Web Application Test (level 1) 2f2e822a-8293-454d-8ad8-7246b458267b safe_checks yes server_info_thread_manager threads max_checks 5 ntp_save_sessions yes plugin_upload yes feed_type HomeFeed server_info_nessusd_version 4.0.1 (Build 1021) stop_scan_on_hang no server_info_os Windows silent_dependencies yes plugin_upload_suffixes .nasl, .nasl3, .nasl4, .inc, .inc3, .nbin, .nlib, .audit save_knowledge_base no optimize_test yes max_hosts 40 auto_update yes use_kernel_congestion_detection no listen_address 0.0.0.0 server_info_os_version Windows listen_port 1241 port_range default slice_network_addresses no reverse_lookup yes use_mac_addr no unscanned_closed yes checks_read_timeout 5 stop_scan_on_disconnect no non_simult_ports 139, 445 cgi_path /cgi-bin:/scripts server_info_libnasl_version 4.0.1 (Build 1021) server_info_libnessus_version 4.0.1 (Build 1021) log_whole_attack no throttle_scan yes plugins_timeout 320 ntp_detached_sessions yes auto_enable_dependencies yes reduce_connections_on_congestion yes Nessus SYN scanner[radio]:Firewall detection : Firewall detection : Nessus SYN scanner radio Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) Automatic (normal) HTTP login page[entry]:Login page : Login page : HTTP login page entry / / HTTP login page[entry]:Login form : Login form : HTTP login page entry HTTP login page[entry]:Login form fields : Login form fields : HTTP login page entry user=%USER%&pass=%PASS% user=%USER%&pass=%PASS% SMB use domain SID to enumerate users[entry]:Start UID : Start UID : SMB use domain SID to enumerate users entry 1000 1000 SMB use domain SID to enumerate users[entry]:End UID : End UID : SMB use domain SID to enumerate users entry 1200 1200 SNMP settings[entry]:Community name : Community name : SNMP settings entry public public SNMP settings[entry]:UDP port : UDP port : SNMP settings entry 161 161 News Server (NNTP) Information Disclosure[entry]:From address : From address : News Server (NNTP) Information Disclosure entry Nessus <listme@listme.dsbl.org> Nessus <listme@listme.dsbl.org> News Server (NNTP) Information Disclosure[entry]:Test group name regex : Test group name regex : News Server (NNTP) Information Disclosure entry f[a-z]\.tests? f[a-z]\.tests? News Server (NNTP) Information Disclosure[entry]:Max crosspost : Max crosspost : News Server (NNTP) Information Disclosure entry 7 7 News Server (NNTP) Information Disclosure[checkbox]:Local distribution Local distribution News Server (NNTP) Information Disclosure checkbox yes yes News Server (NNTP) Information Disclosure[checkbox]:No archive No archive News Server (NNTP) Information Disclosure checkbox no no Login configurations[entry]:HTTP account : HTTP account : Login configurations entry Login configurations[password]:HTTP password (sent in clear) : HTTP password (sent in clear) : Login configurations password Login configurations[entry]:NNTP account : NNTP account : Login configurations entry Login configurations[password]:NNTP password (sent in clear) : NNTP password (sent in clear) : Login configurations password Login configurations[entry]:FTP account : FTP account : Login configurations entry anonymous anonymous Login configurations[password]:FTP password (sent in clear) : FTP password (sent in clear) : Login configurations password nessus@nessus.org nessus@nessus.org Login configurations[entry]:FTP writeable directory : FTP writeable directory : Login configurations entry /incoming /incoming Login configurations[entry]:POP2 account : POP2 account : Login configurations entry Login configurations[password]:POP2 password (sent in clear) : POP2 password (sent in clear) : Login configurations password Login configurations[entry]:POP3 account : POP3 account : Login configurations entry Login configurations[password]:POP3 password (sent in clear) : POP3 password (sent in clear) : Login configurations password Login configurations[entry]:IMAP account : IMAP account : Login configurations entry Login configurations[password]:IMAP password (sent in clear) : IMAP password (sent in clear) : Login configurations password SMB Registry : Start the Registry Service during the scan[checkbox]:Start the registry service during the scan Start the registry service during the scan SMB Registry : Start the Registry Service during the scan checkbox no no Service detection[radio]:Test SSL based services Test SSL based services Service detection radio Known SSL ports;All;None Known SSL ports Ping the remote host[entry]:TCP ping destination port(s) : TCP ping destination port(s) : Ping the remote host entry built-in built-in Ping the remote host[checkbox]:Do an ARP ping Do an ARP ping Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Do a TCP ping Do a TCP ping Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Do an ICMP ping Do an ICMP ping Ping the remote host checkbox yes yes Ping the remote host[entry]:Number of retries (ICMP) : Number of retries (ICMP) : Ping the remote host entry 2 2 Ping the remote host[checkbox]:Do an applicative UDP ping (DNS,RPC...) Do an applicative UDP ping (DNS,RPC...) Ping the remote host checkbox no no Ping the remote host[checkbox]:Make the dead hosts appear in the report Make the dead hosts appear in the report Ping the remote host checkbox no no Ping the remote host[checkbox]:Log live hosts in the report Log live hosts in the report Ping the remote host checkbox no no Ping the remote host[checkbox]:Test the local Nessus host Test the local Nessus host Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Fast network discovery Fast network discovery Ping the remote host checkbox no no Database settings[entry]:Login : Login : Database settings entry Database settings[password]:Password : Password : Database settings password Database settings[radio]:DB Type : DB Type : Database settings radio Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL Oracle Database settings[entry]:Database SID : Database SID : Database settings entry Database settings[entry]:Database port to use : Database port to use : Database settings entry Database settings[radio]:Oracle auth type: Oracle auth type: Database settings radio NORMAL;SYSOPER;SYSDBA NORMAL Database settings[radio]:SQL Server auth type: SQL Server