PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-05 22:19:03 +00:00
Code Issues Projects Releases Wiki Activity
5,206 Commits 2 Branches 0 Tags
0f4be2ccb6c70a735dc5a40e7bbb9c196638dcd9
Commit Graph

5206 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
0f4be2ccb6 Change the "jabber" service in nmap-service-probes to "xmpp-server" to 
match nmap-services.
 2011-04-18 18:33:48 +00:00
david
e9294bbb2e Change the lookup for specialized negotiation functions in ssl-cert.nse. 
Instead of having an array called STARTTLS_PORTS, with linear lookup for
membership, defined SPECIALIZED_FUNCS, mapping port numbers to
negotiation functions. This make sit a little easier to add other SSL
negotiation mechanisms, like HTTP Upgrade.
 2011-04-18 16:07:49 +00:00
david
7a2b7781f7 Add an http-enum fingerprint for /crossdomain.xml, which is used to 
grant permission to Adobe Flash players to make connections.
 2011-04-17 18:32:37 +00:00
fyodor
fc39ab542b Some updates (recently finished tasks) for the week 2011-04-13 20:08:40 +00:00
david
fb18ead35c Fix typoed variable name in http-vhosts.nse. 2011-04-11 02:35:49 +00:00
david
fc1f3a7ed1 Fix off-by-one array alignment in port reasons. 
The affected codes were those between ER_ECHOREPLY and
ER_ADDRESSMASKREPLY.

 # symbol               reason_text      reason_pl_text
-- ------               -----------      --------------
12 ER_ECHOREPLY         echo-reply       echo-replies
13 --                   unknown          unknowns
14 ER_DESTUNREACH       unknown          unknowns
15 ER_SOURCEQUENCH      dest-unreach     dest-unreaches
16 ER_NETPROHIBITED     source-quench    source-quenches
17 ER_HOSTPROHIBITED    net-prohibited   net-prohibiteds
18 --                   host-prohibited  host-prohibiteds
19 --                   unknown          unknowns
20 ER_ADMINPROHIBITED   unknown          unknowns
21 --                   admin-prohibited admin-prohibiteds
22 ER_TIMEEXCEEDED      unknown          unknowns
23 --                   time-exceeded    time-exceededs
24 --                   unknown          unknowns
25 ER_TIMESTAMPREPLY    unknown          unknowns
26 --                   timestamp-reply  timestamp-replies
27 --                   unknown          unknowns
28 --                   unknown          unknowns
29 --                   unknown          unknowns
30 ER_ADDRESSMASKREPLY  addressmask-reply addressmask-replies
 2011-04-08 20:18:55 +00:00
david
544753fb4f Add missing final entry in reason_pl_text. 2011-04-08 07:34:28 +00:00
batrick
9d2463b9cd comment clarifying -1 case 2011-04-05 19:34:34 +00:00
patrik
bbbccd4e01 o [NSE] Added the afp-ls script that lists files accessible on remote 
AFP Volumes. [Patrik]
 2011-04-05 08:31:34 +00:00
david
f43ca1ae27 Restore a check for nmap.is_privileged to targets-sniffer.nse. I asked 
Nick to remove this, but it turns out nmap.pcap_open has a bad failure
mode when you're not root. It sleeps for several seconds then throws an
error. So rather than tackle that I'll add this check back to the
script.
 2011-04-05 06:12:03 +00:00
david
d0bcacd18a Check if we have an interface to work with in the prerule of 
targets-sniffer.nse.
 2011-04-05 06:12:02 +00:00
david
067d7d9660 Put targets-sniffer.nse in "broadcast". 2011-04-05 06:12:00 +00:00
david
aa3a9baac8 Add the targets-sniffer script by Nick Nikolaou. 2011-04-05 06:11:59 +00:00
david
c36cf833e6 Add the nmap.get_interface and nmap.get_interface_info functions by 
Djalal Harouni.
 2011-04-05 06:11:58 +00:00
david
d0ea18119c Add epmd-info script from Toni Ruottu. 2011-04-04 18:28:33 +00:00
fyodor
8663bf9b17 Note minor NSEDoc issues discovered by Toni Ruottu in http://seclists.org/nmap-dev/2011/q1/1095 2011-04-04 15:49:39 +00:00
david
8757392fb5 Remove "-p 5353 <target>" from the @usage of 
broadcast-dns-service-disocvery.nse. It's not needed for the broadcast
script.
 2011-04-03 21:00:37 +00:00
patrik
c7af8736a7 Applied the following patch from Chris Woodbury to make ms-sql-info run less 
often: http://seclists.org/nmap-dev/2011/q1/1102 [Patrik]
 2011-04-03 20:44:42 +00:00
djalal
4ea062b1e3 Check if the added target is too long. Currently we are using std::string objects to store new targets but we want to make sure that the script is not adding long strings. 2011-04-03 14:38:34 +00:00
patrik
0ee33e4cb7 o Moved afp.username and afp.password arguments to afp-library. 
o Add support for getting file-dates, acls and sizes
[Patrik]
 2011-04-03 12:53:12 +00:00
david
a97ae2d949 Remove the todo about version scripts and service fingerprints. This was 
based on a misunderstanding by me and wasn't a real problem.
 2011-04-03 01:36:44 +00:00
david
4d1b301f43 Enable NSEDoc for json.generate; this should be a public function. 2011-04-02 16:28:14 +00:00
david
650ede916a Remove unused send_ip_raw function. 2011-04-01 21:17:01 +00:00
luis
e04f9d24ec Add note about how the current echo server zeroes application layer data before encapsulating packets in NEP_ECHO messages, and how in the future we may want to extend the echo protocol to allow stripped-packet transport 2011-04-01 14:38:18 +00:00
david
603082755d Change the http-affiliate-id registry key to be named after the script. 2011-04-01 06:48:55 +00:00
david
e63a6b7d4c Include the path in http-affiliate-id postrule output. 2011-04-01 06:48:53 +00:00
david
585e25ba02 Add postrule to http-affiliate-id.nse by Daniel Miller that shows groups 
of targets using the same ID.
 2011-04-01 06:48:52 +00:00
david
1d9bf8bef5 Expanded Amazon pattern for http-affiliate-id from Daniel Miller. 2011-04-01 06:17:15 +00:00
david
a37ea09b90 Add TODO not to show a service fingerprint if the service is matched by 
NSE; http://seclists.org/nmap-dev/2011/q1/1055.
 2011-04-01 06:17:14 +00:00
batrick
e791c0e4ab style changes 2011-03-31 20:42:49 +00:00
david
6fdca6e01f Better Amazon associates match: allow '?'. 2011-03-31 20:32:56 +00:00
david
d4dd71261d Documentation, whitespace, style in http-affiliate-id. 2011-03-31 20:32:55 +00:00
david
f522332a89 Add http-affiliate-id.nse, originally from Hani Benhabiles, then patched 
by Daniel Miller.
 2011-03-31 20:32:50 +00:00
fyodor
674b8ffecb Note some done tasks 2011-03-30 22:15:09 +00:00
david
58e9346684 Split apart the calls to inet_ntoa from r22818; we can't call it twice 
in the same statement or the static buffer is overwritten.
 2011-03-30 21:07:37 +00:00
david
61e8dfc660 Improve the message "WARNING: Unable to find appropriate interface for 
system route to..." to include the destination and netmask, not only the
gateway.
 2011-03-30 20:53:30 +00:00
djalal
fea17448d3 Adjust the output sample of the nsedoc. 2011-03-30 10:52:41 +00:00
fyodor
c4f133158b Add a real-life postrule example now that we have one 2011-03-29 00:01:58 +00:00
david
cd462ade8f Whitespace in dns.lua: Expand tabs, remove trailing space, change from 
3-space to 4-space indents.
 2011-03-28 22:52:37 +00:00
david
7453ec34d0 Change o.TimeSinceStartMS returning milliseconds to o.TimeSinceStart 
returning floating-point seconds. Everywhere o.TimeSinceStartMS was
called, the return value was being divided by 1000.0, which had the same
effect but would overflow when the difference exceeded about 25 days
(2^31 milliseconds). This patch is by Daniel Miller.
 2011-03-28 20:34:32 +00:00
david
0fb893af03 CHANGELOG typo, thanks Djala. 2011-03-27 22:21:24 +00:00
david
9449ead98e Oops, I got confused in my inbox and put Toni's name in place of Henri's 
for the ssh-hostkey postrule. Sorry Henri!
 2011-03-27 22:05:28 +00:00
david
2b898d61f7 o [NSE] ssh-hostkey now additionally has a postrule that prints hosts 
that have the same hostkey. [Toni Ruottu]
 2011-03-27 22:04:13 +00:00
david
0805e9d62e Add dns-nsec-enum to CHANGELOG. 2011-03-27 05:10:44 +00:00
david
03a42edfe5 Parse more than one type bitmap block in an NSEC record if present. 2011-03-27 05:07:26 +00:00
david
6d90b593b7 Change the "name" member of a decoded NSEC record to be called 
"next_dname" instead.
 2011-03-27 05:07:16 +00:00
david
4f054a058e Remove intermediate calculations from a decoded NSEC table: WinBlockNo, 
bmplength, and bin. Factor out a function to read the type bitmap.
 2011-03-27 05:07:03 +00:00
david
477bd66fc9 Merge r22369:22777 from /nmap-exp/david/nmap-nsec. This adds the 
dns-nsec-enum script, originally by John Bond and improved by him and
me.

Changes in dns.lua:
  Add dnssec option to dns.query that adds an OPT RR with the DO (DNSSEC
    okay) flag set.
  Add answer fetcher for NSEC records (unused currently).
  Add decoder for NSEC records.
  Add rudimentary handling of the additional section in dns.encode.
  Add a check that a decoder exists before trying to call it.
 
Also added a copy of the simplified BSD license that the new script is
under.
 2011-03-27 04:24:43 +00:00
david
e1e50c819d CHANGELOG: 
o Nmap no longer searches for data files (like nmap-services) in the
  current directory as a last resort. This is to reduce the chance of
  accessing an unexpected file in case the system-installed data files
  are not found. The main reason for searching the current directory
  was to support running ./nmap from a source directory. This is now
  supported by searching the directory containing the Nmap executable
  for data files. On non-Windows platforms, the executable directory
  followed by "../share/nmap" is also searched. Thanks to Solar
  Designed for implementation advice. [David]
 2011-03-26 06:48:36 +00:00
david
b9ffdfb9d0 Document new search path procedure in refguide.xml. 2011-03-26 06:48:34 +00:00