Nmap Development mailing list archives
Re: http-methods.nse implementation
From: Rob Nicholls <robert () robnicholls co uk>
Date: Tue, 08 Mar 2011 15:10:34 +0000
As a slight aside, I have a feeling that the PUT method is currently broken during the "retest". The script should send some content with the PUT request to the server (e.g. the string "Nmap", we probably need to specify a proper filename too), but looking at the code I don't think it does so I expect the web server will always return an error code to the script (instead of a 200 OK).
Rob On Tue, 8 Mar 2011 16:59:49 +0200, Toni Ruottu wrote:
The biggest problems with http servers is that they are really dynamic. Every setting could change based on the path name you are accessing, or the dns name you are using. I think it is still a bit unclear how far nmap should push with http scanning. Some httpscanners will probably always perform a better job. Even with them theamount of results may be overwhelming, and finding out what is interesting may be hard.On Tue, Mar 8, 2011 at 3:57 PM, Vlatko Kosturjak <kost () linux hr> wrote:On 03/08/2011 02:49 PM, Rob Nicholls wrote:On Tue, 8 Mar 2011 15:33:48 +0200, Josh Amishav-Zlatin wrote:Would it make more sense for thescript to have a base list of methods that it checks for regardless of whether OPTIONS is enabled or not and then appends that list based onthe results of an OPTIONS request?I'd prefer not to trust OPTIONS at all, and perhaps rename the existing option or add something like http-methods.force or http-methods.thoroughto test a long hardcoded base list of methods like you suggest. Thecurrent "retest" option doesn't really retest the methods, it simply performs a more thorough test based on the original OPTIONS response(which, as you point out, could be inaccurate).I think we discussed this already some time ago: http://seclists.org/nmap-dev/2010/q1/618 ...and I remember, decision was to have it like this. And in case you're interested into script which does all tricks mentioned, you can find Perl script on github: https://github.com/kost/http-get-methods Kost _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- http-methods.nse implementation Josh Amishav-Zlatin (Mar 08)
- Re: http-methods.nse implementation Rob Nicholls (Mar 08)
- Re: http-methods.nse implementation Vlatko Kosturjak (Mar 08)
- Re: http-methods.nse implementation Toni Ruottu (Mar 08)
- Re: http-methods.nse implementation Rob Nicholls (Mar 08)
- Re: http-methods.nse implementation Josh Amishav-Zlatin (Mar 08)
- Re: http-methods.nse implementation Vlatko Kosturjak (Mar 08)
- Re: http-methods.nse implementation Rob Nicholls (Mar 08)