auth type: Database settings radio Windows;SQL Windows Kerberos configuration[entry]:Kerberos Key Distribution Center (KDC) : Kerberos Key Distribution Center (KDC) : Kerberos configuration entry Kerberos configuration[entry]:Kerberos KDC Port : Kerberos KDC Port : Kerberos configuration entry 88 88 Kerberos configuration[radio]:Kerberos KDC Transport : Kerberos KDC Transport : Kerberos configuration radio udp;tcp udp Kerberos configuration[entry]:Kerberos Realm (SSH only) : Kerberos Realm (SSH only) : Kerberos configuration entry SMB Scope[checkbox]:Request information about the domain Request information about the domain SMB Scope checkbox yes yes Cleartext protocols settings[entry]:User name : User name : Cleartext protocols settings entry Cleartext protocols settings[password]:Password (unsafe!) : Password (unsafe!) : Cleartext protocols settings password Cleartext protocols settings[checkbox]:Try to perform patch level checks over telnet Try to perform patch level checks over telnet Cleartext protocols settings checkbox no no Cleartext protocols settings[checkbox]:Try to perform patch level checks over rsh Try to perform patch level checks over rsh Cleartext protocols settings checkbox no no Cleartext protocols settings[checkbox]:Try to perform patch level checks over rexec Try to perform patch level checks over rexec Cleartext protocols settings checkbox no no Login configurations[entry]:SMB account : SMB account : Login configurations entry Login configurations[password]:SMB password : SMB password : Login configurations password Login configurations[entry]:SMB domain (optional) : SMB domain (optional) : Login configurations entry Login configurations[radio]:SMB password type : SMB password type : Login configurations radio Password;LM Hash;NTLM Hash Password Login configurations[entry]:Additional SMB account (1) : Additional SMB account (1) : Login configurations entry Login configurations[password]:Additional SMB password (1) : Additional SMB password (1) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (1) : Additional SMB domain (optional) (1) : Login configurations entry Login configurations[entry]:Additional SMB account (2) : Additional SMB account (2) : Login configurations entry Login configurations[password]:Additional SMB password (2) : Additional SMB password (2) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (2) : Additional SMB domain (optional) (2) : Login configurations entry Login configurations[entry]:Additional SMB account (3) : Additional SMB account (3) : Login configurations entry Login configurations[password]:Additional SMB password (3) : Additional SMB password (3) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (3) : Additional SMB domain (optional) (3) : Login configurations entry Login configurations[checkbox]:Never send SMB credentials in clear text Never send SMB credentials in clear text Login configurations checkbox yes yes Login configurations[checkbox]:Only use NTLMv2 Only use NTLMv2 Login configurations checkbox no no SMTP settings[entry]:Third party domain : Third party domain : SMTP settings entry example.com example.com SMTP settings[entry]:From address : From address : SMTP settings entry nobody@example.com nobody@example.com SMTP settings[entry]:To address : To address : SMTP settings entry postmaster@[AUTO_REPLACED_IP] postmaster@[AUTO_REPLACED_IP] SSH settings[entry]:SSH user name : SSH user name : SSH settings entry root root SSH settings[password]:SSH password (unsafe!) : SSH password (unsafe!) : SSH settings password SSH settings[file]:SSH public key to use : SSH public key to use : SSH settings file SSH settings[file]:SSH private key to use : SSH private key to use : SSH settings file SSH settings[password]:Passphrase for SSH key : Passphrase for SSH key : SSH settings password SSH settings[radio]:Elevate privileges with : Elevate privileges with : SSH settings radio Nothing;sudo;su Nothing SSH settings[password]:su/sudo password : su/sudo password : SSH settings password SSH settings[file]:SSH known_hosts file : SSH known_hosts file : SSH settings file SSH settings[entry]:Preferred SSH port : Preferred SSH port : SSH settings entry 22 22 SMB use host SID to enumerate local users[entry]:Start UID : Start UID : SMB use host SID to enumerate local users entry 1000 1000 SMB use host SID to enumerate local users[entry]:End UID : End UID : SMB use host SID to enumerate local users entry 1200 1200 Web mirroring[entry]:Number of pages to mirror : Number of pages to mirror : Web mirroring entry 100 100 Web mirroring[entry]:Start page : Start page : Web mirroring entry / / Web mirroring[checkbox]:Follow dynamic pages : Follow dynamic pages : Web mirroring checkbox no yes Web mirroring[entry]:Excluded items regex : Excluded items regex : Web mirroring entry Web mirroring[entry]:Maximum depth : Maximum depth : Web mirroring entry 5 Web Application Tests Settings[checkbox]:Enable web applications tests Enable web applications tests Web Application Tests Settings checkbox no yes Web Application Tests Settings[entry]:Maximum run time (min) : Maximum run time (min) : Web Application Tests Settings entry 60 60 Web Application Tests Settings[checkbox]:Send POST requests Send POST requests Web Application Tests Settings checkbox no yes Web Application Tests Settings[radio]:Combinations of arguments values Combinations of arguments values Web Application Tests Settings radio one value;all pairs (slower but efficient);all combinations (extremely slow) one value Web Application Tests Settings[radio]:Stop at first flaw Stop at first flaw Web Application Tests Settings radio per port (quicker);per CGI;look for all flaws (slower) per port (quicker) Web Application Tests Settings[checkbox]:Test embedded web servers Test embedded web servers Web Application Tests Settings checkbox no no Port scanners settings[checkbox]:Check open TCP ports found by local port enumerators Check open TCP ports found by local port enumerators Port scanners settings checkbox no no Port scanners settings[checkbox]:Only run network port scanners if local port enumeration failed Only run network port scanners if local port enumeration failed Port scanners settings checkbox