Index: docs/scripting.xml
===================================================================
--- docs/scripting.xml (revision 27435)
+++ docs/scripting.xml (working copy)
@@ -632,6 +632,9 @@
all makes every script in Nmap's script database
eligible to run. The all argument should be used with caution as NSE may contain dangerous scripts including exploits, brute force authentication crackers, and denial of service attacks.
+
+It is also possible to prefix each element in the list with a + character. Doing so has the effect of "forcing" the scripts chosen by the following expression. If you want to run a script or scripts against a service which is running on an uncommon port at the target host, you would normally have to run a service version () in order for Nmap to identify the service by name, thereby matching the script's portrules. Using +, you can skip the service versioning, as the portrules of the selected scripts are ignored. This option basically assumes that you as a user already have identified the targeted service.
+
File and directory names may be relative or absolute. Absolute names are
@@ -1056,6 +1059,18 @@
scripts in the safe category.
+
+ nmap -p 4407 --script +mysql-audit --script-args "mysql-audit.username='root',mysql-audit.password='foobar',mysql-audit.filename='nselib/data/mysql-cis.audit'" example.com
+
+ Execute the mysql-audit script against target where the mysql service is exposed at an uncommon port.
+
+
+
+ nmap -p 5949 --script +"default and http-*" example.com
+
+ Execute all http-targeted scripts which are in the default category against the target and ignore the portrules which would otherwise not trigger on the specified port
+
+