使用nmap查看web服务支持的http methods
安装nmap
yum install nmap
查看web server支持的http methods
u02 ~]$ nmap -p 443 --script http-methods www.somewhere.cn Starting Nmap 6.40 ( http://nmap.org ) at 2017-05-24 17:16 CST Nmap scan report for www.somewhere.cn (60.20.31.68) Host is up (0.0065s latency). PORT STATE SERVICE 443/tcp open https | http-methods: GET HEAD POST PUT DELETE TRACE OPTIONS PATCH | Potentially risky methods: PUT DELETE TRACE PATCH |_See http://nmap.org/nsedoc/scripts/http-methods.html Nmap done: 1 IP address (1 host up) scanned in 0.43 seconds
如果web server不支持OPTIONS方法, 则会返回
u02 ~]$ nmap -p 443 --script http-methods m.somewhere.cn Starting Nmap 6.40 ( http://nmap.org ) at 2017-05-24 17:15 CST Nmap scan report for m.somewhere.cn (60.25.311.71) Host is up (0.0070s latency). PORT STATE SERVICE 443/tcp open https |_http-methods: No Allow or Public header in OPTIONS response (status code 403) Nmap done: 1 IP address (1 host up) scanned in 0.62 seconds