PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-16 11:29:02 +00:00
Code Issues Projects Releases Wiki Activity
6,696 Commits 2 Branches 0 Tags
089d697e98e070d367f9f88003dd91c19ae256db
Commit Graph

1379 Commits

Author SHA1 Message Date
patrik
f592b85e59 o [NSE] Added new script broadcast-ataoe-discover, which discovers ATA over 
Ethernet capable devices through LAN ethernet broadcasts. [Patrik Karlsson]
 2012-03-17 22:49:40 +00:00
david
9cd1ef697b Update nsock_tod before creating a timer. 
nsock_tod is Nsock's idea of the current time. It is updated when an
nsock_pool is initialized, on each iteration of nsock_loop, and in a few
other places. What could go wrong, with respect to timers, is a sequence
like this:
	nsp_new
	[... some long delay ...]
	nsock_create_timer(timeout)
	nsock_loop
The time elapsed after the creatino of the timer until it fires would
not be timeout, but rather timeout - delay. If the delay was long
enough, the timer would fire as loop as nsock_loop was entered.

This showed itself in IPv6 OS detection. We schedule 6 timers
immediately, 100 ms apart. If the pcap_open or anything else took too
long, then the timers would fire all at once. This messed up the
calculation of the TCP_ISR feature.

Perhaps we should do this when any new event is created? It is already
done manually at the beginning of each of the connect functions.
 2012-03-16 20:02:57 +00:00
patrik
17247c681a o [NSE] Added a stun library and the scripts stun-version and stun-info, which 
extract version information and the external NAT:ed address.
  [Patrik Karlsson]
 2012-03-16 11:36:51 +00:00
patrik
523dbc609a o [NSE] Added the script duplicates which attempts to determine duplicate 
hosts by analyzing information collected by other scripts. [Patrik Karlsson]
 2012-03-12 22:24:58 +00:00
fyodor
7452fbc800 We'll release 5.61TEST5 on March 9 rather than March 8 2012-03-09 07:01:56 +00:00
david
d65d87df74 CHANGELOG for host.os restructuring. 2012-03-09 02:35:41 +00:00
fyodor
c707f3dbdc I think I'm done with the CHANGELOG\! 2012-03-09 02:15:25 +00:00
fyodor
7c4cb56bbe Almost done with CHANGELOG 2012-03-09 01:33:31 +00:00
david
9fa9e89cc6 Add to CHANGELOG: 
o Fixed an error where very long long messages could cause an
  assertion failure: "log_vwrite: vsnprintf failed.  Even after
  increasing bufferlen to ---, Vsnprintf returned -1 (logt == 1)."
  This was reported by David Hingos.

o Fixed an assertion failure that was printed when a fatal error
  occurred while an XML tag was incomplete: "!xml.tag_open, file
  ..\xml.cc, line 401". This was reported by David Hingos.
 2012-03-09 00:23:50 +00:00
fyodor
24d8b585b2 some initial work on the CHANGELOG 2012-03-08 22:08:51 +00:00
patrik
542ed0bf67 o [NSE] Added the script acarsd-info that retrieves information from the acarsd 
decoder daemon. [Brendan Coles]
 2012-03-08 18:22:00 +00:00
patrik
1384a953a1 o [NSE] Added an EAP library and the script eap-info which discovers supported 
EAP authentication methods. [Riccardo Cecolin]
 2012-03-08 18:00:35 +00:00
patrik
cde380ea2c o [NSE] Added a Versant object database library and the scripts 
broadcast-versant-locate and versant-info. The first discovers Versant
  databases on the LAN and the second queries them for information. [Patrik]
 2012-03-08 17:51:48 +00:00
patrik
480e5ac605 o [NSE] Added the library rpcap and the scripts rpcap-brute and rpcap-info 
which perform brute force password guessing and extract information from the
  WinPcap Remote Packet Capture daemon. [Patrik]
 2012-03-02 12:39:18 +00:00
patrik
43253cea53 o [NSE] Added authentication support to MongoDB library and modified existing 
scripts to support it. Added the script mongodb-brute to perform password
  brute force guessing. [Patrik]
 2012-03-02 12:28:30 +00:00
henri
b1086ac340 Added a --nsock-engine option to nmap, nping and ncat to enforce use of a 
given nsock IO engine. [Henri]
 2012-03-01 09:05:02 +00:00
tomsellers
9f4fcc4da5 [NSE] Added support to broadcast-listener for extracting address, native vlan and management IP address from CDP packets. 2012-02-25 17:18:22 +00:00
patrik
f8784f8829 o [NSE] Added the script broadcast-networker-discover that discoverer EMC 
Networker servers on the LAN. [Patrik]
 2012-02-25 16:06:30 +00:00
patrik
2881ec0a19 o [NSE] Added RPC Call CALLIT to the RPC library and modified UDP sockets to be 
unconnected in order to support broadcast. [Patrik]
 2012-02-25 15:59:41 +00:00
david
bdea1b3a9c IPv6 OS in CHANGELOG. 2012-02-23 23:11:44 +00:00
patrik
765c5854b3 o [NSE] Added a sslcert library that gets and caches SSL certificates in the 
registry. Modified the scripts ssl-cert and ssl-google-cert-catalog to take
  advantage of this change. [Patrik]
 2012-02-23 19:26:37 +00:00
patrik
72af4637b0 o [NSE] Added host based registry, which allows scripts to share data between 
scripts scanning a specific host. [Patrik]
 2012-02-22 20:03:15 +00:00
patrik
bd2c9e01f6 o [NSE] Applied patch from Andrew Orr that fixes the recent changes in the 
BitCoin protocol. [Patrik]
 2012-02-20 19:12:38 +00:00
patrik
8f7461b357 o [NSE] Added a Network Data Management Protocol (ndmp) library and the 
scripts:
  + ndmp-version - retrieves version information
  + ndmp-fs-info - retrieves information about remote filesystems
  [Patrik]
 2012-02-19 14:56:17 +00:00
patrik
13b6b01e21 o [NSE] Added the script http-vuln-cve2010-2861 to detect the Cold Fusion 
CVE-2010-2861 directory traversal vulnerability. [Micah Hoffman]
 2012-02-19 14:40:01 +00:00
patrik
494a935d30 Add new edns-client-subnet script and library changes to CHANGELOG 2012-02-19 14:04:31 +00:00
tomsellers
7807926f15 [NSE] Added support for decoding EIGRP broadcasts from Cisco routers to broadcast-listener.nse 2012-02-12 21:20:16 +00:00
patrik
48423a8a88 o [NSE] Added redirect support to the http library. All calls to http.get and 
http.head now transparently handle any HTTP redirects. [Patrik]
 2012-02-11 13:37:40 +00:00
david
c68af471b0 Add asn-to-prefix.nse by John Bond. 2012-02-06 08:20:53 +00:00
patrik
557874588f o [NSE] Modified the sql-injection script to use the httpspider library. 
[Lauri Kokkonen]
 2012-02-05 13:47:31 +00:00
patrik
908ac61fb0 o [NSE] Added a rsync library and two new script: 
+ rsync-list-modules - list available rsync modules
  + rsync-brute - attempts to brute force passwords against a rsync module
  [Patrik]
 2012-02-05 10:10:59 +00:00
david
ab9a5ed614 CHANGELOG for --with-apr and --with-subversion. 2012-02-01 00:38:44 +00:00
patrik
f75c3678a0 o [NSE] Added voldemort-info, that retrieves cluster and store information 
from the Voldemort distributed key-value store. [Patrik]
 2012-01-31 20:32:37 +00:00
patrik
321e63a86d o [NSE] Added http-qnap-nas-info, that retrieves the model, firware version, 
and enabled services from a QNAP Network Attached Storage (NAS) device.
  [Brendan Coles]
 2012-01-31 20:22:42 +00:00
patrik
af3734f41f o [NSE] Fixed a bunch of global access errors in various libraries reported by 
the nse_check_globals script. [Patrik]
 2012-01-30 23:13:35 +00:00
patrik
5575943ea0 o [NSE] Added url-snarf. The script sniffs the network for URLs in HTTP 
traffic and prints the URL together with the originating IP. [Patrik]
 2012-01-29 08:23:30 +00:00
patrik
3633c502b6 o [NSE] Added http-auth-finder. The scripts spiders a site looking for URLs 
requiring form- or HTTP-based authentication. [Patrik]
 2012-01-29 06:23:35 +00:00
henri
255c2a0a9b Fixed an assertion failure which could occur when connecting to an SSL server: 
nsock_core.c:186: update_events: Assertion `(ev_inc & ev_dec) == 0' failed.