yes yes Nessus TCP scanner[radio]:Firewall detection : Firewall detection : Nessus TCP scanner radio Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) Automatic (normal) Do not scan fragile devices[checkbox]:Scan Network Printers Scan Network Printers Do not scan fragile devices checkbox no no Do not scan fragile devices[checkbox]:Scan Novell Netware hosts Scan Novell Netware hosts Do not scan fragile devices checkbox no no Oracle settings[entry]:Oracle SID : Oracle SID : Oracle settings entry Oracle settings[checkbox]:Test default accounts (slow) Test default accounts (slow) Oracle settings checkbox no no Global variable settings[checkbox]:Probe services on every port Probe services on every port Global variable settings checkbox yes yes Global variable settings[checkbox]:Do not log in with user accounts not specified in the policy Do not log in with user accounts not specified in the policy Global variable settings checkbox no no Global variable settings[checkbox]:Enable CGI scanning Enable CGI scanning Global variable settings checkbox no yes Global variable settings[radio]:Network type Network type Global variable settings radio Mixed (use RFC 1918);Private LAN; Public WAN (Internet) Mixed (use RFC 1918) Global variable settings[checkbox]:Enable experimental scripts Enable experimental scripts Global variable settings checkbox no yes Global variable settings[checkbox]:Thorough tests (slow) Thorough tests (slow) Global variable settings checkbox no yes Global variable settings[radio]:Report verbosity Report verbosity Global variable settings radio Normal;Quiet;Verbose Normal Global variable settings[radio]:Report paranoia Report paranoia Global variable settings radio Normal;Avoid false alarms;Paranoid (more false alarms) Normal Global variable settings[radio]:Log verbosity Log verbosity Global variable settings radio Normal;Quiet;Verbose;Debug Normal Global variable settings[entry]:Debug level Debug level Global variable settings entry 0 0 Global variable settings[entry]:HTTP User-Agent HTTP User-Agent Global variable settings entry Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Global variable settings[file]:SSL certificate to use : SSL certificate to use : Global variable settings file Global variable settings[file]:SSL CA to trust : SSL CA to trust : Global variable settings file Global variable settings[file]:SSL key to use : SSL key to use : Global variable settings file Global variable settings[password]:SSL password for SSL key : SSL password for SSL key : Global variable settings password Netware disabled Service detection enabled CISCO disabled Red Hat Local Security Checks disabled CGI abuses : XSS enabled SuSE Local Security Checks disabled HP-UX Local Security Checks disabled Web Servers enabled Misc. disabled MacOS X Local Security Checks disabled Denial of Service disabled Windows : User management disabled Gentoo Local Security Checks disabled Debian Local Security Checks disabled VMware ESX Local Security Checks disabled RPC disabled CGI abuses enabled Fedora Local Security Checks disabled CentOS Local Security Checks disabled Remote file access disabled Slackware Local Security Checks disabled Default Unix Accounts disabled Peer-To-Peer File Sharing disabled Finger abuses disabled Settings disabled Useless services disabled DNS disabled NIS disabled Firewalls disabled FTP disabled Gain a shell remotely disabled SNMP disabled Backdoors disabled Windows : Microsoft Bulletins disabled AIX Local Security Checks disabled Gain root remotely disabled FreeBSD Local Security Checks disabled Mandriva Local Security Checks disabled Databases enabled Port scanners partial General enabled Windows disabled Solaris Local Security Checks disabled Ubuntu Local Security Checks disabled SMTP problems disabled 14274 Nessus SNMP Scanner Port scanners enabled 11219 Nessus SYN scanner Port scanners disabled 10180 Ping the remote host Port scanners disabled 14272 netstat portscanner (SSH) Port scanners enabled 10335 Nessus TCP scanner Port scanners enabled 34220 netstat portscanner (WMI) Port scanners enabled Web Application Test (level 2) f78dec37-bdda-48ac-ba51-38dc32bac4ca safe_checks yes server_info_thread_manager threads max_checks 5 ntp_save_sessions yes plugin_upload yes feed_type HomeFeed server_info_nessusd_version 4.0.1 (Build 1021) stop_scan_on_hang no server_info_os Windows silent_dependencies yes plugin_upload_suffixes .nasl, .nasl3, .nasl4, .inc, .inc3, .nbin, .nlib, .audit save_knowledge_base no optimize_test yes max_hosts 40 auto_update yes use_kernel_congestion_detection no listen_address 0.0.0.0 server_info_os_version Windows listen_port 1241 port_range default slice_network_addresses no reverse_lookup yes use_mac_addr no unscanned_closed no checks_read_timeout 5 stop_scan_on_disconnect no non_simult_ports 139, 445 cgi_path /cgi-bin:/scripts server_info_libnasl_version 4.0.1 (Build 1021) server_info_libnessus_version 4.0.1 (Build 1021) log_whole_attack no throttle_scan yes plugins_timeout 320 ntp_detached_sessions yes auto_enable_dependencies yes reduce_connections_on_congestion yes Nessus SYN scanner[radio]:Firewall detection : Firewall detection : Nessus SYN scanner radio Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) Automatic (normal) HTTP login page[entry]:Login page : Login page : HTTP login page entry / / HTTP login page[entry]:Login form : Login form : HTTP login page entry HTTP login page[entry]:Login form fields : Login form fields : HTTP login page entry user=%USER%&pass=%PASS% user=%USER%&pass=%PASS% SMB use domain SID to enumerate users[entry]:Start UID : Start UID : SMB use domain SID to enumerate users entry 1000 1000 SMB use domain SID to enumerate users[entry]:End UID : End UID : SMB use domain SID to enumerate users entry 1200 1200 SNMP settings[entry]:Community name : Community name : SNMP settings entry public public SNMP settings[entry]:UDP port : UDP port : SNMP settings entry 161 161 News Server (NNTP) Information Disclosure[entry]:From address : From address : News Server (NNTP) Information Disclosure entry Nessus <listme@listme.dsbl.org> Nessus <listme@listme.dsbl.org> News Server (NNTP) Information Disclosure[entry]:Test group name regex : Test group name regex : News Server (NNTP) Information Disclosure entry f[a-z]\.tests? f[a-z]\.tests? News Server (NNTP) Information Disclosure[entry]:Max crosspost : Max crosspost : News Server (NNTP) Information Disclosure entry 7 7 News Server (NNTP) Information Disclosure[checkbox]:Local distribution Local distribution News Server (NNTP) Information Disclosure checkbox yes yes News Server (NNTP) Information Disclosure[checkbox]:No archive No archive News Server (NNTP) Information Disclosure checkbox no no Login configurations[entry]:HTTP account : HTTP account : Login configurations entry Login configurations[password]:HTTP password (sent in clear) : HTTP password (sent in clear) : Login configurations password Login configurations[entry]:NNTP account : NNTP account : Login configurations entry Login configurations[password]:NNTP password (sent in clear) : NNTP password (sent in clear) : Login configurations password Login configurations[entry]:FTP account : FTP account : Login configurations entry anonymous anonymous Login configurations[password]:FTP password (sent in clear) : FTP password (sent in clear) : Login configurations password nessus@nessus.org nessus@nessus.org Login configurations[entry]:FTP writeable directory : FTP writeable directory : Login configurations entry /incoming /incoming Login configurations[entry]:POP2 account : POP2 account : Login configurations entry Login configurations[password]:POP2 password (sent in clear) : POP2 password (sent in clear) : Login configurations password Login configurations[entry]:POP3 account : POP3 account : Login configurations entry Login configurations[password]:POP3 password (sent in clear) : POP3 password (sent in clear) : Login configurations password Login configurations[entry]:IMAP account : IMAP account : Login configurations entry Login configurations[password]:IMAP password (sent in clear) : IMAP password (sent in clear) : Login configurations password SMB Registry : Start the Registry Service during the scan[checkbox]:Start the registry service during the scan Start the registry service during the scan SMB Registry : Start the Registry Service during the scan checkbox no no Service detection[radio]:Test SSL based services Test SSL based services Service detection radio Known SSL ports;All;None Known SSL ports Ping the remote host[entry]:TCP ping destination port(s) : TCP ping destination port(s) : Ping the remote host entry built-in built-in Ping the remote host[checkbox]:Do an ARP ping Do an ARP ping Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Do a TCP ping Do a TCP ping Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Do an ICMP ping Do an ICMP ping Ping the remote host checkbox yes yes Ping the remote host[entry]:Number of retries (ICMP) : Number of retries (ICMP) : Ping the remote host entry 2 2 Ping the remote host[checkbox]:Do an applicative UDP ping (DNS,RPC...) Do an applicative UDP ping (DNS,RPC...) Ping the remote host checkbox no no Ping the remote host[checkbox]:Make the dead hosts appear in the report Make the dead hosts appear in the report Ping the remote host checkbox no no Ping the remote host[checkbox]:Log live hosts in the report Log live hosts in the report Ping the remote host checkbox no no Ping the remote host[checkbox]:Test the local Nessus host Test the local Nessus host Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Fast network discovery Fast network discovery Ping the remote host checkbox no no Database settings[entry]:Login : Login : Database settings entry Database settings[password]:Password : Password : Database settings password Database settings[radio]:DB Type : DB Type : Database settings radio Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL Oracle Database settings[entry]:Database SID : Database SID : Database settings entry Database settings[entry]:Database port to use : Database port to use : Database settings entry Database settings[radio]:Oracle auth type: Oracle auth type: Database settings radio NORMAL;SYSOPER;SYSDBA NORMAL Database settings[radio]:SQL Server auth type: SQL Server auth type: Database settings radio Windows;SQL Windows Kerberos configuration[entry]:Kerberos Key Distribution Center (KDC) : Kerberos Key Distribution Center (KDC) : Kerberos configuration entry Kerberos configuration[entry]:Kerberos KDC Port : Kerberos KDC Port : Kerberos configuration entry 88 88 Kerberos configuration[radio]:Kerberos KDC Transport : Kerberos KDC Transport : Kerberos configuration radio udp;tcp udp Kerberos configuration[entry]:Kerberos Realm (SSH only) : Kerberos Realm (SSH only) : Kerberos configuration entry SMB Scope[checkbox]:Request information about the domain Request information about the domain SMB Scope checkbox yes yes Cleartext protocols settings[entry]:User name : User name : Cleartext protocols settings entry Cleartext protocols settings[password]:Password (unsafe!) : Password (unsafe!) : Cleartext protocols settings password Cleartext protocols settings[checkbox]:Try to perform patch level checks over telnet Try to perform patch level checks over telnet Cleartext protocols settings checkbox no no Cleartext protocols settings[checkbox]:Try to perform patch level checks over rsh Try to perform patch level checks over rsh Cleartext protocols settings checkbox no no Cleartext protocols settings[checkbox]:Try to perform patch level checks over rexec Try to perform patch level checks over rexec Cleartext protocols settings checkbox no no Login configurations[entry]:SMB account : SMB account : Login configurations entry Login configurations[password]:SMB password : SMB password : Login configurations password Login configurations[entry]:SMB domain (optional) : SMB domain (optional) : Login configurations entry Login configurations[radio]:SMB password type : SMB password type : Login configurations radio Password;LM Hash;NTLM Hash Password Login configurations[entry]:Additional SMB account (1) : Additional SMB account (1) : Login configurations entry Login configurations[password]:Additional SMB password (1) : Additional SMB password (1) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (1) : Additional SMB domain (optional) (1) : Login configurations