Reporting vulnerability checks performed during a scan

Nmap can be turned into a vulnerability scanner by using NSE scripts. The library vuln manages and unifies the output of the vulnerability checks performed by the Nmap Scripting Engine.

This recipe will show you how to make Nmap report the vulnerability checks that are performed.

How to do it...

Launch the NSE scripts in the vuln category against your target, by using the following command:

nmap -sV --script vuln <target>

If you are lucky, you will see a vulnerability report:

PORT     STATE SERVICE REASON
306/tcp open  mysql   syn-ack
 mysql-vuln-cve2012-2122:
   VULNERABLE:
   Authentication bypass in MySQL servers.
     State: VULNERABLE
     IDs:  CVE:CVE-2012-2122
     Description:
 When a user connects to MariaDB/MySQL, ...

Get Nmap 6: Network Exploration and Security Auditing Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Nmap 6: Network Exploration and Security Auditing Cookbook by Paulino Calderon Pale

Reporting vulnerability checks performed during a scan

How to do it...

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly