PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-06 04:31:29 +00:00
Code Issues Projects Releases Wiki Activity
13,343 Commits 2 Branches 0 Tags
master
Commit Graph

39 Commits

Author SHA1 Message Date
nnposter
1166133806 Add SHA-256 fingerprint, refresh documentation. Closes #2978 2024-12-15 23:49:31 +00:00
dmiller
0acdeb5487 Fix output ordering for ssl-cert, including support for EC certs. 2020-01-16 19:12:59 +00:00
dmiller
ab1deb5783 Permit ssl-cert script to run without OpenSSL (no parsing) 2020-01-08 17:39:52 +00:00
dmiller
cdf5c21951 Ensure consistent ordering of XML output in ssl-cert.nse 2020-01-08 17:39:51 +00:00
nnposter
0f3a8a7e0d * Cryptographic numbers should be output as such, 
not as userdata pointers to opaque data structures. Fixes #1876
 2020-01-02 23:31:16 +00:00
dmiller
8cb2b0ea2a Add or fix See Also links between scripts 2018-10-24 19:36:04 +00:00
dmiller
0500811f5a Move string utility functions to stringaux.lua 2018-10-18 01:08:19 +00:00
dmiller
46eca7f35f Move date/time functions from stdnse to datetime. See #517 2018-08-27 22:00:10 +00:00
dmiller
cd3253f5a2 New script, https-redirect 2018-06-28 03:43:27 +00:00
dmiller
bef97861dc Add cross-references and improve clock-skew NSEdoc 2017-10-04 18:27:31 +00:00
dmiller
e4717fa068 Add tls.servername script-arg. Closes #540 2016-12-05 17:44:32 +00:00
dmiller
087fb7be04 Add X509v3 extension parsing to NSE's sslcert code. Show Subject Alternative Name. 2016-09-17 01:54:03 +00:00
dmiller
a24006e0b7 Check the appropriate functions in portrules for SSL/TLS 2016-04-11 20:42:02 +00:00
dmiller
6a0c3e8219 Allow ascii values in cert fields (broke in r35714) 2016-03-25 14:02:02 +00:00
dmiller
7a430d154b Auto-detect UTF-16 fields in certificates and transcode to UTF-8 2016-03-19 20:44:32 +00:00
dmiller
f4619edece Update http urls for nmap.org to https 2015-11-05 20:41:05 +00:00
dmiller
ba9473543b Mixed line endings cleanup for ssl-cert.nse 2015-07-05 21:59:04 +00:00
dmiller
4d106cbe23 Remove unneeded requires 2015-02-28 12:43:59 +00:00
tomsellers
e11e03fa50 Add the signature algorithm that was used to sign the target port's x509 (TLS) certificate to the output of ssl-cert.nse 
http://seclists.org/nmap-dev/2014/q4/44
 2014-10-25 18:56:38 +00:00
dmiller
974b4430e2 Pass dates directly to format_timestamp, avoid timestamp overflow 
Should fix: http://seclists.org/nmap-dev/2014/q2/184
 2014-05-21 15:04:13 +00:00
dmiller
fb67a6717e Re-indent some libs and scripts, change 4 to 2-space indent 
Mostly found with:

    for i in nselib/*.lua scripts/*.nse; do
      echo $(perl -lne 'BEGIN{$a=$p=0}next unless $_;/^(\s*)/;' \
        -e '$l=length$1;next if$l==$p;$a+=(abs($l-$p)-$a)/$.;' \
        -e '$p=$l;END{print$a}' $i) $i
    done | sort -nr

And indented with: https://gist.github.com/bonsaiviking/8845871

whois-ip.nse was particularly mangled (probably my fault due to using
vim's built-in indentation script, but it could be structured better)
 2014-02-06 23:25:28 +00:00
david
83c8e1a9d0 Retab ssl-cert.nse. 2013-06-18 03:58:47 +00:00
dmiller
2f36d0b968 Fix date handling in ssl-cert 
Was crashing on unparseable dates (example: "2147483647Z"). Now the
exact string is placed in structured output when it cannot be
normalized. Also, the structured-format timestamp is used for Normal
output for consistency; no timezone offset was previously displayed.
 2012-09-13 20:23:07 +00:00
david
87bce81b8c Use stdnse.format_timestamp in scripts that output structured dates. 2012-09-08 16:09:15 +00:00
david
0c3e0fcc4d Structured script output. 
Scripts may now return a key–value table, or such a table in addition to
a string. The table will be automatically formatted for normal output
and will appear as a hierarchy of elements in XML output.

