Professional Documents
Culture Documents
Online nmap for Fast scan, Port scan, OS Detection, Traceroute your target.
Nmap Security
Scanner
Intro
Ref Guide
Install Guide Reference
Download Intro Book Install Guide
Guide
Changelog
Book Zenmap
Download Changelog Docs
Docs GUI
Bug
Security Lists OS Detection Propaganda Related Projects
Reports
Nmap Announce
In the Movies In the News
Nmap Dev
Bugtraq
Full Disclosure
Pen Test
Basics File http-config-backup
More
Script types: portrule
Security Tools Categories: auth, intrusive
Password audit Download: https://svn.nmap.org/nmap/scripts/http-config-backup.nse
Sniffers
Vuln scanners User Summary
Web scanners
Wireless Checks for backups and swap files of common content management system and web server configuration files.
Exploitation
Packet crafters When web server files are edited in place, the text editor can leave backup or swap files in a place where the web
More server can serve them. The script checks for these files:
And for each of these file applies the following transformations (using config.php as an example):
Script Arguments
http-config-backup.save
http-config-backup.path
slaxml.debug
Example Usage
nmap --script=http-config-backup <target>
Script Output
PORT STATE SERVICE REASON
80/tcp open http syn-ack
| http-config-backup:
| /%23wp-config.php%23 HTTP/1.1 200 OK
|_ /config.php~ HTTP/1.1 200 OK
Requires
coroutine
http
io
shortport
stdnse
string
table
url
Author:
Riccardo Cecolin
Reference
Intro Book Install Guide
Guide
Zenmap
Download Changelog Docs
GUI
Bug
OS Detection Propaganda Related Projects
Reports
In the Movies In the News
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]