diff --git a/CHANGELOG b/CHANGELOG index 8631039cb..ca43ddd04 100644 --- a/CHANGELOG +++ b/CHANGELOG @@ -39,6 +39,8 @@ o Reduced memory usage in several areas. The size of the internal can be light on memory. Thanks to Pavel Kankovsky for the Post size reduction patch. [David] +o Added a service probe for Kerberos on udp/88. [Patrik Karlsson] + Nmap 5.10BETA1 [2009-11-23] o Added 14 new NSE scripts for a grand total of 72! You can learn diff --git a/nmap-service-probes b/nmap-service-probes index 1908f4ff8..821a8ac41 100644 --- a/nmap-service-probes +++ b/nmap-service-probes @@ -7506,3 +7506,16 @@ ports 1604 # Citrix MetaFrame match icabrowser m|^\x30\0\x02\x31\x02\xfd\xa8\xe3\x02\0\x06\x44| p/Citrix MetaFrame/ + +##############################NEXT PROBE############################## +# Kerberos AS_REQ with realm NM, server name krbtgt/NM, missing client name. +Probe UDP Kerberos q|\x6a\x81\x6e\x30\x81\x6b\xa1\x03\x02\x01\x05\xa2\x03\x02\x01\x0a\xa4\x81\x5e\x30\x5c\xa0\x07\x03\x05\0\x50\x80\0\x10\xa2\x04\x1b\x02NM\xa3\x17\x30\x15\xa0\x03\x02\x01\0\xa1\x0e\x30\x0c\x1b\x06krbtgt\x1b\x02NM\xa5\x11\x18\x0f19700101000000Z\xa7\x06\x02\x04\x1f\x1e\xb9\xd9\xa8\x17\x30\x15\x02\x01\x12\x02\x01\x11\x02\x01\x10\x02\x01\x17\x02\x01\x01\x02\x01\x03\x02\x01\x02| +rarity 5 +ports 88 + +# OS X 10.6.2 +match kerberos m|^~m0k\xa0\x03\x02\x01\x05\xa1\x03\x02\x01\x1e\xa2\x11\x18\x0f\d{14}Z\xa4\x11\x18\x0f(\d{14}Z)\xa5\x05\x02\x03...\xa6\x03\x02\x01\x06\xa9\x04\x1b\x02NM\xaa\x170\x15\xa0\x03\x02\x01\0\xa1\x0e0\x0c\x1b\x06krbtgt\x1b\x02NM\xab\x0e\x1b\x0cNULL_CLIENT\0$| p/Mac OS X Kerberos/ o/Mac OS X/ i/server time: $1/ + +match kerberos m|^~b0`\xa0\x03\x02\x01\x05\xa1\x03\x02\x01\x1e\xa4\x11\x18\x0f(\d{14}Z)\xa5\x05\x02\x03...\xa6\x03\x02\x01<\xa9\x04\x1b\x02NM\xaa\x170\x15\xa0\x03\x02\x01\0\xa1\x0e0\x0c\x1b\x06krbtgt\x1b\x02NM\xab\x16\x1b\x14No client in request$| p/Heimdal Kerberos/ i/server time: $1/ + +match kerberos m|^~J0H\xa0\x03\x02\x01\x05\xa1\x03\x02\x01\x1e\xa4\x11\x18\x0f(\d{14}Z)\xa5\x05\x02\x03...\xa6\x03\x02\x01D\xa9\x04\x1b\x02NM\xaa\x170\x15\xa0\x03\x02\x01\0\xa1\x0e0\x0c\x1b\x06krbtgt\x1b\x02NM$| p/Windows Kerberos/ o/Windows/ i/server time: $1/