PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-19 20:59:01 +00:00
Code Issues Projects Releases Wiki Activity
7,278 Commits 2 Branches 0 Tags
096e40d470a409fa18ca44bff328dbfe7f7ebe9b
Commit Graph

7278 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
aca
096e40d470 Added different message in case we determine that DoS is not due to slowloris and fixed an issue with try_ssl 2012-07-21 16:33:44 +00:00
perdo
e4a6ea70b6 Applied a patch provided by jah that solves a problem with includes on windows. 2012-07-21 13:08:34 +00:00
david
3f7db8b9d3 Add flume-master-info.nse by John Bond. 2012-07-21 08:07:49 +00:00
david
48ff61a710 Handle ARPHRD_VOID in addr_ston. 
This type is used by OpenVZ venet interfaces. We "handle" such an
address type just by blanking the MAC address field.

Lack of support for this type of interface was preventing Nmap from
working on certain systems.

http://seclists.org/nmap-dev/2012/q2/763

An earlier message about this same type of interface is

http://seclists.org/nmap-dev/2009/q3/303
 2012-07-21 07:35:41 +00:00
david
3c805ed8c1 Use the secwiki page about structured script output. 2012-07-21 01:28:40 +00:00
sean
36d3dbba66 Fixed the compile time warning of warning: deleting object of polymorphic class type ‘FPHost6’ which has non-virtual destructor might cause undefined behaviour by making the destructor virtual. 2012-07-21 00:56:13 +00:00
dmiller
5b5ca64126 Add reason_ttl attribute for host/status output 2012-07-20 21:44:57 +00:00
aca
4eb88d2cde Added ssl support to http-slowloris 2012-07-20 15:49:23 +00:00
perdo
1471b7eead Add includes from the original lfs.c code, fix formatting (spaces instead of tabs). 2012-07-20 11:15:55 +00:00
ron
8b42180f31 Removed an errant call to ap(config) that ended up in the committed version of the script 2012-07-20 04:43:55 +00:00
david
20742bdde0 Ignore failure of locale.getdefaultlocale. 
This was reported to be a problem with the en_NG (Nigerian English)
locale by Kayode Adesina and Olisemeka Omo.

http://seclists.org/nmap-dev/2012/q2/965
http://seclists.org/nmap-dev/2012/q3/270

The underlying Python bug is this:

http://bugs.python.org/issue6895
 2012-07-20 01:55:25 +00:00
fyodor
f78b11d50e Give an example license line for folks who want to use a BSD-style license for their scripts 2012-07-19 23:22:24 +00:00
david
72b0056fb5 Add http-get.nse by Alex Weber. 
http://seclists.org/nmap-dev/2012/q2/935
 2012-07-19 18:15:02 +00:00
david
89e93d6836 --script-updatedb. 2012-07-19 18:14:21 +00:00
jah
1c783a920e Fixed some problems which caused snmp-interfaces to always fail after obtaining info from the IF-MIB tree walk (invalid use of the percent escape char in the replacement param to gsub and other minor errors). 
Fixed a problem which caused snmp-interfaces to always fail in the pre-scanning phase (attempt to index the undefined host table).
 2012-07-19 17:21:55 +00:00
henri
972eae8bbb Fixed CHANGELOG category tag for the r29148 entry. 2012-07-19 16:02:19 +00:00
batrick
1054c3abc7 RC4 cipher for work Ron is doing. 2012-07-19 02:47:01 +00:00
david
b4b374ce17 Be more clear about interpreting -print-prog-name=as output on AIX. 2012-07-19 00:53:22 +00:00
batrick
f404c78546 alphabetize includes 2012-07-18 22:46:38 +00:00
dmiller
1aeec5790e Add more ssl-ciphers strength ratings 
Ratings generated with this perl script:
https://gist.github.com/3130353
 2012-07-18 22:14:30 +00:00
paulino
baab50f5a6 Updates documentation about importing NSE libraries after upgrade to LUA 5.2 2012-07-18 19:11:16 +00:00
kroosec
ab2caee812 Updated lltd-discovery for parsing hostnames and outputing the network card manufacturer. 2012-07-18 12:50:11 +00:00
kroosec
6023e253dc Changed sip-enum-users which now uses brute.lua for extensions enumeration and supports iteration over custom lists and numeric ranges. 2012-07-18 12:06:33 +00:00
sean
b1555d6cce Fixed the todo about Nping should probably give you an error or warning... 
The command given was "nmap -p80 google.com" and I changed it to "nping -p80..."as that is the proper command
 2012-07-18 04:24:43 +00:00
sean
199c92c80b Updated the CHANGELOG with information about the new protocol specific packets for IPv6. 2012-07-18 04:15:08 +00:00
sean
753009b5fd Merge r29079:29256 from /nmap-exp/sean/nmap-proto6 
Added protocol-specific payloads for: 
	0x00 Hop-by-hop 
	0x2b Routing 
	0x2c Fragment 
	0x3c Destination
 2012-07-18 04:10:16 +00:00
david
bd526768c8 Update MacPorts-ports.diff. 2012-07-18 00:00:17 +00:00
fyodor
33371ef786 add a web server scaling task 2012-07-17 21:20:21 +00:00
aca
8c9d8f0bb9 Fixed an issue with wrong thread count, and the case when server crashes or is completly unavailable for some other reason 2012-07-17 19:26:18 +00:00
david
913bbd60a3 sv-tidy. 2012-07-17 18:33:40 +00:00
david
2202781cba Resolve some language i// and cpe:// mismatches. 2012-07-17 18:33:39 +00:00
david
9002e84ff4 Move various product names from i// to p// templates. 
Generally, when we know the specific name of a web server, for example,
running on an embedded system, we prefer to list the server itself in
p// and v//, and the hardware in i//, like so:

