Let's have a look at what are NMAP Script Engine (NSE)
Nmap can be used for vulnerability assessment using NSE (Nmap Scripting Engine).Penetration testers uses Nmap's most powerful and flexible features, which allows them to to write their own scripts and automate various tasks.
Now let's move on to how to use NSE scripts for exploiting any network vulnerabilities.
Step 1: Update the Nmap scripts database.
Before jumping in to finding vulnerabilities using Nmap we must need to update the database of scripts, so newer scripts will be added on our database.
sudo nmap --script-updatedb
Step 2: Running a script.
Now we are ready to scan any target for vulnerabilities. Well we can use following command to run all vulnerability scanning scripts against a target.
nmap -sV --script vuln <target>
When we need to run all the scripts against single target we can use following command:
nmap -sV --script all <target>
Comentarios