Last active
February 27, 2020 01:02
-
-
Save maravedi/566c9d3014b6f5ed96541cd70969f468 to your computer and use it in GitHub Desktop.
Nmap Sqlite Output Script with cpe and OS
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| description = [[ | |
| This script stores the following nmap output into a sqlite3 database: Hostname, IP, port number, protocol (tcp/udp), service, version, cpe, and OS (if it can be determined) | |
| Both, database file name and table name can be passed to the script via arguments (see @args or @example), data will always be appended to an existing table. Non-existant database files or table | |
| s are created during the scan. Nmap's regular output (-o) will not be modified in any way. | |
| Dependencies: luasql (http://keplerproject.org/luasql) | |
| For Debian-based distributions: | |
| sudo apt-get install lua-sql-sqlite3 | |
| Be sure to copy this script to /usr/share/nmap/scripts/ | |
| ]] | |
| --- | |
| -- @usage | |
| -- nmap --script sqlite-output <target> | |
| -- | |
| -- @example | |
| -- $ nmap -sS -A -F --script sqlite-output --script-args=dbname=scan.sqlite,dbtable=scandata scanme.nmap.org | |
| -- $ sqlite3 can.sqlite | |
| -- sqlite> select * from scandata; | |
| -- scanme.nmap.org|74.207.244.221|22|tcp|ssh|OpenSSH5.3p1 Debian 3ubuntu7.1 | |
| -- scanme.nmap.org|74.207.244.221|80|tcp|http|Apache httpd2.2.14 | |
| -- | |
| -- @args | |
| -- dbname: name of sqlite database file (default: scan.sqlite) | |
| -- dbtable: name of database table in which the output will be written (default: scandata) | |
| --- | |
| author = "Michael Clemens; Modified by David Frazer" | |
| license = "Same as Nmap--See http://nmap.org/book/man-legal.html" | |
| categories = {"external", "safe"} | |
| local luasql = require "luasql.sqlite3" | |
| local nmap = require "nmap" | |
| portrule = function () return true end | |
| postrule = function () return true end | |
| if (nmap.registry.args.dbname~=nil) then | |
| dbname = nmap.registry.args.dbname | |
| else | |
| dbname = "scan.sqlite" | |
| end | |
| if (nmap.registry.args.dbtable~=nil) then | |
| dbtable = nmap.registry.args.dbtable | |
| else | |
| dbtable = "scandata" | |
| end | |
| env = luasql.sqlite3() | |
| con = env:connect(dbname) | |
| res = con:execute (string.format("CREATE TABLE '%s' (hostname varchar(100), ip varchar(16), port integer(5), protocol varchar(3), state varchar(20), service varchar(100), version varchar(100), cpe varchar(100), os varchar(100))", con:escape(dbtable))) | |
| function portaction (host, port) | |
| local version = "" | |
| local os = "" | |
| local cpe = "" | |
| if (port.version.cpe ~= nil) then | |
| cpe = table.concat(port.version.cpe) | |
| end | |
| if (port.version.product~=nil) then | |
| version = port.version.product | |
| end | |
| if (port.version.version~=nil) then | |
| version = version .. port.version.version | |
| end | |
| if (host.os ~= nil) then | |
| if (host.os[1].name ~= nil) then | |
| os = host.os[1].name | |
| elseif (port.version.ostype ~= nil) then | |
| os = port.version.ostype | |
| else | |
| os = "Unknown" | |
| end | |
| else | |
| os = "Unknown" | |
| end | |
| res = con:execute(string.format("INSERT INTO '%s' VALUES ('%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s')" , con:escape(dbtable), con:escape(host.name), con:escape(host.ip), con:escape(port.number), con:escape(port.protocol), con:escape(port.state), con:escape(port.service), con:escape(version), con:escape(cpe), con:escape(os))) | |
| end | |
| function postaction () | |
| con:close() | |
| env:close() | |
| end | |
| local ActionsTable = { | |
| portrule = portaction, | |
| postrule = postaction | |
| } | |
| -- execute the action function corresponding to the current rule | |
| action = function(...) return ActionsTable[SCRIPT_TYPE](...) end |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment