We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

The Nmap scripting engine

00:00
subtitles
off
playback rate
1
subtitles
off
English (auto-generated)
playback rate
0.25
0.5
0.75
1
1.25
1.5
1.75
2
quality
576p
10
 Cite
 Share
 Download Purchase
Logo of FOSDEM VZWFOSDEM VZW
 Fifield, David

Formal Metadata

Title
The Nmap scripting engine
Title of Series
Number of Parts
97
Author
License
CC Attribution 2.0 Belgium:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.
Identifiers
Publisher
Release Date
Language

Content Metadata

Subject Area
Genre
Abstract
The Nmap Scripting Engine extends the results of an Nmap port scan. It combines the Lua programming language, a library of network functions, and the results provided by other parts of Nmap to give more information about network hosts and their open ports. There are standard scripts that grab SSH host keys or SSL certificates, discover the remote date and time, check for weak passwords and unpatched vulnerabilites, and much more. The talk will explain how the scripting engine fits in with Nmap's other functions, the structure of a script, and how to modify a script or write your own. We'll see how the scripting engine can benefit casual users, researchers, and security auditors. Finally there will be a brief overview of what's new in Nmap and its associated tools for the benefit of casual users.
00:00
Port scannerSoftware developerScripting languageCASE <Informatik>Programmer (hardware)Software testingQuicksortSheaf (mathematics)Port scannerPresentation of a groupComputer configurationLevel (video gaming)Product (business)Communications protocolProof theoryInformation securityRevision controlRegulärer Ausdruck <Textverarbeitung>Line (geometry)2 (number)Function (mathematics)MappingResultantSoftware maintenanceWeb pageLink (knot theory)LaptopCategory of beingOpen setDependent and independent variablesSoftwareExpert systemClosed setBitDefault (computer science)Computer fileKey (cryptography)Latent heatMereologyInformationEmailSubsetGastropod shellPlastikkarteQuery languageAsynchronous Transfer ModeMultiplicationFlow separationExploit (computer security)DatabaseRandomization1 (number)Image resolutionThread (computing)Web 2.0Task (computing)Cartesian coordinate systemVulnerability (computing)MalwareDegree (graph theory)Reverse engineeringRegular graphComputer animationXMLLecture/Conference
09:01
Maxima and minimaHill differential equationInclusion mapPlane (geometry)Execution unitVaporServer (computing)Router (computing)Parameter (computer programming)Scripting languageUniform resource locatorGroup actionRight angleLibrary (computing)Fitness functionMultiplication signVirtual machineMereologyBootingSheaf (mathematics)Default (computer science)MetadataStandard deviationVariable (mathematics)RoutingRevision controlLevel (video gaming)Arithmetic meanDescriptive statisticsCategory of beingAuthorizationWeb pageHyperlinkInformationFile formatOpen sourceDistribution (mathematics)Functional (mathematics)Physical systemString (computer science)Rule of inferencePoisson-KlammerSelectivity (electronic)Square numberNumberSoftware testingService (economics)Web 2.0Web applicationDifferent (Kate Ryan album)BitModule (mathematics)QuicksortFunction (mathematics)Computer iconMessage passingSystem callField (computer science)PasswordTouchscreenProgrammer (hardware)Port scannerScheduling (computing)SoftwareInformation securityOpen setQuery languageElectronic mailing listSoftware developer2 (number)Denial-of-service attackNetwork socketRemote procedure callRootHash functionFingerprintLecture/Conference
17:49
Menu (computing)Convex hullScripting languageExecution unitMaxima and minimaWechselseitige InformationGroup actionComputer iconAnnulus (mathematics)Scripting languageMultiplication signPort scannerDirect numerical simulationLibrary (computing)Computer fileCategory of beingElectronic mailing listHash functionCodeProjective planeHacker (term)Function (mathematics)Software developerFunctional (mathematics)Parameter (computer programming)System identificationTracing (software)WritingDatabaseOpen setDirectory serviceRule of inferenceComputer iconWeb 2.0Table (information)EmailConnected spaceGoodness of fitInterpreter (computing)Computer configurationComputer programmingCartesian coordinate systemContent (media)Figurate numberSheaf (mathematics)Network socketSystem callWeb pageReverse engineeringTraffic reportingGroup actionMereologyThread (computing)Socket-SchnittstelleWeb applicationSource codeFile systemCore dumpFrequencyPhysical systemInheritance (object-oriented programming)Bookmark (World Wide Web)Server (computing)Overhead (computing)Game controllerMatching (graph theory)Parallel portOperator (mathematics)Right angle1 (number)IP addressCountingData miningArchaeological field surveyLevel (video gaming)SoftwareWebsiteDistribution (mathematics)Software bugNumberLecture/Conference
26:37
Royal NavyDenial-of-service attackGroup actionCommitment schemeServer (computing)IP addressInformationEmailWeightPixelSoftware developerScripting languageResultantPasswordAddress spaceMereologyForcing (mathematics)Parallel portLetterpress printingMultiplication signWebsiteBlock (periodic table)Cache (computing)Functional (mathematics)Table (information)INTEGRALLibrary (computing)Computer fileMappingSoftware bugProbability density functionDirect numerical simulationLevel (video gaming)Basis <Mathematik>Computer iconProjective planeLecture/Conference
33:48
Patch (Unix)Address spaceTable (information)Lecture/ConferenceXML
Transcript: English(auto-generated)