Thanks Reg. The reason for the NASL is that we want to encorporate the PHP
discovery scan into our weekly Nessus scans of our external ranges. We'd
rather centralise all scanning than build different shell scripts for
different tasks. Your approach would work very well of course.
Mike.
From: "Reg Quinton" <[EMAIL PROTECTED]>
To: "'Mike Gilligan'" <[EMAIL PROTECTED]>, <[email protected]>
Subject: RE: PHP NASL scripts Date: Tue, 26 Jun 2007 15:28:06 -0400
Why nessus and NASL? You can probe a web server for it's version like this:
[3:22pm dominic] lwp-request -e http://<name-or-number> | grep '^Server:'
Server: Apache/1.3.34 Ben-SSL/1.55 (Unix) PHP/4.4.1 mod_perl/1.21
"lynx -head" would do the same.
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:nessus-
> [EMAIL PROTECTED] On Behalf Of Mike Gilligan
> Sent: June 26, 2007 12:08 AM
> To: [email protected]
> Subject: PHP NASL scripts
>
> Hi
>
> I'm looking for a NASL script that simply does a banner grab on a host
> running PHP for either the X-Powered-By or PHP version information with
> the
> end goal of compiling a list of external hosts running PHP. Does
> something
> like this already exist in the current 'free' plugin feed or would I
> need to
> go about writing my own?
>
> Thanks,
>
> Mike.
>
> _________________________________________________________________
> Get the new Windows Live Messenger!
> http://get.live.com/messenger/overview
>
> _______________________________________________
> Nessus mailing list
> [email protected]
> http://mail.nessus.org/mailman/listinfo/nessus
_________________________________________________________________
Find singles online in your area with MSN Dating and Match.com!
http://cp.intl.match.com/eng/msn/msnsg/wbc/wbc.html
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