Thanks to Ron for reporting the bug and testing.
See: http://seclists.org/nmap-dev/2012/q1/235
 2012-01-27 15:46:32 +00:00
david
22c17fa05d Add cccam-version.nse. 2012-01-27 01:13:35 +00:00
patrik
0ad978d3b8 o [NSE] Added the scripts xdmcp-discover, broadcast-xdmcp-discover and the 
X Display Manager Control Protocol (xdmcp) library. The scripts discover
  hosts either using unicast or broadcast and try to detect supported
  authentication and authorization mechanisms. [Patrik]
 2012-01-26 19:35:19 +00:00
david
74785f0591 Remove remaining unused nmap-service-probes captures. 2012-01-26 09:21:29 +00:00
david
6bf7110c89 Remove most unused captures from nmap-service-probes. 
This patch is from Lauri Kokkonen.
http://seclists.org/nmap-dev/2012/q1/219
 2012-01-26 09:21:22 +00:00
patrik
5b05cbe46e o [NSE] Added script iax2-brute and supporting IAX2 library that performs 
brute-force password guessing against the Asterisk IAX2 protocol. [Patrik]
 2012-01-24 20:55:29 +00:00
patrik
f3d48111b9 o Added service probe for the Erlang Port Mapper Daemon. [Patrik] 2012-01-24 20:18:47 +00:00
patrik
5ef9f2a70d o [NSE] Added script broadcast-dhcp6-discover and supporting DHCPv6 library. 
The script retrieves and prints an IPv6 address and some of the DHCP6
  options. [Patrik]
 2012-01-24 19:54:50 +00:00
david
b4dee08825 CHANGELOG for IPv6 OS novelty detection. 2012-01-21 16:05:23 +00:00
patrik
1670f59210 o [NSE] Added script dns-srv-enum that enumerates DNS service records for a 
given domain. [Patrik]
 2012-01-19 00:49:48 +00:00
patrik
2a2f64590a o [NSE] Added script nessus-xmlrpc-brute that performs brute force password 
guessing against the Nessus web GUI. [Patrik]
 2012-01-17 11:53:23 +00:00
patrik
c579d844ba o [NSE] Added script dns-nsid by John Bond, that retrieves name server ID and 
version information.

o [NSE] Applied patch to DNS library by John Bond that adds support for the
  CHAOS class and NSID requests.
 2012-01-17 11:37:19 +00:00
patrik
14c553c2e0 o [NSE] Changed the dnsbl library to take a threaded approach into querying 
DNSBL provides drastically improving performance. [Patrik]

o [NSE] Applied patch from Duarte Silva to dnsbl adding new services and the
  ATTACK category. [Duarte Silva]
 2012-01-15 11:38:35 +00:00