entry Login configurations[entry]:Additional SMB account (2) : Additional SMB account (2) : Login configurations entry Login configurations[password]:Additional SMB password (2) : Additional SMB password (2) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (2) : Additional SMB domain (optional) (2) : Login configurations entry Login configurations[entry]:Additional SMB account (3) : Additional SMB account (3) : Login configurations entry Login configurations[password]:Additional SMB password (3) : Additional SMB password (3) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (3) : Additional SMB domain (optional) (3) : Login configurations entry Login configurations[checkbox]:Never send SMB credentials in clear text Never send SMB credentials in clear text Login configurations checkbox yes yes Login configurations[checkbox]:Only use NTLMv2 Only use NTLMv2 Login configurations checkbox no no SMTP settings[entry]:Third party domain : Third party domain : SMTP settings entry example.com example.com SMTP settings[entry]:From address : From address : SMTP settings entry nobody@example.com nobody@example.com SMTP settings[entry]:To address : To address : SMTP settings entry postmaster@[AUTO_REPLACED_IP] postmaster@[AUTO_REPLACED_IP] SSH settings[entry]:SSH user name : SSH user name : SSH settings entry root root SSH settings[password]:SSH password (unsafe!) : SSH password (unsafe!) : SSH settings password SSH settings[file]:SSH public key to use : SSH public key to use : SSH settings file SSH settings[file]:SSH private key to use : SSH private key to use : SSH settings file SSH settings[password]:Passphrase for SSH key : Passphrase for SSH key : SSH settings password SSH settings[radio]:Elevate privileges with : Elevate privileges with : SSH settings radio Nothing;sudo;su Nothing SSH settings[password]:su/sudo password : su/sudo password : SSH settings password SSH settings[file]:SSH known_hosts file : SSH known_hosts file : SSH settings file SSH settings[entry]:Preferred SSH port : Preferred SSH port : SSH settings entry 22 22 SMB use host SID to enumerate local users[entry]:Start UID : Start UID : SMB use host SID to enumerate local users entry 1000 1000 SMB use host SID to enumerate local users[entry]:End UID : End UID : SMB use host SID to enumerate local users entry 1200 1200 Web mirroring[entry]:Number of pages to mirror : Number of pages to mirror : Web mirroring entry 100 100 Web mirroring[entry]:Start page : Start page : Web mirroring entry / / Web mirroring[checkbox]:Follow dynamic pages : Follow dynamic pages : Web mirroring checkbox no yes Web mirroring[entry]:Excluded items regex : Excluded items regex : Web mirroring entry Web mirroring[entry]:Maximum depth : Maximum depth : Web mirroring entry 5 Web Application Tests Settings[checkbox]:Enable web applications tests Enable web applications tests Web Application Tests Settings checkbox no yes Web Application Tests Settings[entry]:Maximum run time (min) : Maximum run time (min) : Web Application Tests Settings entry 60 60 Web Application Tests Settings[checkbox]:Send POST requests Send POST requests Web Application Tests Settings checkbox no yes Web Application Tests Settings[radio]:Combinations of arguments values Combinations of arguments values Web Application Tests Settings radio one value;all pairs (slower but efficient);all combinations (extremely slow) all pairs (slower but efficient) Web Application Tests Settings[radio]:Stop at first flaw Stop at first flaw Web Application Tests Settings radio per port (quicker);per CGI;look for all flaws (slower) per CGI Web Application Tests Settings[checkbox]:Test embedded web servers Test embedded web servers Web Application Tests Settings checkbox no no Port scanners settings[checkbox]:Check open TCP ports found by local port enumerators Check open TCP ports found by local port enumerators Port scanners settings checkbox no no Port scanners settings[checkbox]:Only run network port scanners if local port enumeration failed Only run network port scanners if local port enumeration failed Port scanners settings checkbox yes yes Nessus TCP scanner[radio]:Firewall detection : Firewall detection : Nessus TCP scanner radio Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) Automatic (normal) Do not scan fragile devices[checkbox]:Scan Network Printers Scan Network Printers Do not scan fragile devices checkbox no no Do not scan fragile devices[checkbox]:Scan Novell Netware hosts Scan Novell Netware hosts Do not scan fragile devices checkbox no no Oracle settings[entry]:Oracle SID : Oracle SID : Oracle settings entry Oracle settings[checkbox]:Test default accounts (slow) Test default accounts (slow) Oracle settings checkbox no no Global variable settings[checkbox]:Probe services on every port Probe services on every port Global variable settings checkbox yes yes Global variable settings[checkbox]:Do not log in with user accounts not specified in the policy Do not log in with user accounts not specified in the policy Global variable settings checkbox no no Global variable settings[checkbox]:Enable CGI scanning Enable CGI scanning Global variable settings checkbox no yes Global variable settings[radio]:Network type Network type Global variable settings radio Mixed (use RFC 1918);Private LAN; Public WAN (Internet) Mixed (use RFC 1918) Global variable settings[checkbox]:Enable experimental scripts Enable experimental scripts Global variable settings checkbox no yes Global variable settings[checkbox]:Thorough tests (slow) Thorough tests (slow) Global variable settings checkbox no yes Global variable settings[radio]:Report verbosity Report verbosity Global variable settings radio Normal;Quiet;Verbose Normal Global variable settings[radio]:Report paranoia Report paranoia Global variable settings radio Normal;Avoid false alarms;Paranoid (more false alarms) Normal Global variable settings[radio]:Log verbosity Log verbosity Global variable settings radio Normal;Quiet;Verbose;Debug Normal Global variable settings[entry]:Debug level Debug level Global variable settings entry 0 0 Global variable settings[entry]:HTTP User-Agent HTTP User-Agent Global variable settings entry Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Global variable settings[file]:SSL certificate to use : SSL certificate to use : Global variable settings file Global variable settings[file]:SSL CA to trust : SSL CA to trust : Global variable settings file Global variable settings[file]:SSL key to use : SSL key to use : Global variable settings file Global variable settings[password]:SSL password for SSL key : SSL password for SSL key : Global variable settings password Netware disabled Service detection enabled CISCO disabled Red Hat Local Security Checks disabled CGI abuses : XSS enabled SuSE Local Security Checks disabled HP-UX Local Security Checks disabled Web Servers enabled Misc. disabled MacOS X Local Security Checks disabled Denial of Service disabled Windows : User management disabled Gentoo Local Security Checks disabled Debian Local Security Checks disabled VMware ESX Local Security Checks disabled RPC disabled CGI abuses enabled Fedora Local Security Checks disabled CentOS Local Security Checks disabled Remote file access disabled Slackware Local Security Checks disabled Default Unix Accounts disabled Peer-To-Peer File Sharing disabled Finger abuses disabled Settings disabled Useless services disabled DNS disabled NIS disabled Firewalls disabled FTP enabled Gain a shell remotely enabled SNMP disabled Backdoors disabled Windows : Microsoft Bulletins disabled AIX Local Security Checks disabled Gain root remotely enabled FreeBSD Local Security Checks disabled Mandriva Local Security Checks disabled Databases enabled Port scanners partial General enabled Windows disabled Solaris Local Security Checks disabled Ubuntu Local Security Checks disabled SMTP problems disabled 14274 Nessus SNMP Scanner Port scanners enabled 11219 Nessus SYN scanner Port scanners disabled 10180 Ping the remote host Port scanners disabled 14272 netstat portscanner (SSH) Port scanners enabled 10335 Nessus TCP scanner Port scanners enabled 34220 netstat portscanner (WMI) Port scanners enabled Web Application Test (level 3) b1452ac4-c002-42c7-b169-2a9d7276db43 server_info_libnasl_version 4.0.1 (Build 1021) stop_scan_on_disconnect no log_whole_attack no host.max_simult_tcp_sessions max_simult_tcp_sessions server_info_nessusd_version 4.0.1 (Build 1021) ntp_detached_sessions yes safe_checks no unscanned_closed yes stop_scan_on_hang no listen_address 0.0.0.0 server_info_libnessus_version 4.0.1 (Build 1021) throttle_scan yes use_kernel_congestion_detection no slice_network_addresses no listen_port 1241 cgi_path /cgi-bin:/scripts plugins_timeout 320 checks_read_timeout 5 save_knowledge_base no non_simult_ports 139, 445 server_info_os Windows optimize_test yes max_hosts 40 reverse_lookup yes max_checks 5 silent_dependencies yes auto_update yes port_range default plugin_upload_suffixes .nasl, .nasl3, .nasl4, .inc, .inc3, .nbin, .nlib, .audit feed_type HomeFeed use_mac_addr no server_info_thread_manager threads auto_enable_dependencies yes ntp_save_sessions yes reduce_connections_on_congestion yes server_info_os_version Windows plugin_upload yes Nessus SYN scanner[radio]:Firewall detection : Firewall detection : Nessus SYN scanner radio Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) Automatic (normal) HTTP login page[entry]:Login page : Login page : HTTP login page entry / / HTTP login page[entry]:Login form : Login form : HTTP login page entry HTTP login page[entry]:Login form fields : Login form fields : HTTP login page entry user=%USER%&pass=%PASS% user=%USER%&pass=%PASS% SMB use domain SID to enumerate users[entry]:Start UID : Start UID : SMB use domain SID to enumerate users entry 1000 1000 SMB use domain SID to enumerate users[entry]:End UID : End UID : SMB use domain SID to enumerate users entry 1200 1200 SNMP settings[entry]:Community name : Community name : SNMP settings entry public public SNMP settings[entry]:UDP port : UDP port : SNMP settings entry 161 161 News Server (NNTP) Information Disclosure[entry]:From address : From address : News Server (NNTP) Information Disclosure entry Nessus <listme@listme.dsbl.org> Nessus <listme@listme.dsbl.org> News Server (NNTP) Information Disclosure[entry]:Test group name regex : Test group name regex : News Server (NNTP) Information Disclosure entry f[a-z]\.tests? f[a-z]\.tests? News Server (NNTP) Information Disclosure[entry]:Max crosspost : Max crosspost : News Server (NNTP) Information Disclosure entry 7 7 News Server (NNTP) Information Disclosure[checkbox]:Local distribution Local distribution News Server (NNTP) Information Disclosure checkbox yes yes News Server (NNTP) Information Disclosure[checkbox]:No archive No archive News Server (NNTP) Information Disclosure checkbox no no Login configurations[entry]:HTTP account : HTTP account : Login configurations entry Login configurations[password]:HTTP password (sent in clear) : HTTP password (sent in clear) : Login configurations password Login configurations[entry]:NNTP account : NNTP account : Login configurations entry Login configurations[password]:NNTP password (sent in clear) : NNTP password (sent in clear) : Login configurations password Login configurations[entry]:FTP account : FTP account : Login configurations entry anonymous anonymous Login configurations[password]:FTP password (sent in clear) : FTP password (sent in clear) : Login configurations password nessus@nessus.org nessus@nessus.org Login configurations[entry]:FTP writeable directory : FTP writeable directory : Login configurations entry /incoming /incoming Login configurations[entry]:POP2 account : POP2 account : Login configurations entry Login configurations[password]:POP2 password (sent in clear) : POP2 password (sent in clear) : Login configurations password Login configurations[entry]:POP3 account : POP3 account : Login configurations entry Login configurations[password]:POP3 password (sent in clear) : POP3 password (sent in clear) : Login configurations password Login configurations[entry]:IMAP account : IMAP account : Login configurations entry Login configurations[password]:IMAP password (sent in clear) : IMAP password (sent in clear) : Login configurations password SMB Registry : Start the Registry Service during the scan[checkbox]:Start the registry service during