{"id":28,"date":"2022-03-26T15:35:00","date_gmt":"2022-03-26T14:35:00","guid":{"rendered":"https:\/\/blubb.fish\/?p=28"},"modified":"2022-03-23T19:23:23","modified_gmt":"2022-03-23T18:23:23","slug":"nmap-vulnerability-scan-nmap-vulners","status":"publish","type":"post","link":"https:\/\/blubb.fish\/index.php\/2022\/03\/26\/nmap-vulnerability-scan-nmap-vulners\/","title":{"rendered":"nmap vulnerability scan (Nmap-vulners)"},"content":{"rendered":"\n

Another Vulnerability scanner for nmap<\/p>\n\n\n\n

Install:<\/p>\n\n\n\n

Clone from git to nmap scripts folder<\/p>\n\n\n\n

cd \/usr\/share\/nmap\/scripts\/\ngit clone https:\/\/github.com\/vulnersCom\/nmap-vulners.git<\/code><\/pre>\n\n\n\n
Usage:<\/p>\n\n\n\n
nmap -sV --script nmap-vulners\/ blubb.fish<\/code><\/pre>\n\n\n\n
Output:<\/p>\n\n\n\n
an example:<\/p>\n\n\n\n
# nmap -sV --script nmap-vulners\/ blubb.fish\nStarting Nmap 7.92 ( https:\/\/nmap.org ) at 2022-03-23 13:30 UTC\nNmap scan report for blubb.fish (149.126.4.100)\nHost is up (0.016s latency).\nOther addresses for blubb.fish (not scanned): 2a01:ab20:0:4::100\nrDNS record for 149.126.4.100: s091.cyon.net\nNot shown: 983 filtered tcp ports (no-response)\nPORT      STATE  SERVICE         VERSION\n20\/tcp    closed ftp-data\n21\/tcp    open   ftp             Pure-FTPd\n22\/tcp    open   ssh             OpenSSH 7.4 (protocol 2.0)\n| vulners: \n|   cpe:\/a:openbsd:openssh:7.4: \n|     \t2C119FFA-ECE0-5E14-A4A4-354A2C38071A\t10.0\thttps:\/\/vulners.com\/githubexploit\/2C119FFA-ECE0-5E14-A4A4-354A2C38071A\t*EXPLOIT*\n|     \tMSF:ILITIES\/UBUNTU-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/UBUNTU-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/SUSE-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/SUSE-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/SUSE-CVE-2019-25017\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/SUSE-CVE-2019-25017\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/REDHAT_LINUX-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/REDHAT_LINUX-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/REDHAT-OPENSHIFT-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/REDHAT-OPENSHIFT-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/ORACLE-SOLARIS-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/ORACLE-SOLARIS-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/OPENBSD-OPENSSH-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/OPENBSD-OPENSSH-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/IBM-AIX-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/IBM-AIX-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/HUAWEI-EULEROS-2_0_SP8-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/HUAWEI-EULEROS-2_0_SP8-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/HUAWEI-EULEROS-2_0_SP5-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/HUAWEI-EULEROS-2_0_SP5-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/HUAWEI-EULEROS-2_0_SP3-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/HUAWEI-EULEROS-2_0_SP3-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/HUAWEI-EULEROS-2_0_SP2-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/HUAWEI-EULEROS-2_0_SP2-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/GENTOO-LINUX-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/GENTOO-LINUX-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/F5-BIG-IP-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/F5-BIG-IP-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/DEBIAN-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/DEBIAN-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/CENTOS_LINUX-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/CENTOS_LINUX-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/AMAZON_LINUX-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/AMAZON_LINUX-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/AMAZON-LINUX-AMI-2-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/AMAZON-LINUX-AMI-2-CVE-2019-6111\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/ALPINE-LINUX-CVE-2019-6111\/\t5.8\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/ALPINE-LINUX-CVE-2019-6111\/\t*EXPLOIT*\n|     \tEXPLOITPACK:98FE96309F9524B8C84C508837551A19\t5.8\thttps:\/\/vulners.com\/exploitpack\/EXPLOITPACK:98FE96309F9524B8C84C508837551A19\t*EXPLOIT*\n|     \tEXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97\t5.8\thttps:\/\/vulners.com\/exploitpack\/EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97\t*EXPLOIT*\n|     \tEDB-ID:46516\t5.8\thttps:\/\/vulners.com\/exploitdb\/EDB-ID:46516\t*EXPLOIT*\n|     \tEDB-ID:46193\t5.8\thttps:\/\/vulners.com\/exploitdb\/EDB-ID:46193\t*EXPLOIT*\n|     \tCVE-2019-6111\t5.8\thttps:\/\/vulners.com\/cve\/CVE-2019-6111\n|     \t1337DAY-ID-32328\t5.8\thttps:\/\/vulners.com\/zdt\/1337DAY-ID-32328*EXPLOIT*\n|     \t1337DAY-ID-32009\t5.8\thttps:\/\/vulners.com\/zdt\/1337DAY-ID-32009*EXPLOIT*\n|     \tSSH_ENUM\t5.0\thttps:\/\/vulners.com\/canvas\/SSH_ENUM\t*EXPLOIT*\n|     \tPACKETSTORM:150621\t5.0\thttps:\/\/vulners.com\/packetstorm\/PACKETSTORM:150621\t*EXPLOIT*\n|     \tMSF:AUXILIARY\/SCANNER\/SSH\/SSH_ENUMUSERS\t5.0\thttps:\/\/vulners.com\/metasploit\/MSF:AUXILIARY\/SCANNER\/SSH\/SSH_ENUMUSERS\t*EXPLOIT*\n|     \tEXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0\t5.0\thttps:\/\/vulners.com\/exploitpack\/EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0\t*EXPLOIT*\n|     \tEXPLOITPACK:EBDBC5685E3276D648B4D14B75563283\t5.0\thttps:\/\/vulners.com\/exploitpack\/EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283\t*EXPLOIT*\n|     \tEDB-ID:45939\t5.0\thttps:\/\/vulners.com\/exploitdb\/EDB-ID:45939\t*EXPLOIT*\n|     \tEDB-ID:45233\t5.0\thttps:\/\/vulners.com\/exploitdb\/EDB-ID:45233\t*EXPLOIT*\n|     \tCVE-2018-15919\t5.0\thttps:\/\/vulners.com\/cve\/CVE-2018-15919\n|     \tCVE-2018-15473\t5.0\thttps:\/\/vulners.com\/cve\/CVE-2018-15473\n|     \tCVE-2017-15906\t5.0\thttps:\/\/vulners.com\/cve\/CVE-2017-15906\n|     \tCVE-2016-10708\t5.0\thttps:\/\/vulners.com\/cve\/CVE-2016-10708\n|     \t1337DAY-ID-31730\t5.0\thttps:\/\/vulners.com\/zdt\/1337DAY-ID-31730*EXPLOIT*\n|     \tCVE-2021-41617\t4.4\thttps:\/\/vulners.com\/cve\/CVE-2021-41617\n|     \tMSF:ILITIES\/OPENBSD-OPENSSH-CVE-2020-14145\/\t4.3\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/OPENBSD-OPENSSH-CVE-2020-14145\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/HUAWEI-EULEROS-2_0_SP9-CVE-2020-14145\/\t4.3\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/HUAWEI-EULEROS-2_0_SP9-CVE-2020-14145\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/HUAWEI-EULEROS-2_0_SP8-CVE-2020-14145\/\t4.3\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/HUAWEI-EULEROS-2_0_SP8-CVE-2020-14145\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/HUAWEI-EULEROS-2_0_SP5-CVE-2020-14145\/\t4.3\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/HUAWEI-EULEROS-2_0_SP5-CVE-2020-14145\/\t*EXPLOIT*\n|     \tMSF:ILITIES\/F5-BIG-IP-CVE-2020-14145\/\t4.3\thttps:\/\/vulners.com\/metasploit\/MSF:ILITIES\/F5-BIG-IP-CVE-2020-14145\/\t*EXPLOIT*\n|     \tCVE-2020-14145\t4.3\thttps:\/\/vulners.com\/cve\/CVE-2020-14145\n|     \tCVE-2019-6110\t4.0\thttps:\/\/vulners.com\/cve\/CVE-2019-6110\n|     \tCVE-2019-6109\t4.0\thttps:\/\/vulners.com\/cve\/CVE-2019-6109\n|     \tCVE-2018-20685\t2.6\thttps:\/\/vulners.com\/cve\/CVE-2018-20685\n|     \tPACKETSTORM:151227\t0.0\thttps:\/\/vulners.com\/packetstorm\/PACKETSTORM:151227\t*EXPLOIT*\n|     \tMSF:AUXILIARY\/SCANNER\/SSH\/SSH_ENUMUSERS\/\t0.0\thttps:\/\/vulners.com\/metasploit\/MSF:AUXILIARY\/SCANNER\/SSH\/SSH_ENUMUSERS\/\t*EXPLOIT*\n|_    \t1337DAY-ID-30937\t0.0\thttps:\/\/vulners.com\/zdt\/1337DAY-ID-30937*EXPLOIT*\n25\/tcp    closed smtp\n53\/tcp    closed domain\n80\/tcp    open   http            openresty\n| fingerprint-strings: \n|   GetRequest, HTTPOptions: \n|     HTTP\/1.0 200 OK\n|     Connection: close\n|     content-type: text\/html; charset=UTF-8\n|     content-length: 880\n|     date: Wed, 23 Mar 2022 13:31:07 GMT\n|     x-robots-tag: noindex, nofollow\n|     <!DOCTYPE html>\n|     <html style=\"height:100%\">\n|     <head><title>Domain nicht eingerichtet\n|     <\/title>\n|     <meta charset=\"utf-8\"><\/head>\n|     <body style=\"color: #444; margin:0;font: normal 14px\/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;\">\n|     <div style=\"height:auto; min-height:100%; \"> <div style=\"text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;\">\n|     style=\"margin-top:20px;font-size: 30px;\">\n|     Domain nicht eingerichtet<\/h1>\n|     <p>Die gew\n|     nschte Domain ist auf diesem Server nicht konfiguriert und kann deshalb nicht angezeigt werden.<\/p>\n|_    <p>Weitere Informationen finden Sie in unserem Supportcenter:<br><a href=\"https:\/\/www.cyon.ch\/support\/a\/fehler-beim-aufruf\n|_http-server-header: openresty\n110\/tcp   open   pop3            Dovecot pop3d\n143\/tcp   open   imap            Dovecot imapd\n443\/tcp   open   ssl\/https       openresty\n| fingerprint-strings: \n|   GetRequest, HTTPOptions: \n|     HTTP\/1.0 200 OK\n|     Connection: close\n|     content-type: text\/html; charset=UTF-8\n|     content-length: 880\n|     date: Wed, 23 Mar 2022 13:31:14 GMT\n|     x-robots-tag: noindex, nofollow\n|     <!DOCTYPE html>\n|     <html style=\"height:100%\">\n|     <head><title>Domain nicht eingerichtet\n|     <\/title>\n|     <meta charset=\"utf-8\"><\/head>\n|     <body style=\"color: #444; margin:0;font: normal 14px\/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;\">\n|     <div style=\"height:auto; min-height:100%; \"> <div style=\"text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;\">\n|     style=\"margin-top:20px;font-size: 30px;\">\n|     Domain nicht eingerichtet<\/h1>\n|     <p>Die gew\n|     nschte Domain ist auf diesem Server nicht konfiguriert und kann deshalb nicht angezeigt werden.<\/p>\n|_    <p>Weitere Informationen finden Sie in unserem Supportcenter:<br><a href=\"https:\/\/www.cyon.ch\/support\/a\/fehler-beim-aufruf\n|_http-server-header: openresty\n465\/tcp   open   ssl\/nagios-nsca Nagios NSCA\n587\/tcp   open   nagios-nsca     Nagios NSCA\n993\/tcp   open   ssl\/imap        Dovecot imapd\n995\/tcp   open   ssl\/pop3        Dovecot pop3d\n2196\/tcp  closed unknown\n3306\/tcp  open   mysql           MySQL 5.7.26-log-cll-lve\n<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"
Another Vulnerability scanner for nmap Install: Clone from git to nmap scripts folder Usage: Output: an example:<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,4],"tags":[],"class_list":["post-28","post","type-post","status-publish","format-standard","hentry","category-linux","category-pentesting"],"_links":{"self":[{"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/posts\/28","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/comments?post=28"}],"version-history":[{"count":2,"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/posts\/28\/revisions"}],"predecessor-version":[{"id":33,"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/posts\/28\/revisions\/33"}],"wp:attachment":[{"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/media?parent=28"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/categories?post=28"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blubb.fish\/index.php\/wp-json\/wp\/v2\/tags?post=28"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}