Some history and discussion of this development can be found at
https://secwiki.org/w/Nmap/Structured_Script_Output.

This is a merge of r29484:29569 from /nmap-exp/david/xml-output.
 2012-08-14 16:36:25 +00:00
batrick
000f6dc4d9 Lua 5.2 upgrade [1] for NSE. 
[1] http://seclists.org/nmap-dev/2012/q2/34
 2012-05-27 08:53:32 +00:00
patrik
765c5854b3 o [NSE] Added a sslcert library that gets and caches SSL certificates in the 
registry. Modified the scripts ssl-cert and ssl-google-cert-catalog to take
  advantage of this change. [Patrik]
 2012-02-23 19:26:37 +00:00
patrik
0340c7321c o [NSE] Applied patch to the ssl-cert script that adds support for getting SSL 
certificates from FTP servers. [Matt Selsky]
 2011-12-06 15:49:36 +00:00
david
15d0871a5a Add XMPP support to ssl-cert by Vasiliy Kulikov. 2011-10-04 19:32:45 +00:00
henri
9dbef5ab6e Added ssl-google-cert-catalog.nse by Vasiliy Kulikov 2011-09-22 18:37:48 +00:00
djalal
dbe7a27698 o [NSE] Updated the categories of the following scripts: 
irc-unrealircd-backdoor.nse
  iscsi-info.nse
  wdb-version.nse
  ftp-proftpd-backdoor.nse
  ssl-cert.nse
  ftp-vsftpd-backdoor.nse
  afp-path-vuln.nse
  targets-sniffer.nse
  broadcast-ms-sql-discover.nse
 2011-07-11 22:03:17 +00:00
david
e9294bbb2e Change the lookup for specialized negotiation functions in ssl-cert.nse. 
Instead of having an array called STARTTLS_PORTS, with linear lookup for
membership, defined SPECIALIZED_FUNCS, mapping port numbers to
negotiation functions. This make sit a little easier to add other SSL
negotiation mechanisms, like HTTP Upgrade.
 2011-04-18 16:07:49 +00:00
david
c3ab2d5ea4 Create a shortport.ssl function like shortport.http. Use it in ssl 
scripts.
 2011-02-22 00:46:28 +00:00
david
877cbab16f o [NSE] Added reporting of the type and bit size of certificate public 
keys to ssl-cert.nse. [Matt Selsky]
 2010-10-20 05:49:17 +00:00
david
3c89e089fc Change calls in these forms: 
socket:connect(host.ip, port.number)
socket:connect(host.ip, port.number, port.protocol)

to this:

socket:connect(host, port)

connect can take host and port tables now, and the default protocol is
taken from the port table if possible.
 2010-08-16 18:59:30 +00:00
fyodor
77ab5c4305 Remove email addresses from scripts as discussed in this thread: http://seclists.org/nmap-dev/2009/q4/466 2009-11-24 08:49:02 +00:00
tomsellers
c5d1fe5590 Minor change to ssl-cert.nse to bring display of certificate 
fingerprints (MD5/SHA) in line with documentation which indicates
that they are not displayed unless verbose output is requested.
 2009-10-13 03:01:51 +00:00
tomsellers
3b4fa34257 [NSE] Modified NSE script ssl-cert.nse to support TLS negotiation 
against SMTP ports that support it. Depends on Patrick's addition the
  of the reconnect_ssl method.  [Tom Sellers, David]
 2009-10-13 01:19:33 +00:00
david
3cc4ec9939 Add the ssl-cert.nse script, which retrieves the server SSL certificate. 2009-08-13 23:38:05 +00:00