{"id":13467858,"url":"https://github.com/vulnersCom/nmap-vulners","last_synced_at":"2025-03-26T03:31:12.148Z","repository":{"id":39229012,"uuid":"114812250","full_name":"vulnersCom/nmap-vulners","owner":"vulnersCom","description":"NSE script based on Vulners.com API","archived":false,"fork":false,"pushed_at":"2024-04-03T11:53:29.000Z","size":1821,"stargazers_count":3288,"open_issues_count":19,"forks_count":552,"subscribers_count":134,"default_branch":"master","last_synced_at":"2025-03-23T12:05:19.953Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Lua","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/vulnersCom.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2017-12-19T21:21:28.000Z","updated_at":"2025-03-23T06:53:49.000Z","dependencies_parsed_at":"2024-10-29T20:51:28.637Z","dependency_job_id":null,"html_url":"https://github.com/vulnersCom/nmap-vulners","commit_stats":null,"previous_names":[],"tags_count":7,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnersCom%2Fnmap-vulners","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnersCom%2Fnmap-vulners/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnersCom%2Fnmap-vulners/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnersCom%2Fnmap-vulners/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/vulnersCom","download_url":"https://codeload.github.com/vulnersCom/nmap-vulners/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245584709,"owners_count":20639612,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-07-31T15:01:01.510Z","updated_at":"2025-03-26T03:31:11.262Z","avatar_url":"https://github.com/vulnersCom.png","language":"Lua","funding_links":["https://paypal.me/videns"],"categories":["Vulnerability","Lua","Security","Lua (24)","others","Содержание:","System","misc Tools"],"sub_categories":["Other","Sensor and Acuator Interfaces","Утилиты","Security"],"readme":"# nmap_vulners\n\n[![Current Release](https://img.shields.io/github/release/vulnersCom/nmap-vulners.svg \"Current Release\")](https://github.com/vulnersCom/nmap-vulners/releases/latest)\n[![Downloads](https://img.shields.io/github/downloads/vulnersCom/nmap-vulners/total.svg \"Downloads\")](https://github.com/vulnersCom/nmap-vulners/releases) [![PayPal](https://img.shields.io/badge/donate-PayPal-green.svg)](https://paypal.me/videns)\n\n## Description\n\nNSE script uses info about known services to provide data on vulnerabilities. Note that it is already included into the standard nmap NSE library.\n\n![Result example](example.png)\n\n## Dependencies:\n    nmap libraries:\n        http\n        json\n        string\n    http-vulners-regex\n\nKeep in mind that the script depends on having information about software versions, so it only works with -sV flag.\n\n**NB:** Now it can actually be run without -sV flag if http-vulners-regex script is run as well.\n\n## Installation\n    locate where your nmap scripts are located on your system\n        for *nix system it might be  ~/.nmap/scripts/ or $NMAPDIR\n        for Mac it might be /usr/local/Cellar/nmap/\u003cversion\u003e/share/nmap/scripts/\n        for Windows it might be C:\\Program Files (x86)\\Nmap\\scripts\n    copy the provided script (vulners.nse) into that directory\n    run *nmap --script-updatedb* to update the nmap script DB \n\n## Usage\n    Use it as straightforward as you can:\n        nmap -sV --script vulners [--script-args mincvss=\u003carg_val\u003e] \u003ctarget\u003e\n        \nIt is KISS after all.\n\n# http-vulners-regex\n\n## Description\n\nNSE script scans HTTP responses and identifies CPEs for the mentioned software. It can therefore boost the efficiency of the main vulners script.\n\n![Result example](simple_regex_example.png)\nOr with the paths:\n![Result example](paths_regex_example.png)\n\n## Dependencies\n    nmap libraries:\n        http\n        json\n        string\n        stdnse\n        shortport\n        table\n\n## Installation\n    locate where nmap is located on your system\n        for *nix system it might be  ~/.nmap/ or $NMAPDIR\n        for Mac it might be /usr/local/Cellar/nmap/\u003cversion\u003e/share/nmap/\n        for Windows it might be C:\\Program Files (x86)\\Nmap\\\n    copy the provided script (http-vulners-regex.nse) into \u003cnmap_dir\u003e/scripts/\n    copy the provided json with the regexes to \u003cnmap_dir\u003e/nselib/data/\n    copy the provided txt file with the default paths to \u003cnmap_dir\u003e/nselib/data/\n        note that you can specify your own file via command line\n    run *nmap --script-updatedb* to update the nmap script DB \n\n## Usage\n    As a usual NSE script:\n        nmap --script http-vulners-regex.nse [--script-args paths={\"/\"}] \u003ctarget\u003e \n\n\n# vulners_enterprise\n\n## Description \nThis is basically the good old faithfull nmap-vulners from above with an important exception: it requires an API_KEY to work. \n\nMoreover it specifically uses CVSS v3 score rather than v2 in its output.\n\nYou can either specify it on the CLI using the 'api_key' script argument, set it into an envirotnment variable VULNERS_API_KEY, or store it in a file readable by the user running nmap. In this case you must specify the absolute path to the file using the 'api_key_file' script argument.\n\n![Result example](vulners_enterprise_output.png)\n\n## Usage\n    As a usual NSE script:\n        nmap -sV --script vulners_enterprise [--script-args mincvss=\u003carg_val\u003e,api_key=\u003capi_key\u003e,api_key_file=\u003cabsolute_path\u003e,api_host=http://my_host.com] \u003ctarget\u003e\n        \n### NSE Arguments\n\n**vulners_enterprise.mincvss** Limit CVEs shown to those with this CVSS score or greater.\n\n**vulners_enterprise.api_key** API token to be used in the requests\n\n**vulners_enterprise.api_key_file** Absolute path to the file with a single line containing the API token\n\n**vulners_enterprise.api_host** URL to vulners API without the leading slash. Defaults to https://vulners.com\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FvulnersCom%2Fnmap-vulners","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FvulnersCom%2Fnmap-vulners","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FvulnersCom%2Fnmap-vulners/lists"}