Using Nmap scripts
Nmap is much more than a normal port scanner. It is extremely versatile in terms of the functionalities it offers. Nmap scripts are like add-ons, which can be used for performing additional tasks. There are literally hundreds of such scripts available. In this section, we will be looking at a few of the Nmap scripts.
http-methods
The http-methods
script will help us enumerate various methods that are allowed on the target web server. The syntax for using this script is as follows:
nmap --script http-methods <Target IP address>
The following screenshot shows the output of the Nmap script we executed. It tells us that the target web server is allowing the GET, HEAD, POST, and OPTIONS methods:
smb-os-discovery
The smb-os-discovery
script will help us enumerate the OS version based on the SMB protocol. The syntax for using this script is as follows:
nmap --script smb-os-discovery <Target IP address>
The following screenshot shows the enumeration output telling us that...