PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-06 04:31:29 +00:00
Code Issues Projects Releases Wiki Activity
13,343 Commits 2 Branches 0 Tags
master
Commit Graph

3008 Commits

Author SHA1 Message Date
nnposter
fd16f90242 Fix line wrapping 2020-08-30 22:59:57 +00:00
nnposter
c3431b9025 Stop using Shellshock in header name. Fixes #1983 2020-08-30 22:50:11 +00:00
dmiller
f4b0872288 fix license url: http -> https 2020-08-21 19:32:08 +00:00
dmiller
47cbe50afb Add cross references between the 2 whois scripts 2020-08-08 15:19:14 +00:00
nnposter
f278aca7ab Eliminate reflection false positives in http-shellshock. Closes #2089 2020-07-29 23:19:25 +00:00
nnposter
631d2556c0 SNMP scripts are enabled on non-standard ports. See #1473 2020-07-27 03:32:27 +00:00
nnposter
c4f9e48dd3 Output of matched fingerprints in http-default-accounts. Fixes #2077 2020-07-21 23:49:28 +00:00
nnposter
be25ad6005 Credential object is creds.Account, not brute.Account. See #2086 2020-07-20 20:58:30 +00:00
dmiller
030a58a26e Replace 'master' with 'controller thread' in NSE script docs/comments 2020-06-18 17:14:48 +00:00
nnposter
ae0babda4d Propagate unpwdb errors to script output. Fixes #2011 2020-06-15 03:01:35 +00:00
nnposter
e761d3e355 IPP printer status is already converted to an integer 2020-06-13 22:54:24 +00:00
nnposter
b64f17b1ad Already implemented in r29399 
See Github commit 1441aea655
 2020-05-19 23:26:10 +00:00
nnposter
eefc08e795 Add music/photo/video detection. Closes #2048 2020-05-19 22:51:29 +00:00
nnposter
97a891b3e9 Updated BACnet vendor list. Closes #1936 2020-03-01 16:31:34 +00:00
nnposter
44d7dbc517 Streamline Luhn checksum code 
Removes various floating-point hazards. Fixes #1931, closes #1932
 2020-03-01 03:50:42 +00:00
dmiller
36018c07d7 Fix a copy-paste error 2020-02-18 19:39:03 +00:00
dmiller
ad2eb47aa7 Disable Robtex NSE scripts due to API changes. 2020-02-18 19:21:46 +00:00
dmiller
e4b3f018ff Fix tor-consensus-checker, several issues. 
* Update list of directory servers from current Tor source
* Since consensus is agreed on by all directories, stop after retrieving the first one.
* Use numeric port number, not string. http.lua to be updated later to allow strings, too.
* Do not use http.lua's cache for this big document, since we're caching it ourselves.
* Permit sizes up to 3 MiB, since consensus is larger than default 2 MiB limit.
 2020-02-18 18:28:54 +00:00
dmiller
4a38853631 Don't let UDP decoding bugs kill broadcast-listener main thread 2020-02-18 17:37:57 +00:00
dmiller
5d281d0e6e Avoid infinite runtime in snmp-brute due to 'Invalid reuse of a socket' killing send thread. 2020-02-18 17:02:39 +00:00
dmiller
f15fc6bb78 Allow broadcast-dhcp-discover to receive more than 1 response. Fixes #1908 2020-02-05 18:32:14 +00:00
dmiller
6fb2172ca2 Fix script crash: can't pack binary data as zero-terminated if it contains zeros. 2020-02-05 04:30:56 +00:00
dmiller
d341c45cf4 Fix io.close calls in whois-ip 2020-02-04 18:57:02 +00:00
dmiller
817797290a New script uptime-agent-info 2020-01-20 15:02:29 +00:00
dmiller
8df11582e6 Move comma-separated list code to outlib 2020-01-19 16:37:36 +00:00
dmiller
8e145819c2 Remove an unneeded very verbose debug statement. 2020-01-19 16:37:35 +00:00
dmiller
0acdeb5487 Fix output ordering for ssl-cert, including support for EC certs. 2020-01-16 19:12:59 +00:00
dmiller
17416feb5e New outlib library for output-related functions 2020-01-16 19:12:58 +00:00
