Nmap: retrieve http login scheme

From OnnoWiki
Jump to navigation Jump to search

Sumber: https://nmap.org/nsedoc/scripts/http-auth.html

File http-auth

Script types: portrule
Categories: default, auth, safe
Download: http://nmap.org/svn/scripts/http-auth.nse

Penggunaan

Retrieves the authentication scheme and realm of a web service that requires authentication.


Contoh Penggunaan

nmap --script http-auth [--script-args http-auth.path=/login] -p80 <host>
nmap --script http-auth --script-args http-auth.path=/login.asp -p80 192.168.0.223

Contoh Output

PORT   STATE SERVICE REASON
80/tcp open  http    syn-ack
| http-auth:
| HTTP/1.1 401 Unauthorized
|   Negotiate
|   NTLM
|   Digest charset=utf-8 nonce=+Upgraded+v1e4e256b4afb7f89be014e...968ccd60affb7c qop=auth algorithm=MD5-sess realm=example.com
|_  Basic realm=example.com








Referensi

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=Nmap:_retrieve_http_login_scheme&oldid=45589"