PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-07 13:11:28 +00:00
Code Issues Projects Releases Wiki Activity
12,849 Commits 2 Branches 0 Tags
034ea73ce3c3679f3ce91a5676b0e9da0744cedf
Commit Graph

61 Commits

Author SHA1 Message Date
dmiller
034ea73ce3 Fix EdDSA in default TLS 1.2 signature algorithms. Closes #2766 2024-01-29 18:31:36 +00:00
dmiller
94bbdba677 Localize a few functions used often 2023-05-01 17:44:41 +00:00
dmiller
3df8c7d79c TLS registry number updates from IANA 2022-08-29 22:06:37 +00:00
dmiller
7c61f7c9c3 TLS 1.3 support for NSE. Fixes #1691 2021-07-02 20:01:30 +00:00
dmiller
b9d14a40ab Be more strict about what we parse as TLS record data 2020-01-06 18:24:32 +00:00
dmiller
1ba0119372 Add a length check for certificate parsing. Fixes #1399 2018-12-02 05:48:27 +00:00
dmiller
0500811f5a Move string utility functions to stringaux.lua 2018-10-18 01:08:19 +00:00
dmiller
dcc0e3ed7e New tableaux library containing table auxiliary functions. 2018-10-17 15:34:30 +00:00
dmiller
ceb4e2dd71 Upgrade lowest-offered proto version to TLSv1.0. See ssl-ccs-injection for example 2018-09-14 20:13:53 +00:00
dmiller
26ef852a28 Move stdnse.generate_random_string to new rand.lua 2018-09-08 17:07:06 +00:00
nnposter
80e8329c73 Adds PFS tag to SRP key exchange profiles. 
Extends r37346 (bc0935a51a)
 2018-08-28 19:44:45 +00:00
dmiller
bc0935a51a Warn if no ciphers support FS. See #1309 2018-08-27 15:02:48 +00:00
dmiller
091fd560f9 Reduce sig/hash algs sent by default to reduce client_hello size 2017-10-31 04:26:58 +00:00
dmiller
8efe4f35aa Add kex strengths for alternative EC named curves 2017-10-31 04:26:57 +00:00
dmiller
c0f605052d Add some new draft PSK ciphersutes 2017-10-31 04:26:56 +00:00
dmiller
1342099614 Add short list of default EC curves to keep client_hello smaller 2017-10-31 04:26:56 +00:00
dmiller
e2ea8b8587 New script tls-alpn 2017-10-30 17:27:44 +00:00
dmiller
e8df06c61c Document the tls.servername script-arg. See #949 2017-08-07 18:16:19 +00:00
dmiller
d6e7148d9e Add some more TLS registry items (no new ciphers at this time) 2017-06-08 12:27:45 +00:00
dmiller
21553bebb9 Allow scripts to set record protocol version via tls.client_hello 2017-02-24 15:47:49 +00:00
dmiller
27785ce8e5 New script tls-ticketbleed. Closes #686 2017-02-09 21:30:14 +00:00
dmiller
5d5aa8c26c Update tls.lua assignments from IANA: ciphersuites and curves 2016-12-17 23:17:28 +00:00
dmiller
e4717fa068 Add tls.servername script-arg. Closes #540 2016-12-05 17:44:32 +00:00
dmiller
1d696c1918 Factor out handshake parsing. Trust me, it'll be worth it. 2016-09-28 13:22:41 +00:00
dmiller
95e4c05fc4 Refactor TLS record/message parsing a bit to make it clearer. 2016-09-24 00:58:27 +00:00
dmiller
4290b983d4 Fix parsing of TLS heartbeat (not used for ssl-heartbleed.nse) 2016-09-24 00:58:26 +00:00
dmiller
0df1867dd1 Convert tls.lua from bin.(un)pack to Lua 5.3 string.(un)pack 2016-08-31 02:32:27 +00:00
dmiller
1bbd6c8e90 Fix a bug: forgot to pass in the protocol version 2016-08-31 02:32:25 +00:00
dmiller
fc948c437b Add warning for SWEET32 on CBC with block size <= 64 bits 2016-08-24 16:07:57 +00:00
dmiller
cb4b46bd53 Canonicalize authors as tables instead of comma-separated strings 2016-06-09 22:46:42 +00:00
dmiller
b341915722 Deprecate RC4 ciphersuites 2016-05-02 13:55:16 +00:00
dmiller
bbee119188 Support fragmented TLS records. Closes #194 2015-10-29 22:18:32 +00:00
dmiller
ddc5762ca9 Fix reporting of DH and ECDH param sizes 
Finite-field (traditional) DH parameter strength should be reported in
bits. ECDH key strength is the size (log base 2) of the order of the
base point G (see NIST SP 800-57 rev 3 section 5.6.1)
 2015-09-16 04:51:49 +00:00
dmiller
6a38678b56 re-sync TLS ciphersuite names that changed in r34683 2015-06-23 00:08:58 +00:00
dmiller
ba38345c32 Mark some TLS ciphersuites as draft 2015-06-19 21:36:53 +00:00
dmiller
ce9eb6b0f3 Fix DH parameter extraction in tls.lua (Jacob Gajek) 2015-06-17 21:17:43 +00:00
dmiller
ab5b346352 Obey TLSv1.2 RFC regarding anonymous signature type 2015-03-25 19:35:20 +00:00
dmiller
170a45f21d Fix a typo in a debug message 2015-03-25 14:30:18 +00:00
dmiller
04fee3d14c Move TLSv1.2 signature_algorithms extension defaults into tls.lua 2015-03-25 02:29:25 +00:00
dmiller
ed86473b0c Send supported signature algorithms for TLSv1.2 2015-03-24 23:22:19 +00:00
dmiller
1fd4b3edd8 Use some sane defaults in tls.client_hello 2015-03-06 19:59:59 +00:00
dmiller
40945dc702 Send SSLv3 as record version in ClientHello for compatibility 2015-03-06 19:59:57 +00:00
dmiller
0e74dd7a35 Replace some string.char and bin.pack calls with literals 2015-02-27 19:42:56 +00:00
dmiller
e50e802c4b Remove incomplete certificate_request parser in tls.record_read 2014-12-02 18:36:17 +00:00
dmiller
8f414cfc3a Correct conversion of DH key size to RSA bit strength equivalent 2014-11-07 21:41:38 +00:00
dmiller
222b2a009d Use internal cipher/handshake scoring system instead of static datafile 2014-11-07 16:39:26 +00:00
dmiller
f365b81c23 Add server certificate message parsing to tls.lua 2014-11-05 05:55:54 +00:00
dmiller
040b813986 tls.lua: get info about a cipher suite by parsing its name 2014-11-03 21:29:31 +00:00
dmiller
e9354a4793 Add TLS_FALLBACK_SCSV checking to ssl-poodle 2014-10-22 17:01:19 +00:00
batrick
ee6622aea4 nselib stdnse.print_debug -> stdnse.debug 
$ f() { find -name \*.lua -exec /bin/echo sed -i "$1" {} \; ; }
$ f 's/stdnse.print_debug( *\([0-9]*\) *, */stdnse.debug\1(/'
$ f 's/stdnse.print_debug( *"\(.*\))/stdnse.debug1("\1)/'
 2014-08-03 00:56:45 +00:00