nnposter
c4ecf225dd Add script argument to force specific MAC address. See #1838 2020-01-15 01:20:36 +00:00
dmiller
f974b625d2 New, broader portrule for SSH scripts. Closes #1825 2020-01-10 05:32:08 +00:00
dmiller
d63d6a8c97 Update TLS-ALPN ids from IANA. Closes #1849 2020-01-09 17:59:17 +00:00
dmiller
ab1deb5783 Permit ssl-cert script to run without OpenSSL (no parsing) 2020-01-08 17:39:52 +00:00
dmiller
cdf5c21951 Ensure consistent ordering of XML output in ssl-cert.nse 2020-01-08 17:39:51 +00:00
nnposter
0f3a8a7e0d * Cryptographic numbers should be output as such, 
not as userdata pointers to opaque data structures. Fixes #1876
 2020-01-02 23:31:16 +00:00
nnposter
ccdb816552 Avoid traversing dot and dot-dot directories 2019-12-19 20:16:23 +00:00
nnposter
6998bfca49 Refactors function smb.find_files() 
- Replaces its coroutine design to avoid sharing sockets across threads
    (Fixes #1837)
  - Corrects conversion of file attributes into bitmask
  - Removes side effect of modifying parameter "options" by populating
    member "srch_attrs"
  - Implements options.maxfiles to take advantage of script arg ls.maxfiles,
    reducing file requests that would be ultimately ignored anyway
  - Improves performace by supporting larger SMB block sizes
  - Implements rudimentary support for Trans2_Data by smb.send_transaction2()
  - Adds standard definitions for SMB file attributes
 2019-12-19 20:13:16 +00:00
dmiller
f566d59595 Clean up output and clarify warnings. See #1818 2019-11-11 14:54:53 +00:00
nnposter
29b147e4b6 Corrects a typo. Closes #1816 2019-11-08 20:35:14 +00:00
dmiller
3c24eda4be Consolidate some error handling, standardize geoip coordinates, fix output bugs. Fixes #1744 2019-09-20 04:40:20 +00:00
dmiller
881c38cefb Fix a bug in broadcast-ping: concat instead of comma 2019-09-19 17:31:58 +00:00
dmiller
e38e834ffc port_or_service takes 2 args, not a table. Fixes #1748 2019-09-19 17:31:57 +00:00
nnposter
991a2fa888 Rectifies an error when smb.list_dialects() fails. Closes #1726 2019-09-05 22:36:26 +00:00
nnposter
59c53f07fd Prevent an error when optional argument "overrides" is not passed 
Prevent a potentially unexpected side-effect when the argument is passed.
 2019-09-05 21:56:54 +00:00
david
8712cbf9a2 Fix /author/.../feed/ capture in http-wordpress-users.nse. 
Patch by Duarte.
https://seclists.org/nmap-dev/2019/q3/17

The regular expression for the case when the server returns a 200 HTTP
status is too open, it needs to be more specific.

When there is a link similar to the feed link that occurs before the
feed link, the expression will include everything between that initial
link and the feed link.

To fix this, the group that matches/captures the author username will
only do so until it finds a forward slash.
 2019-08-22 23:08:31 +00:00
paulino
645a9180ed Fixes script.db 2019-08-05 18:28:09 +00:00
paulino
4f5b659767 Adds new NSE library for DICOM and scripts dicom-ping and dicom-brute to discover and brute force DICOM servers 2019-08-05 06:30:36 +00:00
dmiller
14b63a8ffe Update script.db 2019-08-02 04:21:40 +00:00
dmiller
cbb759565f Fix a bug: string.gsub, not string.sub 2019-08-02 04:21:39 +00:00
dmiller
13d70d9ac7 Avoid a crash by making sure response *has* a location header 2019-08-02 04:21:38 +00:00
dmiller
5ad05bdbab Note that resolveall.nse is replaced by --resolve-all option [ci skip] 2019-07-25 14:13:28 +00:00