GitPedia

Gitlab version nse

Nmap script to guess* a GitLab version.

From righel·Updated May 27, 2026·View on GitHub·

* use `--script-args="showcves"` to get version CVEs via Vulners API. * use `--script-args="subdir=/custom-subdir"` if GitLab is installed in a sub-directory. The project is written primarily in Python, distributed under the Apache License 2.0 license, first published in 2021. Key topics include: gitlab, nmap, nmap-scripts, nse.

gitlab-version-nse

Nmap script to guess* a GitLab version.

Usage

git clone https://github.com/righel/gitlab-version-nse
cd gitlab-version-nse 
nmap <target> --script ./gitlab_version.nse [--script-args="showcves", --script-args="subdir=/custom-subdir"]
  • use --script-args="showcves" to get version CVEs via Vulners API.
  • use --script-args="subdir=/custom-subdir" if GitLab is installed in a sub-directory.

sample output:

$ nmap REDACTED -p 443 --script ./gitlab_version.nse --script-args="showcves"
Starting Nmap 7.80 ( https://nmap.org ) at 2021-11-07 18:39 CET
Nmap scan report for REDACTED
Host is up (0.013s latency).

PORT     STATE SERVICE VERSION
8081/tcp open  http    nginx
| gitlab_version: 
|   cpe:/a:gitlab:gitlab:13.11.2:*:*:*:enterprise: 
|     CVE-2021-22181    4.0     https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22181
|     CVE-2021-22213    4.3     https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22213
|     CVE-2021-22214    4.3     https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22214
...
Nmap done: 1 IP address (1 host up) scanned in 0.50 seconds

How

Created a dictionary of the (webpack static assets manifest hash, release commit hash) -> gitlab version.
The list of hashes is automagically updated every day via a github action.

Contributors

Showing top 1 contributor by commit count.

righel

righel

235 commits

View all contributors on GitHub →

This article is auto-generated from righel/gitlab-version-nse via the GitHub API.Last fetched: 6/24/2026