Nmap: cek http login form

From OnnoWiki
Jump to navigation Jump to search

Sumber: https://nmap.org/nsedoc/scripts/http-auth-finder.html


File http-auth-finder

Script types: portrule
Categories: discovery, safe
Download: http://nmap.org/svn/scripts/http-auth-finder.nse

Penggunaan

Spider situs web untuk menemukan halaman web yang memerlukan otentikasi berbasis form atau HTTP. Hasil dikembalikan dalam sebuah tabel dengan masing-masing url dan metode terdeteksi.


Contoh Pemakaian

nmap -p 80 --script http-auth-finder.nse 192.168.0.223
nmap -p 80 --script http-auth-finder.nse 192.168.0.221


Contoh Output

Starting Nmap 6.49BETA4 ( https://nmap.org ) at 2016-02-11 06:46 WIB
Nmap scan report for 192.168.0.223
Host is up (0.018s latency).
PORT   STATE SERVICE
80/tcp open  http
| http-auth-finder: 
| Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=192.168.0.223
|   url                             method
|   http://192.168.0.223/login.asp  FORM
|_  http://192.168.0.223/login.asp  FORM
MAC Address: D0:04:92:19:CC:38 (Fiberhome Telecommunication Technologies Co.)

Nmap done: 1 IP address (1 host up) scanned in 14.55 seconds

Starting Nmap 6.49BETA4 ( https://nmap.org ) at 2016-02-11 06:47 WIB
Nmap scan report for 192.168.0.221
Host is up (0.016s latency).
PORT   STATE SERVICE
80/tcp open  http
| http-auth-finder: 
| Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=192.168.0.221
|   url                                                                      method
|   http://192.168.0.221/login.lua                                           FORM
|   http://192.168.0.221/login.lua                                           FORM
|_  http://192.168.0.221/login.lua?page=/home/home.lua&sid=0000000000000000  FORM
MAC Address: 24:65:11:B4:73:E7 (AVM GmbH)

Nmap done: 1 IP address (1 host up) scanned in 18.66 seconds


Referensi

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=Nmap:_cek_http_login_form&oldid=45587"