Top 10 nmap NSE scripts for PenTesters.

 
The advantage of Nmap Scripting Engine (NSE) is that it adds a lot of automated features in nmap to automate a wide variety of networking tasks.Here in this post I am using some of the most commonly used NSE scripts for Penetration Testers.
1.–script http-enum
It performs Brute Force on a server path in order to discover web applications in use.It tests more than 2000 server Path.The working of this NSE script is similar to NIKTO.

2.–script http-title
It Shows the title of the default page of a web server.

3.–script dns.brute
It is used to find the Sub-Domains of the Website.

4. –script whois-domain
It retrieves whois Information of a Domain.

5. –script http-methods
This script is used to find out the HTTP request supported by a target by sending OPTIONS request.

6.–script traceroute-geolocation.nse
This script is used to lists the geographical locations of each hops Traceroute.

7.–script http-sitemap-generator
It Spiders a web server and displays its directory structure along with number and types of files in each folder.

8.–script=nfs-ls
Attempts to get useful information about files from NFS exports. The output is intended to resemble the output of ls.

9.–script=firewalk
It is used to check the firewall rules using an IP TTL expiration technique known as firewalking.

10.–script=mysql-info.nse
Connects to a MySQL server and prints information such as the protocol and version numbers, thread ID, status, capabilities, and the password salt.


References: nmap.org
To learn Ethical Hacking, Visit: http://www.azureskynet.com/
Videos:https://www.youtube.com/c/ManishBhardwaj
HAPPY LEARNING:)