PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-15 20:29:03 +00:00
Code Issues Projects Releases Wiki Activity
6,589 Commits 2 Branches 0 Tags
13b6b01e219ce02469bb63ff24c41362bba2cc38
Commit Graph

1369 Commits

Author SHA1 Message Date
patrik
13b6b01e21 o [NSE] Added the script http-vuln-cve2010-2861 to detect the Cold Fusion 
CVE-2010-2861 directory traversal vulnerability. [Micah Hoffman]
 2012-02-19 14:40:01 +00:00
patrik
80e998b91f o [NSE] Added support for edns-client-subnet requests to the DNS library and 
the script dns-client-subnet-scan that scans for addresses resolved from
  different subnets. [John Bond]
 2012-02-19 13:22:20 +00:00
patrik
4fef5ad096 Added terminal server type and fixed a bug that would prevent the script from 
completing when a type name could not be translated. [Patrik]
 2012-02-17 08:48:41 +00:00
tomsellers
7807926f15 [NSE] Added support for decoding EIGRP broadcasts from Cisco routers to broadcast-listener.nse 2012-02-12 21:20:16 +00:00
patrik
631515a5ed Removed dependency of non-existing ms-sql-discover script reported by 
Tom Sellers.
 2012-02-12 15:49:24 +00:00
patrik
fccccff960 * bugfixes to several http scripts related to new redirect code in http 
library
* added option to httpspider that allows passing the redirect_ok closure to
  the http library
[Patrik]
 2012-02-11 22:37:14 +00:00
fyodor
2dea1e46f8 Some minor NSEDoc updates on scripts we completed in January 2012 2012-02-10 08:08:51 +00:00
fyodor
444db54fc5 Made some minor improvements to the nsedoc for some scripts written in December 2012-02-10 02:01:35 +00:00
tomsellers
78b99eec3c Removed svn:execute property from certain .NSE scripts. This was enabling the execute bit on files when they were checked out. 2012-02-08 04:11:10 +00:00
david
7e64d85bcf AS32 not AS12. 2012-02-07 21:52:10 +00:00
fyodor
3d025e074e update the example command/output for the script to use an example from stanford 2012-02-07 21:46:16 +00:00
fyodor
68f5b44981 note that we received permission to use this service from Shadowserver 2012-02-07 21:28:01 +00:00
david
75a2b3a936 Add more ports to the rule for cccam-version. 
Based on service submissions.
 2012-02-07 18:16:09 +00:00
david
320f3121bd Allow asn-to-prefix.asn to be a scalar, not a table. 2012-02-06 08:20:55 +00:00
david
9258c496cd Add asn-to-prefix.nse to "external" and "safe". 2012-02-06 08:20:54 +00:00
david
c68af471b0 Add asn-to-prefix.nse by John Bond. 2012-02-06 08:20:53 +00:00
martin
d35adefe15 Fixed issue where file basename and/or suffix were missing, making the backup finder 
issue strange requests.
 2012-02-05 19:40:54 +00:00
patrik
557874588f o [NSE] Modified the sql-injection script to use the httpspider library. 
[Lauri Kokkonen]
 2012-02-05 13:47:31 +00:00
patrik
908ac61fb0 o [NSE] Added a rsync library and two new script: 
+ rsync-list-modules - list available rsync modules
  + rsync-brute - attempts to brute force passwords against a rsync module
  [Patrik]
 2012-02-05 10:10:59 +00:00
robert
37d099c4f0 Added hash for PHP 5.3.9 and 5.3.10. 2012-02-04 16:24:43 +00:00
patrik
8d6d8ef597 Fixed some typos and did minor changes to script documentation 2012-02-03 11:56:44 +00:00
patrik
2d55f8822c Fixed a number of bugs and prepared the library to handle the new redirect 
code being added to the http-library. [Patrik]
 2012-02-02 21:23:19 +00:00
patrik
e0697de6f1 fixed bug in helper instantiation that would prevent the script from running 2012-02-01 16:27:24 +00:00
patrik
7a4ffa429e fixed undeclared variables 2012-02-01 15:49:54 +00:00
fyodor
be30624e7c remove a newline which caused whitespace problem in generated nsedoc 2012-01-31 20:41:15 +00:00
patrik
f75c3678a0 o [NSE] Added voldemort-info, that retrieves cluster and store information 
from the Voldemort distributed key-value store. [Patrik]
 2012-01-31 20:32:37 +00:00
patrik
321e63a86d o [NSE] Added http-qnap-nas-info, that retrieves the model, firware version, 
and enabled services from a QNAP Network Attached Storage (NAS) device.
  [Brendan Coles]
 2012-01-31 20:22:42 +00:00
patrik
3c986d3544 applied patch by Michael Kohl that fixes a bug in the HTTP redirect code of the 
http-generator script.
 2012-01-29 15:32:09 +00:00
patrik
46e25ee97c fixed indentation and added some missing documentation 2012-01-29 15:16:05 +00:00
patrik
dc5dfa84fc documentation updates for url-snarf and changed so 0s would make the script run 
until ctrl+break is forced.
 2012-01-29 10:56:06 +00:00
patrik
0e75bceb37 Changed default timeout to 30s for url-snarf, rather than infinite 2012-01-29 10:51:57 +00:00
patrik
3fe1a5f44f Added the broadcast category to the url-snarf script 2012-01-29 08:29:42 +00:00
patrik
5575943ea0 o [NSE] Added url-snarf. The script sniffs the network for URLs in HTTP 
traffic and prints the URL together with the originating IP. [Patrik]
 2012-01-29 08:23:30 +00:00
patrik
3633c502b6 o [NSE] Added http-auth-finder. The scripts spiders a site looking for URLs 
requiring form- or HTTP-based authentication. [Patrik]
 2012-01-29 06:23:35 +00:00
patrik
1c38198c02 Changed JSON null-check to the json.NULL constant per David's recommendation. 2012-01-29 05:52:04 +00:00
patrik
6724733817 Fixed a bunch of script errors reported by Duarte Silva: 
http://seclists.org/nmap-dev/2012/q1/246
 2012-01-28 22:03:11 +00:00
patrik
fb546789a1 Fixed bug that would make the script crash if no domain argument was specified. 2012-01-28 21:34:11 +00:00
patrik
fb3eb4c6c5 Fixed a bug in http-auth that failed to report errors properly. 2012-01-28 18:13:15 +00:00
david
22c17fa05d Add cccam-version.nse. 2012-01-27 01:13:35 +00:00
patrik
0ad978d3b8 o [NSE] Added the scripts xdmcp-discover, broadcast-xdmcp-discover and the 
X Display Manager Control Protocol (xdmcp) library. The scripts discover
  hosts either using unicast or broadcast and try to detect supported
  authentication and authorization mechanisms. [Patrik]
 2012-01-26 19:35:19 +00:00
david
fe96153a91 Remove --- from some non-NSEDoc comments. 2012-01-26 17:07:43 +00:00
patrik
5b05cbe46e o [NSE] Added script iax2-brute and supporting IAX2 library that performs 
brute-force password guessing against the Asterisk IAX2 protocol. [Patrik]
 2012-01-24 20:55:29 +00:00
patrik
5ef9f2a70d o [NSE] Added script broadcast-dhcp6-discover and supporting DHCPv6 library. 
The script retrieves and prints an IPv6 address and some of the DHCP6
  options. [Patrik]
 2012-01-24 19:54:50 +00:00
patrik
055ff59b94 Add support for adding discovered hosts as new targets. Added XMPP client-to- 
server discovery. [Patrik]
 2012-01-24 17:56:50 +00:00
henri
1f431b953f Consistent naming of the address fields between IPv4 and IPv6. 
All IP packet objects now have the following attributes:

