Vulscan – Vulnerability Scanning with Nmap in Kali Linux
Vulscan is a free and open-source tool available on GitHub. Vulscan uses nmap as the main scanner to scan the IP addresses and domains, the easiest and useful tool for reconnaissance of network. Vulscan interface is very similar to Metasploit 1 and Metasploit 2 which makes it easy to use. This tool provides a command-line interface that you can run on the Kali Linux terminal in order to scan hosts and domains. This tool can be used to get information about our target(domain) which can be a website or an IP address or a domain. The interactive console provides a number of helpful features, such as command completion and contextual help. Vulscan is a web reconnaissance tool that uses NSE script. Vulscan has NSE scripts that give additional features to nmap to detect and find vulnerabilities and further which can be used to perform exploitation. Nse scripts have many modules such as network discovery and backdoor detection. It has so many modules such as database interaction, built-in convenience functions, interactive help, and command completion. Vulscan provides a powerful environment in which open source web-based reconnaissance can be conducted and you can gather all information about the target.
Step 1: Use the following command to install the tool in your kali Linux operating system.
git clone https://github.com/scipag/vulscan scipag_vulscan ln -s `pwd`/scipag_vulscan /usr/share/nmap/scripts/vulscan
Step 2: Now use the following command to move into the directory of the tool. Use the second command to list out the contents of the tool
cd scipag_vulscan ls
The tool has been downloaded and installed successfully now we will see an example to use the tool.
Example 1: Use the following command to scan a domain using the vulscan tool.
nmap -sV --script=vulscan/vulscan.nse <domain>
This tool automates the nmap vulnerability scanner using NSE scripts.
Please Login to comment...