12993 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
dmiller	03c9f34959	Fix sign and width issues around max_ips_to_scan. Fixes #2838. Fixes #2836	2024-06-04 18:22:17 +00:00
dmiller	e4a4b2854f	Fix incorrect capture used in CPE. Fixes #2848	2024-06-03 20:23:05 +00:00
dmiller	ccb536f3c2	Use Npcap-specific error messages on Windows for privilege issues.	2024-06-03 19:29:18 +00:00
dmiller	365792fda1	Add more SSL ports/services	2024-06-03 19:00:34 +00:00
dmiller	74a88c0804	Let ssl-cert grab certs from DTLS services. Fix rules for TCP-only scripts	2024-06-03 19:00:33 +00:00
dmiller	ff0b70f6dd	Make comm.lua able to talk DTLS	2024-06-03 19:00:31 +00:00
dmiller	af1b9543f9	Note and be strict about limits of comm.lua with UDP	2024-06-03 19:00:31 +00:00
dmiller	cf445db7b9	Make shortport.ssl match likely DTLS ports	2024-06-03 19:00:30 +00:00
dmiller	633bfe00b3	Allow NSE to connect via DTLS	2024-06-03 19:00:29 +00:00
dmiller	929a29d310	Fix a crash in rpc-grind when scanning a non-RPC service	2024-06-03 19:00:29 +00:00
dmiller	296d8bd1e7	Fix NSEdoc typo: 'inet6' is the address family, not 'ipv6'	2024-06-03 19:00:28 +00:00
dmiller	326f8bb22b	Accept targets from CLI even when -iL is used	2024-06-03 19:00:28 +00:00
fyodor	c0e500f453	Regenerate PDF from the fodt using newer libreoffice to avoid false positive flagging by antivirus software (fixes nmap#2856)	2024-06-01 19:40:16 +00:00
dmiller	7b551b5909	Fix #2852: add TLS support to redis.lua, better detection with -sV	2024-05-30 17:57:53 +00:00
dmiller	b6e67f834c	Fix #2854: crash if Ndiff exits with error status	2024-05-28 19:30:06 +00:00
dmiller	453f9a7e25	Use stdnse.get_script_interfaces() for all relevant scripts	2024-05-24 19:01:16 +00:00
dmiller	4ee4d9ea27	New utility function: get_script_interfaces()	2024-05-24 19:01:14 +00:00
dmiller	7e9aec6ce6	Fix inaccuracies in NSEdoc for get_interface() and get_interface_info()	2024-05-24 19:01:13 +00:00
dmiller	9ef418af4e	Allow lltd-discovery to work in IPv6 mode and add IPv6 addresses	2024-05-21 18:49:39 +00:00
dmiller	881d741dab	Remove NSEdoc for newtargets arg, provided by targets.lua instead	2024-05-21 18:49:38 +00:00
dmiller	8dfa9aef41	Note some future IPv6 possibilities	2024-05-21 18:49:38 +00:00
dmiller	41ec64ab14	Enable IPv6 capability for broadcast-bjnp-discover	2024-05-21 18:49:37 +00:00
dmiller	d59de990f2	Fix NSEdoc: new_socket option based on current address family	2024-05-21 18:49:37 +00:00
dmiller	be9c6d96ee	Handle ENETDOWN in service scan. Generally do not fatal() on socket errors there.	2024-05-21 18:49:36 +00:00
dmiller	e9ea425f12	Update docs for parallel forward-DNS lookups.	2024-05-16 19:31:48 +00:00
dmiller	adc7f02503	Increase DNS timeout times	2024-05-16 19:31:48 +00:00
dmiller	2907002faa	mass_dns: Use slow-start logic rather than max-cap when a drop is seen	2024-05-16 19:31:47 +00:00
dmiller	c80bc2efb2	Rate-limit capacity scale-downs to 1 per MIN_DNS_TIMEOUT	2024-05-16 19:31:47 +00:00
dmiller	1e964d30f5	Correctly treat A queries as alt for -6 scans, AAAA alt for -4	2024-05-16 19:31:46 +00:00
dmiller	50ceac5753	mass_dns: only scale back for initial requests ... Some requests just take longer; they may have lots of recursion or a slow authoritative server. That won't change on retransmissions, so if we treat all requests and retransmissions equally, we get a long tail of retransmits with smaller and smaller capacity (parallelism). Instead, we will use the initial-request period to determine server capacity and then not change it during the retransmit phase.	2024-05-16 19:31:45 +00:00
dmiller	8b8c6fca4e	mass_dns: Correctly handle write errors/timeouts	2024-05-16 19:31:45 +00:00
dmiller	7f7996977d	mass_dns: keep capacity higher in the case of timeouts	2024-05-14 15:26:36 +00:00
dmiller	4a5d33f502	More aggressive timeouts; favor retries and slowing parallelism instead.	2024-05-14 15:26:36 +00:00
dmiller	16c9d36148	mass_dns: prioritize sending new requests over retransmissions	2024-05-14 15:26:35 +00:00
dmiller	fe5bbce0a4	Increase number of DNS names to look up per batch.	2024-05-13 14:31:35 +00:00
dmiller	a626407796	mass_dns: Be more aggressive with timeouts but slower to increase capacity.	2024-05-13 14:31:34 +00:00
dmiller	37e0f7f80b	Improve string representation of DNS query in debug output	2024-05-13 14:31:34 +00:00
dmiller	e1a2577ffd	Reuse DNS query ID for retransmissions	2024-05-13 14:31:33 +00:00
dmiller	5c46b3b9f7	Fix memory leak: clean up alt requests	2024-05-13 14:31:33 +00:00
dmiller	0896ed3f5d	Simplify mass_dns for the case of requesting A and AAAA records	2024-05-13 14:31:32 +00:00
dmiller	43e70c09d2	Remove leftover print-debugging statement	2024-05-06 18:20:30 +00:00
dmiller	801ae30dcc	Report distinct names, not number of requests (A+AAAA)	2024-05-06 18:20:29 +00:00
fyodor	1ab52bfcce	Added commas to large numbers	2024-05-05 17:57:16 +00:00
fyodor	9ff138a5f0	Minor CHANGELOG cleanup for the release announcement	2024-05-05 16:41:00 +00:00
dmiller	4ad5e7ca22	Fix memory leak in nmap_dns.cc: call freeaddrinfo after resolve_all()	2024-05-01 22:19:33 +00:00
dmiller	d70f66a761	Use mass_dns to do forward lookups. Fixes #1451	2024-05-01 22:19:32 +00:00
dmiller	cc2b798375	Make NetBlockRandomIPv4 responsible for tracking number of random addrs	2024-05-01 22:19:31 +00:00
dmiller	5829b53691	Move log_bogus_target() to output.cc	2024-05-01 22:19:31 +00:00
dmiller	9c15b1ed55	Make HostGroupState in charge of expression parsing	2024-05-01 22:19:30 +00:00
dmiller	b940270375	Move random address generation to TargetGroup/NetBlock	2024-05-01 22:19:29 +00:00