Comments (10)
I am facing the same issue with a THM machine. I kept checking the .tmp file created for the Vuln scan. The scan was stuck at 91.81% for a long long time.
from nmapautomator.
I have also had this issue.
from nmapautomator.
Thank you all for reporting.
Since i can't replicate the issue myself, could you please take the command you'd find at the beginning of the .nmap
file and run it on its own to see if it finishes? If it does, could you share the entire output? You can remove the --stats-every 3
part.
There may be rare cases with a certain output that cause an add behaviour.
Also, was it stuck at the vulners
scan or the vulns
scan? So the first script run or the second?
Does it happen with any other websites? If it's just with one website, and the if you run the nmap command on its own and it still hangs, it's probably an issue with nmap scripts, and not with this script.
from nmapautomator.
I tried running Nmap scripts with the following command. Removed --stats-every 3 flag and added verbose -v flag instead to see the progress.
nmap -sV --script vuln -p22,80,3306,4444,5000 -oN Vulns_10.10.232.211.nmap --dns-server=1.1.1.1 10.10.232.211 -v
It still gets stuck at the very end. I guess there is a problem with the Nmap script itself.
from nmapautomator.
Thanks for confirming. This may mean that it's related to one of the script run by nmap itself, rather than an issue with nmapAutomator. It could even be an issue with the services running on the remote server.
from nmapautomator.
Hi Ya, great show with all the amendments and enhancements. I might be wrong but it always asks for input while doing and finishing the Nikto scan. Am I missing anything? See below
Portions of the server's headers (Apache/2.4.38) are not in
the Nikto 2.1.6 database or are newer than the known string. Would you like
to submit this information (no server specific data) to CIRT.net
for a Nikto update (or you may email to [email protected]) (y/n)?
from nmapautomator.
This is probably related to nikto, but I'll check if it has any flags to not prompt the user.
In any case, I have never faced this case, so it's probably very rare.
from nmapautomator.
Thanks, also I have noticed when running Recon, it starts with Nikto then ffuf scan and then again Nikto. I checked a couple of times to confirm it.
Is there a reason why in the output it displays these commands twice? See below:
nmapAutomator.sh --host 192.168.220.74 --type Recon
Running a Recon scan on 192.168.220.74
Host is likely running Linux
---------------------Recon Recommendations---------------------
Web Servers Recon:
nikto -host "http://192.168.220.74:80" | tee "recon/nikto_192.168.220.74_80.txt"
ffuf -ic -w /usr/share/wordlists/dirb/common.txt -e '.php' -u "http://192.168.220.74:80/FUZZ" | tee "recon/ffuf_192.168.220.74_80.txt"
nikto -host "http://192.168.220.74:80" | tee "recon/nikto_192.168.220.74_80.txt"
ffuf -ic -w /usr/share/wordlists/dirb/common.txt -e '.php' -u "http://192.168.220.74:80/FUZZ" | tee "recon/ffuf_192.168.220.74_80.txt"
Which commands would you like to run?
All (Default), ffuf, nikto, Skip <!>
Running Default in (1)s:
---------------------Running Recon Commands--------------------
Starting nikto scan
Then it starts Nikto scan, then ffuf scan and again goes back to Nikto and ffuf scans.
from nmapautomator.
Does this happens for the same port?
from nmapautomator.
Yes, that is the straight output that I copy-pasted.
from nmapautomator.
Related Issues (20)
- .nmap files crashing cherrytree HOT 3
- How can I add -Pn when it shows to use Pn HOT 1
- Unable to run nmapAutomator due to some config issues. HOT 2
- Recon scan does not trigger ping scan being disabled HOT 3
- Can't scan the IP segment?
- Flag to force disabled host discovery HOT 1
- How to skip the recon process and how to use multiple types HOT 1
- Scanns not working HOT 3
- Not functioning HOT 1
- Double param in UDPScan
- Add IPv6 scanning support
- This still Supported? HOT 1
- Add IP Spoofing HOT 1
- There are no results after running command. HOT 7
- This library is attempting to receive an incoming connection from Nmap! HOT 3
- not scanning cidr HOT 1
- script stop when get prompt choice HOT 1
- MacOS Scan Output Error HOT 2
- wont let me create a pull request.
- Wow
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from nmapautomator.