PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-12 10:49:02 +00:00
Code Issues Projects Releases Wiki Activity

changed portrule to include both ibm-db2 and drda

Browse Source 
updated script.db and removed old db2- scripts and added the new ones
changed error message returned by helper class in drda for incorrect logins
This commit is contained in:
patrik
2010-08-14 11:52:18 +00:00
parent e570925c37
commit 2c874c0ba2
4 changed files with 8 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
nselib/drda.lua
View File

@@ -610,7 +610,7 @@ Helper = {
local drda_accrdb = Command.ACCRDB( database, string.char(0x24,0x07), "DNC10060", nil, "QTDSQLASC", crrtkn, tdovr) local drda_accrdb = Command.ACCRDB( database, string.char(0x24,0x07), "DNC10060", nil, "QTDSQLASC", crrtkn, tdovr)
status, packet = self.comm:exchDRDAPacket( DRDAPacket:new( { drda_excsat, drda_accsec } ) ) status, packet = self.comm:exchDRDAPacket( DRDAPacket:new( { drda_excsat, drda_accsec } ) )
if( not(status) ) then return false, "ERROR: Login failed" end if( not(status) ) then return false, packet end
if ( packet:getDRDAByCodePoint( CodePoint.RDBNFNRM ) or if ( packet:getDRDAByCodePoint( CodePoint.RDBNFNRM ) or
packet:getDRDAByCodePoint( CodePoint.RDBAFLRM ) ) then packet:getDRDAByCodePoint( CodePoint.RDBAFLRM ) ) then

8
scripts/drda-brute.nse
View File

@@ -31,7 +31,7 @@ require "unpwdb"
-- Revised 05/10/2010 - v0.3 - revised parallellised design <patrik@cqure.net> -- Revised 05/10/2010 - v0.3 - revised parallellised design <patrik@cqure.net>
-- Revised 08/14/2010 - v0.4 - renamed script and library from db2* to drda* <patrik@cqure.net> -- Revised 08/14/2010 - v0.4 - renamed script and library from db2* to drda* <patrik@cqure.net>
portrule = shortport.port_or_service({50000,60000}, "drda", "tcp", {"open", "open|filtered"}) portrule = shortport.port_or_service({50000,60000}, {"drda","ibm-db2"}, "tcp", {"open", "open|filtered"})
--- Credential iterator --- Credential iterator
-- --
@@ -100,11 +100,11 @@ isValidDb = function( host, port, database )
status, response = helper:login( database, "dbnameprobe1234", "dbnameprobe1234" ) status, response = helper:login( database, "dbnameprobe1234", "dbnameprobe1234" )
helper:close() helper:close()
if ( not(status) and response:match("Database not found") ) then if ( not(status) and response:match("Login failed") ) then
return false
end
return true return true
end end
return false
end
--- Returns the amount of currenlty active threads --- Returns the amount of currenlty active threads
-- --

2
scripts/drda-info.nse
View File

@@ -31,7 +31,7 @@ require "drda"
-- --
portrule = shortport.version_port_or_service({50000,60000,9090,1526,1527}, portrule = shortport.version_port_or_service({50000,60000,9090,1526,1527},
{"drda"}, "tcp", {"drda","ibm-db2"}, "tcp",
{"open", "open|filtered"}) {"open", "open|filtered"})
--- Converts the prodrel server string to a version string --- Converts the prodrel server string to a version string

4
scripts/script.db
View File

@@ -15,9 +15,7 @@ Entry { filename = "couchdb-databases.nse", categories = { "discovery", "safe",
Entry { filename = "couchdb-stats.nse", categories = { "discovery", "safe", } } Entry { filename = "couchdb-stats.nse", categories = { "discovery", "safe", } }
Entry { filename = "daap-get-library.nse", categories = { "discovery", "safe", } } Entry { filename = "daap-get-library.nse", categories = { "discovery", "safe", } }
Entry { filename = "daytime.nse", categories = { "discovery", "safe", } } Entry { filename = "daytime.nse", categories = { "discovery", "safe", } }
Entry { filename = "db2-brute.nse", categories = { "auth", "intrusive", } }
Entry { filename = "db2-das-info.nse", categories = { "discovery", "safe", "version", } } Entry { filename = "db2-das-info.nse", categories = { "discovery", "safe", "version", } }
Entry { filename = "db2-info.nse", categories = { "discovery", "safe", "version", } }
Entry { filename = "dhcp-discover.nse", categories = { "default", "discovery", "intrusive", } } Entry { filename = "dhcp-discover.nse", categories = { "default", "discovery", "intrusive", } }
Entry { filename = "dns-cache-snoop.nse", categories = { "discovery", "intrusive", } } Entry { filename = "dns-cache-snoop.nse", categories = { "discovery", "intrusive", } }
Entry { filename = "dns-fuzz.nse", categories = { "fuzzer", "intrusive", } } Entry { filename = "dns-fuzz.nse", categories = { "fuzzer", "intrusive", } }
@@ -26,6 +24,8 @@ Entry { filename = "dns-random-txid.nse", categories = { "external", "intrusive"
Entry { filename = "dns-recursion.nse", categories = { "default", "intrusive", } } Entry { filename = "dns-recursion.nse", categories = { "default", "intrusive", } }
Entry { filename = "dns-service-discovery.nse", categories = { "default", "discovery", "safe", } } Entry { filename = "dns-service-discovery.nse", categories = { "default", "discovery", "safe", } }
Entry { filename = "dns-zone-transfer.nse", categories = { "default", "discovery", "intrusive", } } Entry { filename = "dns-zone-transfer.nse", categories = { "default", "discovery", "intrusive", } }
Entry { filename = "drda-brute.nse", categories = { "auth", "intrusive", } }
Entry { filename = "drda-info.nse", categories = { "discovery", "safe", "version", } }
Entry { filename = "finger.nse", categories = { "default", "discovery", "safe", } } Entry { filename = "finger.nse", categories = { "default", "discovery", "safe", } }
Entry { filename = "ftp-anon.nse", categories = { "auth", "default", "safe", } } Entry { filename = "ftp-anon.nse", categories = { "auth", "default", "safe", } }
Entry { filename = "ftp-bounce.nse", categories = { "default", "intrusive", } } Entry { filename = "ftp-bounce.nse", categories = { "default", "intrusive", } }