AwesomeNmap

A curated knowledge base of Nmap NSE scripts, CVE intelligence tools, and automated reconnaissance pipelines for security professionals.

Generate Convert Improve

Install / Use

/learn @0xBugatti/AwesomeNmap

About this skill

Quality Score

0/100

README

A Curated Knowledge Base for Nmap Scripts, CVE Intelligence & Automated Reconnaissance Pipelines

<br>

A living reference of essential Nmap extensions, vulnerability feeds, and reporting tooling — maintained for security analysts, pentesters, and blue teams.

</div>

🎯 Overview

Awesomenmap is a knowledge-base repository that centralizes the most valuable Nmap NSE scripts, CVE search utilities, and post-scan reporting pipelines into a single, well-organized reference. Instead of hunting across dozens of GitHub repositories and forum posts, security practitioners can use this project as a definitive index and automation hub for all things Nmap.

The repository is intentionally kept lightweight — structured README files, shared resources, and upstream references. Third-party scripts are pulled from their original sources and kept up to date through a simple sync process.

| Capability | Description | |---|---| | Script Management | Pull and update the latest vulnerability, default-account, and version-detection NSE scripts from trusted upstream sources | | CVE Intelligence | Search known CVEs and exploits directly from the command line without leaving your terminal | | Automated Scanning | A dashboard-driven workflow assigns scanning targets, executes Nmap with the curated script set, and produces structured output | | Rich Reporting | Generate HTML scan reports and Graphviz-compatible network topology graphs for every completed scan | | Real-time Alerts | Push critical findings to a Telegram bot for instant visibility |

📂 Repository Structure

Awesomenmap/
│
├── README.md
├── LICENSE
├── .gitignore
│
├── scripts/
│   ├── nse/                           # Curated NSE scripts
│   │   ├── vulners.nse                # Vulners.com vulnerability detection
│   │   ├── nndefaccts.nse             # Default account credential checker
│   │   ├── vicarius-nmap/             # Vicarius CVE mapping scripts
│   │   ├── vulscan/                   # Vulscan alternative engine
│   │   ├── log4shell_nse.nse          # Log4Shell (CVE-2021-44228) detector
│   │   ├── ms-exchange-version.nse    # MS Exchange version enumeration
│   │   └── gitlab-version.nse         # GitLab version enumeration
│   │
│   └── cli/                           # CVE & exploit search tools
│       ├── getsploit/                 # Vulners.com exploit downloader
│       └── search_vulns/              # Multi-source CVE searcher
│
└── visualize/
    ├── nmap-dashboard.xsl             # XSLT stylesheet for HTML reports
    └── nmap-formatter/                # Graphviz network topology generator

🔧 Core NSE Script Updates

These scripts form the backbone of the vulnerability detection workflow. Keep them up to date by pulling from their official upstream repositories.

1. Vulners — Vulnerability Detection

Source: vulnersCom/nmap-vulners

Queries the Vulners.com API to match detected service versions against a comprehensive vulnerability database. Returns associated CVEs, CVSS scores, and available exploit references in real time.

cd scripts/nse/
git clone https://github.com/vulnersCom/nmap-vulners.git
cp nmap-vulners/vulners.nse ./

nmap -sV --script vulners.nse --script-args vulnersdebug=1 <target>

2. Default Accounts — Credential Auditing

Source: nnposter/nndefaccts

Checks network services for default or well-known credentials using an extensive, regularly updated dictionary of default username/password pairs. Covers routers, cameras, IoT devices, industrial controllers, and enterprise software — invaluable during initial reconnaissance to identify services using factory-default authentication.

cd scripts/nse/
git clone https://github.com/nnposter/nndefaccts.git
cp nndefaccts/nndefaccts.nse ./

nmap -p 22,23,80,443,8080 --script nndefaccts.nse <target>

3. Vicarius Nmap — CVE Mapping

Source: VicariusInc/vicarius-nmap

An alternative CVE mapping engine that cross-references detected software versions against the Vicarius vulnerability database. Complements the Vulners script by offering a second opinion on CVE coverage and surfacing discrepancies. Particularly strong for detecting known vulnerabilities in less common or niche software packages that may not receive immediate coverage in larger databases.

cd scripts/nse/
git clone https://github.com/VicariusInc/vicarius-nmap.git
cp -r vicarius-nmap/scripts/* ./

nmap -sV --script vicarius-cve <target>

🔄 Alternative: Vulscan Integration

Source: scipag/vulscan

A self-contained, offline-capable alternative to the API-dependent Vulners script. Ships with local vulnerability databases and can be extended with custom CSV/JSON feeds. Performs version-string matching against its bundled databases, making it ideal for air-gapped environments or scans where internet access during execution is restricted or undesirable.

cd scripts/nse/
git clone https://github.com/scipag/vulscan.git

nmap -sV --script=vulscan/vulscan.nse <target>

Tip: Use Vulners and Vulscan together for maximum coverage — Vulscan as the offline baseline and Vulners for real-time API enrichment.

📦 NSE Script Collections

Community-maintained collections that expand Nmap's detection capabilities beyond the official script library. Each has been vetted for quality and relevance — periodically pull the latest versions to stay current.

| Collection | Source | Focus | |---|---|---| | nmap-extra-nse | sighook/nmap-extra-nse | General-purpose auxiliary scripts not yet merged into the official Nmap distribution — custom service probes, brute-force modules, and recon helpers | | NSE_scripts | icarot/NSE_scripts | Vulnerability detection and information-gathering scripts tailored for web application auditing and service enumeration | | Custom-Nse | ibrahmsql/Custom-Nse | Individually crafted NSE scripts targeting specific vulnerabilities, unusual protocols, and emerging threat landscapes | | log4shell_nse | righel/log4shell_nse | Dedicated Log4Shell (CVE-2021-44228) detector for Java-based services — performs both header-based and DNS-based verification | | ms-exchange-version | righel/ms-exchange-version-nse | Precise Microsoft Exchange Server version fingerprinting — essential for assessing Patch

Related Skills

node-connect

354.5k

Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps

frontend-design

112.4k

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

openai-whisper-api

354.5k

Transcribe audio via OpenAI Audio Transcriptions API (Whisper).

qqbot-media

354.5k

QQBot 富媒体收发能力。使用 <qqmedia> 标签，系统根据文件扩展名自动识别类型（图片/语音/视频/文件）。