Hi, my first mail to this list, I have used (and modified) quite a few NSE scripts for SNMP. Anyhow, AFAIK, all SNMP scripts (except "snmp-info") are limited to SNMPv1 and SNMPv2c:
nmap --script-help=snmp* | grep -B3 -A1 -i v3 ---------------------------------- snmp-info Categories: default version safe https://nmap.org/nsedoc/scripts/snmp-info.html Extracts basic information from an SNMPv3 GET request. The same probe is used here as in the service version detection scan. ---------------------------------- The "snmp-info" script does use SNMPv3, but without accepting any SNMPv3 credential parameters, such as: securityName authProtocol privProtocol authKey privKey securityLevel context (I am not sure if such parameters rather should be included in nselib/creds.lua) The snmp lib does not take SNMPv3 in account either: nselib/snmp.lua ---------------------------------- local version_to_num = {v1=0, v2c=1} local num_to_version = {[0]="v1", [1]="v2c"} ---------------------------------- As far as I can see, there are no proposal for SNMPv3 scripts: https://secwiki.org/w/Nmap/Script_Ideas My question: Has there been any intention to implement this in the past, and/or has it been discarded for some reason? Best Regards, Johan Kuuse
_______________________________________________ Sent through the dev mailing list https://nmap.org/mailman/listinfo/dev Archived at https://seclists.org/nmap-dev/
