vulscan – Vulnerability Scanning with Nmap

Introduction

Vulscan is a module which enhances nmap to a vulnerability scanner. The nmap option -sV enables version detection per service which is used to determine potential flaws according to the identified product. The data is looked up in an offline version of VulDB.

vulscan – Vulnerability Scanning with Nmap

Introduction

Vulscan is a module which enhances nmap to a vulnerability scanner. The nmap option -sV enables version detection per service which is used to determine potential flaws according to the identified product. The data is looked up in an offline version of VulDB.

Installation

Please install the files into the following folder of your Nmap installation:

git clone https://github.com/scipag/vulscan.git

Nmap\scripts\vulscan\*

Usage

You have to run the following minimal command to initiate a simple vulnerability scan:

nmap -sV --script=vulscan/vulscan.nse www.example.com

Vulnerability Database

There are the following pre-installed databases available at the moment:

• scipvuldb.csv – https://vuldb.com
• cve.csv – http://cve.mitre.org
• osvdb.csv – http://www.osvdb.org
• securityfocus.csv – http://www.securityfocus.com/bid/
• securitytracker.csv – http://www.securitytracker.com
• expliotdb.csv – http://www.exploit-db.com
• openvas.csv – http://www.openvas.org

 More info, please visit here.