Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Command Line and GUI Differences

from [Off to Oz] Network Security [Permanent Link]
Subject: Re: Command Line and GUI Differences
Date: Tue, 14 Dec 2004 18:27:51 -0500 
Erik,

I can see them at the end in the original e-mail in my Gmail browser,
but not in my Outlook. However, I have included them again here.

Thanks,

Keys

begin(PLUGINS_PREFS)
 Login configurations[entry]:FTP account : = anonymous
 Login configurations[password]:FTP password (sent in clear) : =
nessus@nessus.org
 Login configurations[entry]:FTP writeable directory : = /incoming
 Login configurations[checkbox]:Never send SMB credentials in clear text = yes
 Login configurations[checkbox]:Only use NTLMv2 = no
 SMB Scope[checkbox]:Request information about the domain = yes
 Global variable settings[checkbox]:Enable experimental scripts = no
 Global variable settings[checkbox]:Thorough tests (slow) = no
 Global variable settings[radio]:Report verbosity = Normal
 Global variable settings[radio]:Report paranoia = Normal
 Global variable settings[radio]:Log verbosity = Normal
 Global variable settings[entry]:Debug level = 0
 NIDS evasion[radio]:TCP evasion technique = none
 NIDS evasion[checkbox]:Send fake RST when establishing a TCP connection = no
 SSH settings[entry]:SSH user name : = root
 SMB use host SID to enumerate local users[entry]:Start UID : = 1000
 SMB use host SID to enumerate local users[entry]:End UID : = 1200
 Services[entry]:Number of connections done in parallel : = 5
 Services[entry]:Network connection timeout : = 5
 Services[entry]:Network read/write timeout : = 5
 Services[entry]:Wrapped service read timeout : = 2
 Services[radio]:Test SSL based services = All
 Web mirroring[entry]:Number of pages to mirror : = 200
 Web mirroring[entry]:Start page : = /
 Unknown CGIs arguments torture[checkbox]:Send POST requests = no
 SMTP settings[entry]:Third party domain : = example.com
 SMTP settings[entry]:From address : = nobody@example.com
 SMTP settings[entry]:To address : = postmaster@[AUTO_REPLACED_IP]
 Misc information on News server[entry]:From address : = Nessus
<listme@listme.dsbl.org>
 Misc information on News server[entry]:Test group name regex : = f[a-z]\.tests?
 Misc information on News server[entry]:Max crosspost : = 7
 Misc information on News server[checkbox]:Local distribution = yes
 Misc information on News server[checkbox]:No archive = no
 SMB use domain SID to enumerate users[entry]:Start UID : = 1000
 SMB use domain SID to enumerate users[entry]:End UID : = 1200
 HTTP login page[entry]:Login page : = /
 HTTP login page[entry]:Login form fields : = user=%USER%&pass=%PASS%
 ftp writeable directories[radio]:How to check if directories are
writeable : = Trust the permissions (drwxrwx---)
 HTTP NIDS evasion[checkbox]:Use HTTP HEAD instead of GET = no
 HTTP NIDS evasion[radio]:URL encoding = none
 HTTP NIDS evasion[radio]:Absolute URI type = none
 HTTP NIDS evasion[radio]:Absolute URI host = none
 HTTP NIDS evasion[checkbox]:Double slashes = no
 HTTP NIDS evasion[radio]:Reverse traversal = none
 HTTP NIDS evasion[checkbox]:Self-reference directories = no
 HTTP NIDS evasion[checkbox]:Premature request ending = no
 HTTP NIDS evasion[checkbox]:CGI.pm semicolon separator = no
 HTTP NIDS evasion[checkbox]:Parameter hiding = no
 HTTP NIDS evasion[checkbox]:Dos/Windows syntax = no
 HTTP NIDS evasion[checkbox]:Null method = no
 HTTP NIDS evasion[checkbox]:TAB separator = no
 HTTP NIDS evasion[checkbox]:HTTP/0.9 requests = no
 HTTP NIDS evasion[checkbox]:Random case sensitivity (Nikto only) = no
 Netstat 'scanner'[checkbox]:Check found ports (intrusive) = no
 Ping the remote host[entry]:TCP ping destination port(s) : = default
 Ping the remote host[checkbox]:Do a TCP ping = yes
 Ping the remote host[checkbox]:Do an ICMP ping = yes
 Ping the remote host[entry]:Number of retries (ICMP) : = 10
 Ping the remote host[checkbox]:Make the dead hosts appear in the report = no
 Ping the remote host[checkbox]:Log live hosts in the report = no
 Brute force login (Hydra)[entry]:Number of simultaneous connections : = 4
 Brute force login (Hydra)[checkbox]:Brute force telnet = no
 Brute force login (Hydra)[checkbox]:Brute force FTP = no
 Brute force login (Hydra)[checkbox]:Brute force POP3 = no
 Brute force login (Hydra)[checkbox]:Brute force IMAP = no
 Brute force login (Hydra)[checkbox]:Brute force cisco = no
 Brute force login (Hydra)[checkbox]:Brute force cisco-enable = no
 Brute force login (Hydra)[checkbox]:Brute force VNC = no
 Brute force login (Hydra)[checkbox]:Brute force SOCKS 5 = no
 Brute force login (Hydra)[checkbox]:Brute force rexec = no
 Brute force login (Hydra)[checkbox]:Brute force NNTP = no
 Brute force login (Hydra)[checkbox]:Brute force HTTP = no
 Brute force login (Hydra)[checkbox]:Brute force ICQ = no
 Brute force login (Hydra)[checkbox]:Brute force PCNFS = no
 Brute force login (Hydra)[checkbox]:Brute force SMB = no
 Brute force login (Hydra)[checkbox]:Brute force LDAP = no
 Libwhisker options[radio]:IDS evasion technique: = X (none)
 Services[checkbox]:Quick SOCKS proxy checking = yes
 Login configurations[entry]:HTTP account : = 
 Login configurations[password]:HTTP password (sent in clear) : = 
 Login configurations[entry]:NNTP account : = 
 Login configurations[password]:NNTP password (sent in clear) : = 
 Login configurations[entry]:POP2 account : = 
 Login configurations[password]:POP2 password (sent in clear) : = 
 Login configurations[entry]:POP3 account : = 
 Login configurations[password]:POP3 password (sent in clear) : = 
 Login configurations[entry]:IMAP account : = 
 Login configurations[password]:IMAP password (sent in clear) : = 
 Login configurations[entry]:SMB account : = 
 Login configurations[password]:SMB password : = 
 Login configurations[entry]:SMB domain (optional) : = 
 Login configurations[entry]:SNMP community (sent in clear) : = 
 SSH settings[password]:SSH password (unsafe!) : = 
 SSH settings[file]:SSH public key to use : = 
 SSH settings[file]:SSH private key to use : = 
 SSH settings[password]:Passphrase for SSH key : = 
 Services[file]:SSL certificate : = 
 Services[file]:SSL private key : = 
 Services[password]:PEM password : = 
 Services[file]:CA file : = 
 HTTP login page[entry]:Login form : = 
 HTTP NIDS evasion[entry]:HTTP User-Agent = 
 HTTP NIDS evasion[entry]:Force protocol string : = 
end(PLUGINS_PREFS)
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Error compiling nessus-core, John Madden
Next by Date:  Re: NessusWX 1.4.4-np and msvcr711.dll, Beirne Konarski
Previous by Thread:  Re: Command Line and GUI Differences, Erik Stephens
Next by Thread:  Re: Command Line and GUI Differences, Erik Stephens
Indexes:  [Date] [Thread] [Top] [All Lists]