Two More Days to Get an iPad Air w/ Smart Keyboard with any 5 or 6 Day SANS Training - Register Today!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Introduction to Writing Nmap NSE Scripts

  • Tuesday, June 02, 2020 at 10:30 AM EDT (2020-06-02 14:30:00 UTC)
  • Jon Gorenflo

You can now attend the webcast using your mobile device!



Nmap is the go to port scanner for attackers, defenders, and administrators, and the 598 Nmap Scripting Engine scripts make Nmap a great lightweight vulnerability scanner. But have you ever needed to scan for something when there were no scripts available? Would you like to be able to write your own checks for configuration problems or less publicized vulnerabilities? Tune in to learn the basics of writing your own NSE scripts. After we cover some basic concepts, and discuss a few useful tools, well go through the process of creating an NSE script to scan for the Webmin backdoor that was released as a Zero Day vulnerability at DefCon last year.

Speaker Bio

Jon Gorenflo

Jon is the Founder and Principle Consultant of Fundamental Security, a small consulting firm focused on penetration testing, incident response, and strategic security consulting.He has worked in Information Technology since 2004, and has focused on Information Security since 2006. Most recently, he was the Application Security Testing manager a Fortune 500 Financial Institution, and a Security Architect and Penetration Tester for a Fortune 500 retailer. In all, he has performed security engineering, security architecture, incident response, and penetration testing in the government, retail, and finance.

Passionate about security and leadership, he loves trying to ignite those passions in other people. Jon is proud to have served in the Army Reserve for 11 years, where he became a Warrant Officer and served one tour in Afghanistan. He currently maintains the GCIH, GPEN, GAWN, GMOB, CISSP, and Security+.

"I really appreciated Jon's way of teaching, insight and passion. It kept me interested each and every day and I kept looking forward to the next day. Keep up the excellent work!" Homer Rodriguez, Idaho Department of Finance

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.