Skip to content

Instantly share code, notes, and snippets.

@Trailingslashes
Created April 12, 2020 21:14
Show Gist options
  • Save Trailingslashes/8183c8bbe589c02b040866e1b686e5d6 to your computer and use it in GitHub Desktop.
Save Trailingslashes/8183c8bbe589c02b040866e1b686e5d6 to your computer and use it in GitHub Desktop.
Vuln report via nmap
  • Install Nmap
  • Enable EPEL repos
  • Install sendemail
  • Install python3.6
  • Install python3.6-devel
  • Perform a vulnerability scan
  • Send results via email
  • Write a Python script to incorporate the scans and send the result via email
  • Configure the script to run once a week

sudo yum install https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm

sudo yum install nmap python36 python36-devel
sudo yum install git
sudo yum install sendemail

git clone https://github.com/vulnersCom/nmap-vulners.git

sudo mv /home/cloud_user/nmap-vulners/ /usr/share/nmap/scripts/

nmap -sV —script nmap-vulners <IP> -p22,80,3306

#!/bin/python3.6
#scan.py
import subprocess

p = subprocess.Popen(["nmap", "-sV", "--script", "nmap-vulners", "[IP_ADDRESS]", "-p22,80,3306"], stdout=subprocess.PIPE)
(output, err) = p.communicate()
msg = output.decode('utf-8').strip()

subprocess.check_output(['sendemail', ‘-f', '[FROM_EMAIL]', '-u', ‘AUTH_NOTIFICATION', '-t', '[TO_EMAIL]', '-s', 'smtp.gmail.com:587', '-o', 'tls=yes', '-xu', '[USER_NAME]', '-xp', '[PASSWORD]', '-m', msg], stdin=None, stderr=None, 
shell=False, universal_newlines=False)

Run once a week:

sudo crontab -e

@weekly /home/cloud_user/scan.py

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment