安装
cqq@ubuntu:/usr/share/nmap/scripts$ wget https://raw.githubusercontent.com/OCSAF/freevulnsearch/master/freevulnsearch.nse
使用
cqq@ubuntu:/usr/share/nmap/scripts$ nmap -sV --script freevulnsearch 192.168.96.129
Starting Nmap 7.01 ( https://nmap.org ) at 2019-02-10 17:09 PST
Nmap scan report for 192.168.96.129
Host is up (0.000041s latency).
Not shown: 997 closed ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 7.2p2 Ubuntu 4ubuntu2.6 (Ubuntu Linux; protocol 2.0)
| freevulnsearch:
| CVE-2018-15919 Medium 5 https://cve.circl.lu/cve/CVE-2018-15919
| CVE-2018-15473 Medium 5 EDB MSF https://cve.circl.lu/cve/CVE-2018-15473
| CVE-2017-15906 Medium 5 https://cve.circl.lu/cve/CVE-2017-15906
| CVE-2016-6515 High 7.8 EDB https://cve.circl.lu/cve/CVE-2016-6515
| CVE-2016-6210 Medium 4.3 EDB MSF https://cve.circl.lu/cve/CVE-2016-6210
| CVE-2016-10708 Medium 5 https://cve.circl.lu/cve/CVE-2016-10708
| CVE-2015-8325 High 7.2 https://cve.circl.lu/cve/CVE-2015-8325
| *No CVE found with NMAP-CPE: (cpe:/a:openbsd:openssh:7.2p2)
|_ *CVE found with freevulnsearch function: (cpe:/a:openbsd:openssh:7.2:p2)
25/tcp open smtp Postfix smtpd
80/tcp open http Apache httpd 2.4.18
| freevulnsearch:
| CVE-2018-1333 Medium 5 https://cve.circl.lu/cve/CVE-2018-1333
| CVE-2018-1312 Medium 6.8 https://cve.circl.lu/cve/CVE-2018-1312
| CVE-2018-1283 Low 3.5 https://cve.circl.lu/cve/CVE-2018-1283
| CVE-2018-11763 Medium 4.3 https://cve.circl.lu/cve/CVE-2018-11763
| CVE-2017-9798 Medium 5 EDB MSF https://cve.circl.lu/cve/CVE-2017-9798
| CVE-2017-9788 Medium 6.4 https://cve.circl.lu/cve/CVE-2017-9788
| CVE-2017-7679 High 7.5 https://cve.circl.lu/cve/CVE-2017-7679
| CVE-2017-7668 High 7.5 https://cve.circl.lu/cve/CVE-2017-7668
| CVE-2017-3169 High 7.5 https://cve.circl.lu/cve/CVE-2017-3169
| CVE-2017-3167 High 7.5 https://cve.circl.lu/cve/CVE-2017-3167
| CVE-2017-15715 Medium 6.8 https://cve.circl.lu/cve/CVE-2017-15715
| CVE-2017-15710 Medium 5 https://cve.circl.lu/cve/CVE-2017-15710
| CVE-2016-8743 Medium 5 https://cve.circl.lu/cve/CVE-2016-8743
| CVE-2016-8740 Medium 5 EDB https://cve.circl.lu/cve/CVE-2016-8740
| CVE-2016-8612 Low 3.3 https://cve.circl.lu/cve/CVE-2016-8612
| CVE-2016-4979 Medium 5 https://cve.circl.lu/cve/CVE-2016-4979
| CVE-2016-4975 Medium 4.3 https://cve.circl.lu/cve/CVE-2016-4975
| CVE-2016-1546 Medium 4.3 https://cve.circl.lu/cve/CVE-2016-1546
|_ *CVE found with NMAP-CPE: (cpe:/a:apache:http_server:2.4.18)
|_http-server-header: Apache/2.4.18 (Ubuntu)
Service Info: Hosts: ubuntu.localdomain, 127.0.1.1; OS: Linux; CPE: cpe:/o:linux:linux_kernel
有些CVE并没有exploit,需要自己找。