Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Scanning for WebDAV vulns
From: Ron <ron () skullsecurity net>
Date: Tue, 19 May 2009 19:54:13 -0500

Hi all,

I've implemented an Nmap script based on Metasploit's auxiliary module
that checks servers for the WebDAV vulnerability by bruteforcing for a
retricted folder name and trying to get access. I've checked it in to
the Nmap trunk, so feel free to download/compile/run it.

I've written a blog that has a lot more detail about how to
download/compile/run it, as well as what the script does and how it
works. Check it out:
http://www.skullsecurity.org/blog/?p=271

Fyodor updated the NSEDoc documentation, have a look here:
http://nmap.org/nsedoc/scripts/http-iis-webdav-vuln.html

Let me know what you think!

-- 
Ron Bowes
http://www.skullsecurity.org/

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault