PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-06 05:26:34 +00:00
Code Issues Projects Releases Wiki Activity
10,167 Commits 2 Branches 0 Tags
11683228495ae57acab820cfd3c19db59d5a40ac
Commit Graph

10167 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
fyodor
f78b11d50e Give an example license line for folks who want to use a BSD-style license for their scripts 2012-07-19 23:22:24 +00:00
david
72b0056fb5 Add http-get.nse by Alex Weber. 
http://seclists.org/nmap-dev/2012/q2/935
 2012-07-19 18:15:02 +00:00
david
89e93d6836 --script-updatedb. 2012-07-19 18:14:21 +00:00
jah
1c783a920e Fixed some problems which caused snmp-interfaces to always fail after obtaining info from the IF-MIB tree walk (invalid use of the percent escape char in the replacement param to gsub and other minor errors). 
Fixed a problem which caused snmp-interfaces to always fail in the pre-scanning phase (attempt to index the undefined host table).
 2012-07-19 17:21:55 +00:00
henri
972eae8bbb Fixed CHANGELOG category tag for the r29148 entry. 2012-07-19 16:02:19 +00:00
batrick
1054c3abc7 RC4 cipher for work Ron is doing. 2012-07-19 02:47:01 +00:00
david
b4b374ce17 Be more clear about interpreting -print-prog-name=as output on AIX. 2012-07-19 00:53:22 +00:00
batrick
f404c78546 alphabetize includes 2012-07-18 22:46:38 +00:00
dmiller
1aeec5790e Add more ssl-ciphers strength ratings 
Ratings generated with this perl script:
https://gist.github.com/3130353
 2012-07-18 22:14:30 +00:00
paulino
baab50f5a6 Updates documentation about importing NSE libraries after upgrade to LUA 5.2 2012-07-18 19:11:16 +00:00
kroosec
ab2caee812 Updated lltd-discovery for parsing hostnames and outputing the network card manufacturer. 2012-07-18 12:50:11 +00:00
kroosec
6023e253dc Changed sip-enum-users which now uses brute.lua for extensions enumeration and supports iteration over custom lists and numeric ranges. 2012-07-18 12:06:33 +00:00
sean
b1555d6cce Fixed the todo about Nping should probably give you an error or warning... 
The command given was "nmap -p80 google.com" and I changed it to "nping -p80..."as that is the proper command
 2012-07-18 04:24:43 +00:00
sean
199c92c80b Updated the CHANGELOG with information about the new protocol specific packets for IPv6. 2012-07-18 04:15:08 +00:00
sean
753009b5fd Merge r29079:29256 from /nmap-exp/sean/nmap-proto6 
Added protocol-specific payloads for: 
	0x00 Hop-by-hop 
	0x2b Routing 
	0x2c Fragment 
	0x3c Destination
 2012-07-18 04:10:16 +00:00
david
bd526768c8 Update MacPorts-ports.diff. 2012-07-18 00:00:17 +00:00
fyodor
33371ef786 add a web server scaling task 2012-07-17 21:20:21 +00:00
aca
8c9d8f0bb9 Fixed an issue with wrong thread count, and the case when server crashes or is completly unavailable for some other reason 2012-07-17 19:26:18 +00:00
david
913bbd60a3 sv-tidy. 2012-07-17 18:33:40 +00:00
david
2202781cba Resolve some language i// and cpe:// mismatches. 2012-07-17 18:33:39 +00:00
david
9002e84ff4 Move various product names from i// to p// templates. 
Generally, when we know the specific name of a web server, for example,
running on an embedded system, we prefer to list the server itself in
p// and v//, and the hardware in i//, like so:

match m|| p/thttpd/ v/$1/ i/Foobar 2000 ADSL router http config/

But it's very common that match lines instead look like this:

