Nhvss (Nmap Host Vulnerability Scanner Script) is a python tool that allows you to scan a network for vulnerabilities. It uses Nmap to scan the network and uses the vulners script to scan the discovered hosts for vulnerabilities.
The script uses Nmap to index any host on the network and then uses the vulners script to scan the hosts for vulnerabilities. The hosts Networkadresses are stored in a file that goes by a similar name as YYYY-MM-DD_HH-MinMin-SS_hosts.txt. The script will then scan the hosts in the file for vulnerabilities and stores the results of each host in seperate files in the scan_history folder.
Currently the script only works on Linux systems. The script requires the following packages to be installed:
- Nmap
- Python3
To install the script you need to have Nmap and Python installed on your system. You can install Nmap by running the following command:
sudo apt-get install nmap
sudo apt-get install python3
sudo yum install nmap
sudo yum install python3
I currently don't know the command to install Nmap on Arch based systems. If you know the command please let me know.
sudo dnf install nmap
sudo dnf install python3
After you have installed Nmap and Python3 you can install the script by running the following commands:
git clone https://github.com/Moineau54/nhvss_python.git
cd Path/to/nhvss_python
Now, if you're on linux or Mac, first make the script executable by running the following command:
chmod +x install_linux_mac.sh
Then run the script by running the following command:
./install_linux_mac.sh
If you're on Windows, run the install_win.bat file.
Run the script by running the following command:
# You have to launch the script from the git repository
python /path/to/nmapy.py
The script will then ask you if you want to additionally scan the hosts for vulnerabilities. If you want to scan the hosts for vulnerabilities type y and press enter. If you don't want to scan the hosts for vulnerabilities type n and press enter.
The script is still in development and may not work as intended. If you encounter any bugs or have any suggestions please let me know.
This script is for educational and security purposes only. I am not responsible for any damage caused by the script. Use at your own risk. More on why I made this script can be found in this article on my blog.