Curl Scan

This script is a work in progress. It is not too helpful but it's kind of nice for enumeration. Curl has helped me many times during enumeration but automated like this not so much. I use it manually more often.

#!/bin/bash

if [ $# == 0 ] ; then
    echo "Usage: ./curlScan.sh <IP ADDRESS>"
    exit 1;
fi

echo "Starting Curl Scan"
echo "Scanning for open ports:"
nmap -Pn -sS -T 4 "$1" -p- | grep "^[0-9]" | cut -d "/" -f1 | tee /tmp/portList
echo "Now attempting to retrieve information:"
while read line; do
        echo "Results for $line:"
        timeout 1 curl "$1":"$line"
        if [ $? -eq 124 ]; then
                echo "  "
        fi
done < /tmp/portList

echo "Curl Scan Terminated"
rm /tmp/portList