match m|| p/Foobar 2000 ADSL router http config/ i/thttpd $1/

This commit fixes many of these, with assistance from sv-tidy.
 2012-07-17 18:33:37 +00:00
perdo
6e5b999c99 Add parts of LuaFileSystem to NSE (support for mkdir, rmdir, link). 2012-07-17 18:07:28 +00:00
perdo
6b101769d7 Add a check to see if response from which we wish to extract links is not nil. 2012-07-17 18:06:44 +00:00
david
0288accd74 Copyedit http-slowloris docs. 2012-07-17 17:19:43 +00:00
henri
a111b5bcdc [NSOCK] Sandwitched pcap_read_on_nonselect() statements between #ifndef 
PCAP_CAN_DO_SELECT guards to prevent them from being executed on systems that
actually provide selectable pcap descriptors.
 2012-07-17 16:38:15 +00:00
david
db594ed246 Fix the few instances of a capture being used in unrelated templates. 2012-07-17 16:19:19 +00:00
perdo
2424c6d2a4 Add a check to see if reponse from which we wish to extract links is not nil. 2012-07-17 16:11:10 +00:00
david
4f84ae1f13 Reorder character classes so they don't look like ranges. 
sv-tidy complains:
8487: can't parse m regex (bad character range): |^HTTP/1\.0 405 Method Not Allowed\r\nServer: Membase Server ([\w-.]+)\r\nPragma:|
8488: can't parse m regex (bad character range): |^HTTP/1\.0 405 Method Not Allowed\r\nServer: Couchbase Server ([\w-.]+)\r\nPragma:|
 2012-07-17 15:54:01 +00:00
paulino
7e9fff9dfb Temp fix to reduce the number of times this script gets executed. This change removes it from the category "version" 2012-07-17 01:37:55 +00:00
patrik
ea7da393f4 update script to work with changes made to robtex website 2012-07-16 19:46:43 +00:00
fyodor
6ea54949fb Mark some tasks done and minor reorg 2012-07-16 19:35:42 +00:00
aca
1e6344541a Merged http-slowloris from my dev branch into trunk 2012-07-16 19:27:24 +00:00
david
1cb72a4928 Do ARP/ND scan with -PR --disable-arp-ping. 
These options look contradictory, but --disable-arp-ping is really an
option to disable *implicit* ARP ping when you haven't asked for it.
Actually requesting ARP should still do ARP scan. The contradiction that
remains is the option name --disable-arp-ping, which doesn't exactly do
what it says.

The idea here is that you can just throw --disable-arp-ping at the end
of your command lines, and implicit ARP scan will always be disabled,
and any command using -PR will continue to work.
 2012-07-16 18:26:39 +00:00
david
129ebc4634 Add the --disable-arp-ping option. 
This option disables implicit ARP and ND host discovery (the implicit
discovery that would happen even if you used -Pn or IP-based discovery.)
 2012-07-16 18:11:21 +00:00
david
31bbb65c07 Add implicitARPPing option to NmapOps. 2012-07-16 18:11:20 +00:00
batrick
bbea3dc088 "Start" the worker thread so the host timeout accounting is correct. 
Also add to num_threads for accounting.
 2012-07-14 22:32:37 +00:00
kroosec
65a8490539 Small formatting change int creds.lua to adapt output when no state is provided. 2012-07-14 17:29:00 +00:00
henri
5df5c86029 Fixed inconsistent indentation, replaced spaces by tabs. 2012-07-13 23:07:06 +00:00
dmiller
4463296bf7 Modify ssl-enum-ciphers for speed and thoroughness 
Send large groups of ciphers and eliminate chosen ones until the server
gives up. This results in far fewer exchanges than trying every cipher
individually.

Also fixed a bug introduced in r26521 where failing to send NULL
compressor results in a rejected handshake, and updated the list of
ciphers from 213 to 359.

http://seclists.org/nmap-dev/2012/q3/156
 2012-07-13 22:40:00 +00:00
henri
a2f308a8f8 Removed duplicate declaration of a msiod *nsi variable. 
It's used two times, in two separate blocks of the function. Therefore it was
declared twice (once per block), then got moved toplevel but the second
declaration was forgotten somehow.

This doesn't actually change anything (identical objdump -d diff) but makes code
nicer.
 2012-07-13 21:18:03 +00:00
kroosec
aac6c1d03a Added OSPF support to broadcast-listener. 2012-07-13 15:02:09 +00:00
kroosec
71bfe5c700 Added ospf library that was written by Patrik and added documentation and some bug fixes to it. 2012-07-13 14:55:34 +00:00
kroosec
e1793d5961 tls-nextprotoneg: Replaced hard fixed protocols search for a dynamic extraction one. 2012-07-13 10:29:35 +00:00
henri
f66e0fcfb9 Ensure that inheritable_socket() returned a valid FD before passing it to Setsockopt(). 2012-07-12 17:17:46 +00:00
henri
51cf3b0df9 Fixed a false positive in http-vuln-cve2011-3192.nse, which detected Apache 
2.2.22 as vulnerable.

The corresponding ChangeLog entry for Apache 2.2.22 says:
"""
Fix a regression introduced by the CVE-2011-3192 byterange fix in 2.2.20:
A range of '0-' will now return 206 instead of 200.
"""
https://issues.apache.org/bugzilla/show_bug.cgi?id=51878
 2012-07-12 17:00:41 +00:00
aca
f083222ea9 Ooops. Forgot the returns 2012-07-10 21:18:23 +00:00
aca
7161193756 Added a patch by Patrick. A cleaner way to deal with varargs. 2012-07-10 20:58:44 +00:00
aca
c6ed7023c4 Brute and unpwdb lib improvements that allow more flexible iterator specifications. Merge from my dev branch. 2012-07-10 16:35:48 +00:00
patrik
6dd99f410b removed the ms-sql-dac script from default and made the port discovery 
run in parallell against multiple database instances.
 2012-07-10 10:08:42 +00:00
patrik
9236196d42 o [NSE] Added ms-sql-dac script which queries the Microsoft SQL Browser service 
for the DAC (Dedicated Admin Connection) port. [Patrik Karlsson]
 2012-07-10 09:50:51 +00:00