the scan Start the registry service during the scan SMB Registry : Start the Registry Service during the scan checkbox no no Service detection[radio]:Test SSL based services Test SSL based services Service detection radio Known SSL ports;All;None Known SSL ports Ping the remote host[entry]:TCP ping destination port(s) : TCP ping destination port(s) : Ping the remote host entry built-in built-in Ping the remote host[checkbox]:Do an ARP ping Do an ARP ping Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Do a TCP ping Do a TCP ping Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Do an ICMP ping Do an ICMP ping Ping the remote host checkbox yes yes Ping the remote host[entry]:Number of retries (ICMP) : Number of retries (ICMP) : Ping the remote host entry 2 2 Ping the remote host[checkbox]:Do an applicative UDP ping (DNS,RPC...) Do an applicative UDP ping (DNS,RPC...) Ping the remote host checkbox no no Ping the remote host[checkbox]:Make the dead hosts appear in the report Make the dead hosts appear in the report Ping the remote host checkbox no no Ping the remote host[checkbox]:Log live hosts in the report Log live hosts in the report Ping the remote host checkbox no no Ping the remote host[checkbox]:Test the local Nessus host Test the local Nessus host Ping the remote host checkbox yes yes Ping the remote host[checkbox]:Fast network discovery Fast network discovery Ping the remote host checkbox no no Database settings[entry]:Login : Login : Database settings entry Database settings[password]:Password : Password : Database settings password Database settings[radio]:DB Type : DB Type : Database settings radio Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL Oracle Database settings[entry]:Database SID : Database SID : Database settings entry Database settings[entry]:Database port to use : Database port to use : Database settings entry Database settings[radio]:Oracle auth type: Oracle auth type: Database settings radio NORMAL;SYSOPER;SYSDBA NORMAL Database settings[radio]:SQL Server auth type: SQL Server auth type: Database settings radio Windows;SQL Windows Kerberos configuration[entry]:Kerberos Key Distribution Center (KDC) : Kerberos Key Distribution Center (KDC) : Kerberos configuration entry Kerberos configuration[entry]:Kerberos KDC Port : Kerberos KDC Port : Kerberos configuration entry 88 88 Kerberos configuration[radio]:Kerberos KDC Transport : Kerberos KDC Transport : Kerberos configuration radio udp;tcp udp Kerberos configuration[entry]:Kerberos Realm (SSH only) : Kerberos Realm (SSH only) : Kerberos configuration entry SMB Scope[checkbox]:Request information about the domain Request information about the domain SMB Scope checkbox yes yes Cleartext protocols settings[entry]:User name : User name : Cleartext protocols settings entry Cleartext protocols settings[password]:Password (unsafe!) : Password (unsafe!) : Cleartext protocols settings password Cleartext protocols settings[checkbox]:Try to perform patch level checks over telnet Try to perform patch level checks over telnet Cleartext protocols settings checkbox no no Cleartext protocols settings[checkbox]:Try to perform patch level checks over rsh Try to perform patch level checks over rsh Cleartext protocols settings checkbox no no Cleartext protocols settings[checkbox]:Try to perform patch level checks over rexec Try to perform patch level checks over rexec Cleartext protocols settings checkbox no no Login configurations[entry]:SMB account : SMB account : Login configurations entry Login configurations[password]:SMB password : SMB password : Login configurations password Login configurations[entry]:SMB domain (optional) : SMB domain (optional) : Login configurations entry Login configurations[radio]:SMB password type : SMB password type : Login configurations radio Password;LM Hash;NTLM Hash Password Login configurations[entry]:Additional SMB account (1) : Additional SMB account (1) : Login configurations entry Login configurations[password]:Additional SMB password (1) : Additional SMB password (1) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (1) : Additional SMB domain (optional) (1) : Login configurations entry Login configurations[entry]:Additional SMB account (2) : Additional SMB account (2) : Login configurations entry Login configurations[password]:Additional SMB password (2) : Additional SMB password (2) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (2) : Additional SMB domain (optional) (2) : Login configurations entry Login configurations[entry]:Additional SMB account (3) : Additional SMB account (3) : Login configurations entry Login configurations[password]:Additional SMB password (3) : Additional SMB password (3) : Login configurations password Login configurations[entry]:Additional SMB domain (optional) (3) : Additional SMB domain (optional) (3) : Login configurations entry Login configurations[checkbox]:Never send SMB credentials in clear text Never send SMB credentials in clear text Login configurations checkbox yes yes Login configurations[checkbox]:Only use NTLMv2 Only use NTLMv2 Login configurations checkbox no no SMTP settings[entry]:Third party domain : Third party domain : SMTP settings entry example.com example.com SMTP settings[entry]:From address : From address : SMTP settings entry nobody@example.com nobody@example.com SMTP settings[entry]:To address : To address : SMTP settings entry postmaster@[AUTO_REPLACED_IP] postmaster@[AUTO_REPLACED_IP] SSH settings[entry]:SSH user name : SSH user name : SSH settings entry root root SSH settings[password]:SSH password (unsafe!) : SSH password (unsafe!) : SSH settings password SSH settings[file]:SSH public key to use : SSH public key to use : SSH settings file SSH settings[file]:SSH private key to use : SSH private key to use : SSH settings file SSH settings[password]:Passphrase for SSH key : Passphrase for SSH key : SSH settings password SSH settings[radio]:Elevate privileges with : Elevate privileges with : SSH settings radio Nothing;sudo;su Nothing SSH settings[password]:su/sudo password : su/sudo password : SSH settings password SSH settings[file]:SSH known_hosts file : SSH known_hosts file : SSH settings file SSH settings[entry]:Preferred