PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-04 05:39:01 +00:00
Code Issues Projects Releases Wiki Activity

New http-fingerprints.

Browse Source 
Contributed by Jesper Kückelhahn.
Sitecore, Moodle, typo3, SquirrelMail, RoundCube.
http://seclists.org/nmap-dev/2012/q4/287
This commit is contained in:
david
2012-11-21 00:47:29 +00:00
parent 0232192312
commit 4c6253d544
1 changed files with 248 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

249
nselib/data/http-fingerprints.lua
View File

@@ -7946,6 +7946,165 @@ table.insert(fingerprints, {
}
});
-- Moodle
table.insert(fingerprints, {
category = 'cms',
probes = {
{
path = '/pix/moodlelogo.gif',
method = 'HEAD'
},
{
path = '/admin/environment.xml',
method = 'HEAD'
}
},
matches = {
{
match = '',
output = 'Moodle files'
}
}
});
-- typo3
table.insert(fingerprints, {
category = 'cms',
probes = {
{
path = '/typo3/index.php',
method = 'GET'
},
{
path = '/typo3/README.txt',
method = 'GET'
},
{
path = '/t3lib/README.txt',
method = 'GET'
},
{
path = '/typo3/sysext/t3skin/images/login/typo3logo-white-greyback.gif',
method = 'HEAD'
}
},
matches = {
{
match = 'Login to the TYPO3',
output = 'Typo3 login page'
},
{
match = 'TYPO3 Backend Administration',
output = 'Typo3 readme file'
},
{
match = 'TYPO3 Library',
output = 'Typo3 Library readme'
},
{
match = '',
output = 'Typo3 Installation'
},
}
});
------------------------------------------------
---- MAIL ----
------------------------------------------------
-- SquirrelMail
table.insert(fingerprints, {
category = 'general',
probes = {
{
path = '/squirrelmail/src/login.php', -- Might return login page with version info
method = 'GET'
},
{
path = '/webmail/src/login.php', -- Might return login page with version info
method = 'GET'
},
{
path = '/src/login.php', -- Might return login page with version info
method = 'GET'
}
},
matches = {
{
match = '<small>([^<]*)<br />', -- version extraction (squirrelMail)
output = '\\1'
},
{
match = 'squirrelmail',
output = 'SquirrelMail'
}
}
});
-- SquirrelMail files
table.insert(fingerprints, {
category = 'general',
probes = {
{
path = '/squirrelmail/images/sm_logo.png', -- Standard logo file
method = 'HEAD'
},
{
path = '/webmail/images/sm_logo.png', -- Standard logo file
method = 'HEAD'
}
},
matches = {
{
match = '',
output = 'SquirrelMail'
}
}
});
-- RoundCube
table.insert(fingerprints, {
category = 'general',
probes = {
{
path = '/',
method = 'GET'
},
{
path = '/program/',
method = 'GET'
}
},
matches = {
{
match = '<title>Index of /program</title>',
output = 'RoundCube (Directory listing)'
},
{
match = 'rcube_webmail', -- RoundCube
output = 'RoundCube'
},
}
});
-- RoundCube file
table.insert(fingerprints, {
category = 'general',
probes = {
{
path = '/skins/default/images/roundcube_logo.png', -- Standard logo file
method = 'HEAD'
}
},
matches = {
{
match = '',
output = 'RoundCube'
}
}
});
------------------------------------------------
---- UNCATEGORIZED ----
------------------------------------------------
@@ -8030,6 +8189,36 @@ table.insert(fingerprints, {
---- MISCELLANEOUS ITEMS OF INTEREST ----
------------------------------------------------
-- Moodle files
table.insert(fingerprints, {
category = 'miscellaneous',
probes = {
{
path = '/lib/db/install.xml'
},
{
path = '/lib/thirdpartylibs.xml'
},
{
path = '/local/readme.txt'
}
},
matches = {
{
match = 'XMLDB file for core Moodle tables',
output = 'Moodle db installation file'
},
{
match = '<libraries>',
output = 'Moodle thirdpartylibs.xml'
},
{
match = 'This file is part of Moodle',
output = 'Moodle local/readme.txt'
}
}
});
-- interesting README files
table.insert(fingerprints, {
category = 'miscellaneous',
@@ -8037,6 +8226,9 @@ table.insert(fingerprints, {
{
path = '/README'
},
{
path = '/README.txt'
},
{
path = '/xoda/README'
},
@@ -11418,8 +11610,9 @@ table.insert(fingerprints, {
}
});
-- Sitecore Version
table.insert(fingerprints, {
category = 'general',
category = 'cms',
probes = {
{
path = '/sitecore/shell/sitecore.version.xml',
@@ -11442,6 +11635,60 @@ table.insert(fingerprints, {
{
match = '<hr/>.*Sitecore version ([^<]*)</div>',
output = '\\1'
},
{
match = '',
output = 'Sitecore.NET login page'
}
}
});
-- Sitecore
table.insert(fingerprints, {
category = 'cms',
probes = {
{
path = '/sitecore/admin/stats.aspx', -- Removed in version 6.3.1 (rev. 110112)
method = 'HEAD'
},
{
path = '/sitecore/admin/unlock_admin.aspx', -- disabled per default in 6.2.0 (rev.100507)
method = 'HEAD'
},
{
path = '/sitecore/shell/Applications/shell.xml',
method = 'HEAD'
},
{
path = '/sitecore/admin/ShowConfig.aspx',
method = 'HEAD'
},
{
path = '/App_Config/Security/Domains.config.xml',
method = 'HEAD'
},
{
path = '/App_Config/Security/GlobalRoles.config.xml',
method = 'HEAD'
},
{
path = '/sitecore%20modules/staging/service/api.asmx',
method = 'HEAD'
},
{
path = '/sitecore%20modules/staging/workdir',
method = 'HEAD'
},
{
path = '/sitecore/system/Settings/Security/Profiles',
method = 'HEAD'
},
},
matches = {
{
match = '',
output = 'Sitecore.NET (CMS)'
}
},
});