vscan – Vulnerability Scanner Using Nmap and NSE

vscan is a tool that puts an additional value into vulnerability scanning with nmap. It uses NSE scripts which can add flexibility in terms of vulnerability detection and exploitation.

vscan - Vulnerability Scanner Using Nmap and NSE
vscan – Vulnerability Scanner Using Nmap and NSE

Some of the advanced features that NSE scripts provide:

  • Network discovery
  • More sophisticated version detection
  • Vulnerability detection
  • Backdoor detection
  • Vulnerability exploitation

The scan and enumeration scenario with this tool include the following:

  • Check the communication to the target hosts using icmp requests
  • Takes as input a protocol name such as http and executes all nse scripts related to that protocol
  • If any vulnerability triggers it saves the output into a log file
  • It may perform all of the above actions for a range of IP addresses

If the tool finds a vulnerabilty in a certain protocol (e.g http) it keeps the output into a log file which is created and saved locally. Some of the scripts are considered to be intrusive and may crash the remote service or use high resources on the target such as bandwidth and CPU so it will be important to specify required check that will not affect your system.

User may review the list of NSE scripts located in /usr/share/nmap/scripts/ some of them will try several common SNMP community string such as public, private, cisco. It will be recommended to test the scan and make verification on what are the goal from the scan.

You can read more and download this tool over here: https://github.com/xvass/vscan