VScan is a vulnerability scanner tool is using nmap and nse scripts to find vulnerabilities. This tool puts an additional value into vulnerability scanning with nmap.
It uses NSE scripts which can add flexibility in terms of vulnerability detection and exploitation. Below there are some of the features that NSE scripts provide
This tool uses the path /usr/share/nmap/scripts/ where the nse scripts are located in kali linux
The tool performs the following
If the tool finds a vulnerabilty in a certain protocol (e.g http) it keeps the output into a log file which is created and saved in the following location /home/vulnerabilities_enumeration/http_vulnerabilities/http_vulnerabilities/http_vulnerabilities.txt In this example the folders have been created using the protocol prefix which in the current occasion is the http protocol.
Also Read – EyeWitness : Designed To Take Screenshots Of Websites
Usage
[Usage:] ./vscan.sh <ip_range> <protocol> <port> <Pn (optional)>[Usage:] ./vscan.sh <ips_file> <protocol> <port> <Pn (optional)>[Usage:] ./vscan.sh <ip> <protocol> <port> <Pn (optional)>
How to run?
./vscan.sh 192.168.162.90 http 80
./vscan.sh 192.168.162.10-90 http 80
./vscan.sh 192.168.162.90 ssh 22 Pn
./vscan.sh IPs.txt smb 445
References
Screenshots
###Example: SMB scanning
###Example: Slowloris vulnerability detection
###Example: multiple IP scanning SSH weak keys
###Example: When the system is down or no ICMP requests
MySQL is the most popular open-source relational database management system. It is fast, reliable, and a…
Git is the most widely used version control system in the world. It was created by…
Go (also called Golang) is an open-source programming language built by Google. It is designed to…
Visual Studio Code (VS Code) is an open-source code editor developed by Microsoft. It is one…
Nginx (pronounced "engine x") is an open-source, high-performance web server and reverse proxy. It is used…
Apache is one of the most widely used open-source web servers in the world. It is…