o [NSE] Applied patch to http-fingerprints adding support for identifying DCVS

systems Git, Mercurial and Bazaar. [Hani Benhabiles]
2025-12-15 04:09:01 +00:00 · 2011-12-25 21:57:11 +00:00
parent 068c6273ec
commit bd1b7dfaad
2 changed files with 43 additions and 0 deletions
--- a/nselib/data/http-fingerprints.lua
+++ b/nselib/data/http-fingerprints.lua
@@ -956,6 +956,16 @@ table.insert(fingerprints, {
 	}
 })

+table.insert(fingerprints, {
+	category='general',
+	probes={
+	{path='/clientaccesspolicy.xml', method='HEAD'},
+	},
+	matches= {
+		{output='Microsoft Silverlight crossdomain policy'}
+	}
+})
+
 table.insert(fingerprints, {
 	category='general',
 	probes={
@@ -2710,6 +2720,36 @@ table.insert(fingerprints, {
 	}
 })

+table.insert(fingerprints, {
+	category='attacks',
+	probes={
+	{path='/.git/HEAD', method='GET'},
+	},
+	matches= {
+		{match='ref: refs', output='Git folder'}
+	}
+})
+
+table.insert(fingerprints, {
+	category='attacks',
+	probes={
+	{path='/.hg/requires', method='GET'},
+	},
+	matches= {
+		{match='revlogv1', output='Mercurial folder'}
+	}
+})
+
+table.insert(fingerprints, {
+	category='attacks',
+	probes={
+	{path='/.bzr/README', method='GET'},
+	},
+	matches= {
+		{match='This is a Bazaar', output='Bazaar folder'}
+	}
+})
+
 table.insert(fingerprints, {
        category='attacks',
        probes={