Nazi404/Black_NSE
Custom Nmap Scripting Engine (NSE) collection for advanced reconnaissance, leakage detection & stealth fingerprinting.
π· Black_NSE
Custom Nmap Scripting Engine (NSE) collection for advanced reconnaissance, leakage detection & stealth fingerprinting.
π About
Black_NSE is an open-source Nmap NSE script collection focused on automating advanced web reconnaissance tasks.
It helps identify misconfigurations, exposed secrets, insecure headers, hidden resources, and behavioral fingerprints commonly leveraged during security assessments and penetration testing.
This project is designed to be lightweight, modular, and automation-friendly.
π Scripts
| Script Name | Description |
|---|---|
title.nse |
Redirect-aware web fingerprinting using HTTP responses |
headers-grabber.nse |
HTTP response header fingerprinting to detect technologies, security headers & misconfigurations |
secret-finder.nse |
Scans for exposed sensitive files, configs, backups, keys & debug artifacts |
π Installation
git clone https://github.com/Nazi404/Black_NSE.git
cd Black_NSEβ Usage
πΉ Title Fingerprint Script
nmap --script=./title.nse target.com -p80,443πΉ HTTP Headers Grabber
nmap --script=./headers-grabber.nse target.com -p80,443πΉ Secret Finder
nmap --script=./secret-finder.nse target.com -p80,443π§ͺ Sample Output (headers-grabber)
PORT STATE SERVICE
80/tcp open http
| header-grabber:
|
| [INFO] Status: 301
| content-type: text/plain
| date: Wed, 31 Dec 2025 14:26:50 GMT
| content-length: 0
| server: proxygen-bolt
| connection: close
|_ location: https://www.facebook.com/π§ͺ Sample Output (title)
PORT STATE SERVICE
80/tcp open http
|_title: Status: 302 | Title: <hidden>
443/tcp open https
|_title: Status: 200 | Title: BBC Home - Breaking News, World News, US News, Sports, Business, Innovation, Climate, Culture, Travel, Video & Audioπ§ͺ Sample Output (secret-finder)
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
| secret-finder: [INFO] [200] /
| [INFO] [200] /images
| [CRITICAL] [403] /.svn
| [CRITICAL] [403] /.svn/
| [CRITICAL] [403] /.htaccess
| [CRITICAL] [403] /.htpasswd
| [CRITICAL] [403] /.htaccess.bak
|_ [CRITICAL] [403] /.htpasswd.bak
1503/tcp filtered imtc-mcs
1719/tcp filtered h323gatestat
1720/tcp filtered h323q931
2000/tcp filtered cisco-sccpβ Disclaimer
This project is created strictly for educational purposes and authorized security testing only.
Unauthorized scanning or misuse of these scripts against systems without permission is illegal.
The author holds no responsibility for any misuse.
π¨βπ» Author
William Steven
Team: Nazi404
π License
This project is licensed under the GPL-3.0 License.