Daniel Miller ✝ Profile picture
Husband. Father. Nmap & Npcap developer. Pedant. Nerd. printf'%c'x25,map{--$_}unpack('c*',"Kvtu!bopuifs!Qfsm!ibdlfs-");
Jan 9, 2018 19 tweets 13 min read
#Nmap comes with 586 #NSE scripts. 148 of them are default (-sC) or version (-sV) scripts. The rest (438) have to be invoked directly or by category, so many folks don't use them. Here are my top 18 NSE scripts you should run in 2018: #DiscoveringNSE #DiscoveringNSE 1/18: Fingerprint 100s of web apps and embedded devices with http-enum. Got Nikto? http-enum uses that fingerprint file, too. nmap.org/nsedoc/scripts… Found a device with a web interface? Check for default creds with http-default-accounts. nmap.org/nsedoc/scripts…