match m|| p/thttpd/ v/$1/ i/Foobar 2000 ADSL router http config/

But it's very common that match lines instead look like this:

match m|| p/Foobar 2000 ADSL router http config/ i/thttpd $1/

This commit fixes many of these, with assistance from sv-tidy.
 2012-07-17 18:33:37 +00:00
perdo
6e5b999c99 Add parts of LuaFileSystem to NSE (support for mkdir, rmdir, link). 2012-07-17 18:07:28 +00:00
perdo
6b101769d7 Add a check to see if response from which we wish to extract links is not nil. 2012-07-17 18:06:44 +00:00
david
0288accd74 Copyedit http-slowloris docs. 2012-07-17 17:19:43 +00:00
henri
a111b5bcdc [NSOCK] Sandwitched pcap_read_on_nonselect() statements between #ifndef 
PCAP_CAN_DO_SELECT guards to prevent them from being executed on systems that
actually provide selectable pcap descriptors.
 2012-07-17 16:38:15 +00:00
david
db594ed246 Fix the few instances of a capture being used in unrelated templates. 2012-07-17 16:19:19 +00:00
perdo
2424c6d2a4 Add a check to see if reponse from which we wish to extract links is not nil. 2012-07-17 16:11:10 +00:00
david
4f84ae1f13 Reorder character classes so they don't look like ranges. 
sv-tidy complains:
8487: can't parse m regex (bad character range): |^HTTP/1\.0 405 Method Not Allowed\r\nServer: Membase Server ([\w-.]+)\r\nPragma:|
8488: can't parse m regex (bad character range): |^HTTP/1\.0 405 Method Not Allowed\r\nServer: Couchbase Server ([\w-.]+)\r\nPragma:|
 2012-07-17 15:54:01 +00:00
paulino
7e9fff9dfb Temp fix to reduce the number of times this script gets executed. This change removes it from the category "version" 2012-07-17 01:37:55 +00:00
patrik
ea7da393f4 update script to work with changes made to robtex website 2012-07-16 19:46:43 +00:00
fyodor
6ea54949fb Mark some tasks done and minor reorg 2012-07-16 19:35:42 +00:00
aca
1e6344541a Merged http-slowloris from my dev branch into trunk 2012-07-16 19:27:24 +00:00
david
1cb72a4928 Do ARP/ND scan with -PR --disable-arp-ping. 
These options look contradictory, but --disable-arp-ping is really an
option to disable *implicit* ARP ping when you haven't asked for it.
Actually requesting ARP should still do ARP scan. The contradiction that
remains is the option name --disable-arp-ping, which doesn't exactly do
what it says.

The idea here is that you can just throw --disable-arp-ping at the end
of your command lines, and implicit ARP scan will always be disabled,
and any command using -PR will continue to work.
 2012-07-16 18:26:39 +00:00
david
129ebc4634 Add the --disable-arp-ping option. 
This option disables implicit ARP and ND host discovery (the implicit
discovery that would happen even if you used -Pn or IP-based discovery.)
 2012-07-16 18:11:21 +00:00
david
31bbb65c07 Add implicitARPPing option to NmapOps. 2012-07-16 18:11:20 +00:00
batrick
bbea3dc088 "Start" the worker thread so the host timeout accounting is correct. 
Also add to num_threads for accounting.
 2012-07-14 22:32:37 +00:00
kroosec
65a8490539 Small formatting change int creds.lua to adapt output when no state is provided. 2012-07-14 17:29:00 +00:00
henri
5df5c86029 Fixed inconsistent indentation, replaced spaces by tabs. 2012-07-13 23:07:06 +00:00
dmiller
4463296bf7 Modify ssl-enum-ciphers for speed and thoroughness 
Send large groups of ciphers and eliminate chosen ones until the server
gives up. This results in far fewer exchanges than trying every cipher
individually.

Also fixed a bug introduced in r26521 where failing to send NULL
compressor results in a rejected handshake, and updated the list of
ciphers from 213 to 359.

http://seclists.org/nmap-dev/2012/q3/156
 2012-07-13 22:40:00 +00:00