNOWN).
[*] 202.193.58.230 appears to be up (ELITEGROUP COMPUTER SYSTEMS CO., LTD.).
[*] 202.193.58.231 appears to be up (UNKNOWN).
[*] 202.193.58.236 appears to be up (G-PRO COMPUTER).
[*] 202.193.58.242 appears to be up (UNKNOWN).
[*] Scanned 256 of 256 hosts (100% complete)
[*] Auxiliary module execution completed
msf auxiliary(arp_sweep) >
页:
[1]