  - ip_bin_src (binary src address)
  - ip_bin_dst (binary dst address)
  - ip_src (decimal-dotted string src address)
  - ip_dst (decimal-dotted string dst address)

The ip6_src and ip6_dst attributes have therefore been renamed (ip_bin_src and
ip_bin_dst).

This patch also updates the scripts accordingly.
 2012-01-21 14:46:00 +00:00
henri
399d2416b5 Removed declarations of unused variables. 2012-01-19 22:03:06 +00:00
patrik
1670f59210 o [NSE] Added script dns-srv-enum that enumerates DNS service records for a 
given domain. [Patrik]
 2012-01-19 00:49:48 +00:00
patrik
bf3f668223 Fixed a bug where the script would crash if the error code could not be 
determined properly.
 2012-01-19 00:38:00 +00:00
patrik
2a2f64590a o [NSE] Added script nessus-xmlrpc-brute that performs brute force password 
guessing against the Nessus web GUI. [Patrik]
 2012-01-17 11:53:23 +00:00
patrik
c579d844ba o [NSE] Added script dns-nsid by John Bond, that retrieves name server ID and 
version information.

o [NSE] Applied patch to DNS library by John Bond that adds support for the
  CHAOS class and NSID requests.
 2012-01-17 11:37:19 +00:00