mzet-/Nmap-for-Pen-Testers

This Nmap fork contains additional (curated and verified) NSE scripts useful during pen tester's day to day duties.

Currently scripts for detecting following vulnerabilities are added:

Multiple memory corruptions in OpenSLP as used in VMware ESXi

IDs: CVE-2019-5544, CVE-2020-3992, CVE-2021-21974

Script: vmware-svrloc-vulns.nse

Vulnerability details:

Pull request in upstream: https://github.com/nmap/nmap/pull/2266

Script author: mzet

Deployment:

cd nmap/
wget https://raw.githubusercontent.com/mzet-/Nmap-for-Pen-Testers/master/scripts/vmware-svrloc-vulns.nse -O scripts/vmware-svrloc-vulns.nse
wget https://raw.githubusercontent.com/mzet-/Nmap-for-Pen-Testers/master/nselib/srvloc.lua -O nselib/srvloc.lua
./nmap --script-update

Cisco SIET

https://github.com/Sab0tag3d/SIETpy3/blob/main/cisco-siet.nse

SMBGhost (CVE-2020-0796)

https://github.com/psc4re/NSE-scripts/blob/master/cve-2020-0796.nse

About

nmap - unofficial git fork

https://svn.nmap.org/

Other

Languages

Language:Lua 32.4%Language:C 32.2%Language:C++ 20.0%Language:Python 5.5%Language:Shell 3.4%Language:Makefile 1.3%Language:Roff 1.3%Language:M4 0.7%Language:Assembly 0.6%Language:CMake 0.6%Language:Perl 0.4%Language:Ada 0.4%Language:C# 0.2%Language:Pascal 0.2%Language:RPGLE 0.2%Language:HTML 0.2%Language:DIGITAL Command Language 0.1%Language:NSIS 0.1%Language:Yacc 0.1%Language:Clean 0.1%Language:Lex 0.1%Language:Batchfile 0.0%Language:Java 0.0%Language:SAS 0.0%Language:Objective-C 0.0%Language:Module Management System 0.0%Language:Awk 0.0%