使用nmap查看web服务支持的http methods

安装nmap

yum install nmap

查看web server支持的http methods

u02 ~]$ nmap -p 443 --script http-methods www.somewhere.cn

Starting Nmap 6.40 ( http://nmap.org ) at 2017-05-24 17:16 CST
Nmap scan report for www.somewhere.cn (60.20.31.68)
Host is up (0.0065s latency).
PORT    STATE SERVICE
443/tcp open  https
| http-methods: GET HEAD POST PUT DELETE TRACE OPTIONS PATCH
| Potentially risky methods: PUT DELETE TRACE PATCH
|_See http://nmap.org/nsedoc/scripts/http-methods.html

Nmap done: 1 IP address (1 host up) scanned in 0.43 seconds

如果web server不支持OPTIONS方法, 则会返回

u02 ~]$ nmap -p 443 --script http-methods m.somewhere.cn

Starting Nmap 6.40 ( http://nmap.org ) at 2017-05-24 17:15 CST
Nmap scan report for m.somewhere.cn (60.25.311.71)
Host is up (0.0070s latency).
PORT    STATE SERVICE
443/tcp open  https
|_http-methods: No Allow or Public header in OPTIONS response (status code 403)

Nmap done: 1 IP address (1 host up) scanned in 0.62 seconds

 

posted on 2017-05-24 17:23  Milton  阅读(4266)  评论(0编辑  收藏  举报

导航