SSH port : Preferred SSH port : SSH settings entry 22 22 SMB use host SID to enumerate local users[entry]:Start UID : Start UID : SMB use host SID to enumerate local users entry 1000 1000 SMB use host SID to enumerate local users[entry]:End UID : End UID : SMB use host SID to enumerate local users entry 1200 1200 Web mirroring[entry]:Number of pages to mirror : Number of pages to mirror : Web mirroring entry 100 100 Web mirroring[entry]:Start page : Start page : Web mirroring entry / / Web mirroring[checkbox]:Follow dynamic pages : Follow dynamic pages : Web mirroring checkbox no yes Web mirroring[entry]:Excluded items regex : Excluded items regex : Web mirroring entry Web mirroring[entry]:Maximum depth : Maximum depth : Web mirroring entry 5 Web Application Tests Settings[checkbox]:Enable web applications tests Enable web applications tests Web Application Tests Settings checkbox no yes Web Application Tests Settings[entry]:Maximum run time (min) : Maximum run time (min) : Web Application Tests Settings entry 60 60 Web Application Tests Settings[checkbox]:Send POST requests Send POST requests Web Application Tests Settings checkbox no yes Web Application Tests Settings[radio]:Combinations of arguments values Combinations of arguments values Web Application Tests Settings radio one value;all pairs (slower but efficient);all combinations (extremely slow) all combinations (extremely slow) Web Application Tests Settings[radio]:Stop at first flaw Stop at first flaw Web Application Tests Settings radio per port (quicker);per CGI;look for all flaws (slower) look for all flaws (slower) Web Application Tests Settings[checkbox]:Test embedded web servers Test embedded web servers Web Application Tests Settings checkbox no yes Port scanners settings[checkbox]:Check open TCP ports found by local port enumerators Check open TCP ports found by local port enumerators Port scanners settings checkbox no no Port scanners settings[checkbox]:Only run network port scanners if local port enumeration failed Only run network port scanners if local port enumeration failed Port scanners settings checkbox yes yes Nessus TCP scanner[radio]:Firewall detection : Firewall detection : Nessus TCP scanner radio Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) Automatic (normal) Do not scan fragile devices[checkbox]:Scan Network Printers Scan Network Printers Do not scan fragile devices checkbox no no Do not scan fragile devices[checkbox]:Scan Novell Netware hosts Scan Novell Netware hosts Do not scan fragile devices checkbox no no Oracle settings[entry]:Oracle SID : Oracle SID : Oracle settings entry Oracle settings[checkbox]:Test default accounts (slow) Test default accounts (slow) Oracle settings checkbox no no Global variable settings[checkbox]:Probe services on every port Probe services on every port Global variable settings checkbox yes yes Global variable settings[checkbox]:Do not log in with user accounts not specified in the policy Do not log in with user accounts not specified in the policy Global variable settings checkbox no no Global variable settings[checkbox]:Enable CGI scanning Enable CGI scanning Global variable settings checkbox no yes Global variable settings[radio]:Network type Network type Global variable settings radio Mixed (use RFC 1918);Private LAN; Public WAN (Internet) Mixed (use RFC 1918) Global variable settings[checkbox]:Enable experimental scripts Enable experimental scripts Global variable settings checkbox no yes Global variable settings[checkbox]:Thorough tests (slow) Thorough tests (slow) Global variable settings checkbox no yes Global variable settings[radio]:Report verbosity Report verbosity Global variable settings radio Normal;Quiet;Verbose Normal Global variable settings[radio]:Report paranoia Report paranoia Global variable settings radio Normal;Avoid false alarms;Paranoid (more false alarms) Normal Global variable settings[radio]:Log verbosity Log verbosity Global variable settings radio Normal;Quiet;Verbose;Debug Normal Global variable settings[entry]:Debug level Debug level Global variable settings entry 0 0 Global variable settings[entry]:HTTP User-Agent HTTP User-Agent Global variable settings entry Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Global variable settings[file]:SSL certificate to use : SSL certificate to use : Global variable settings file Global variable settings[file]:SSL CA to trust : SSL CA to trust : Global variable settings file Global variable settings[file]:SSL key to use : SSL key to use : Global variable settings file Global variable settings[password]:SSL password for SSL key : SSL password for SSL key : Global variable settings password Netware disabled Service detection enabled CISCO disabled Red Hat Local Security Checks disabled CGI abuses : XSS enabled SuSE Local Security Checks disabled HP-UX Local Security Checks disabled Web Servers enabled Misc. disabled MacOS X Local Security Checks disabled Denial of Service disabled Windows : User management disabled Gentoo Local Security Checks disabled Debian Local Security Checks disabled VMware ESX Local Security Checks disabled RPC disabled CGI abuses enabled Fedora Local Security Checks disabled CentOS Local Security Checks disabled Remote file access disabled Slackware Local Security Checks disabled Default Unix Accounts disabled Peer-To-Peer File Sharing disabled Finger abuses disabled Settings disabled Useless services disabled DNS disabled NIS disabled Firewalls disabled FTP enabled Gain a shell remotely enabled SNMP disabled Backdoors disabled Windows : Microsoft Bulletins disabled AIX Local Security Checks disabled Gain root remotely enabled FreeBSD Local Security Checks disabled Mandriva Local Security Checks disabled Databases enabled Port scanners partial General enabled Windows disabled Solaris Local Security Checks disabled Ubuntu Local Security Checks disabled SMTP problems disabled 14274 Nessus SNMP Scanner Port scanners enabled 11219 Nessus SYN scanner Port scanners disabled 10180 Ping the remote host Port scanners disabled 14272 netstat portscanner (SSH) Port scanners enabled 10335 Nessus TCP scanner Port scanners enabled 34220 netstat portscanner (WMI) Port scanners enabled