PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-24 00:19:01 +00:00
Code Issues Projects Releases Wiki Activity
10,564 Commits 2 Branches 0 Tags
1e1f744186113454d21a8b2226eb54abf3b685cc
Commit Graph

2474 Commits

Author SHA1 Message Date
paulino
429215565c Removes obsolete script. Closes #519 2016-08-22 01:34:02 +00:00
paulino
442b82e260 Adds nil check 2016-08-21 23:16:40 +00:00
paulino
cb9a184732 Fixes error handling and improves error message by including the URL to download the database 2016-08-21 22:31:48 +00:00
dmiller
b5656da197 Fix a bug in dns-fuzz, missing table.concat 2016-08-20 04:53:35 +00:00
dmiller
11c2662a40 Avoid integer overflow in signed pack by using literal string 2016-08-20 00:08:00 +00:00
dmiller
5022aaf794 Avoid error thrown when pcap read times out on firewall-bypass.nse 2016-08-20 00:07:59 +00:00
dmiller
66fb5fba22 Avoid an error thrown in ssl-enum-ciphers with connect problems 2016-08-20 00:07:58 +00:00
dmiller
df4ef0cb91 Add a cache for geoip lookups. 2016-08-19 18:33:02 +00:00
dmiller
907ea3793f geolocation lat, lon are floats, not integers. 2016-08-19 18:33:01 +00:00
nnposter
14cfbc6084 Improves efficiency of script http-default-accounts by sharing probe results across fingerprints. Closes #516 2016-08-19 15:01:04 +00:00
dmiller
265e32dbd6 Avoid a couple potential format string problems 2016-08-18 23:53:45 +00:00
abhishek
6e983b9e45 Fix timeout problem for http-slowloris 2016-08-17 06:33:30 +00:00
dmiller
23ed953352 Check for non-200 responses that may indicate url is present. 2016-08-16 04:52:11 +00:00
nnposter
aaa4508ceb Updated @output and @xmloutput documentation sections in script ssl-enum-cpihers to be consistent. Fixes #475 2016-08-11 23:56:18 +00:00
nnposter
f3ee542683 Changed weak cipher strength threshold from 128 to 112 bits in script ssl-enum-ciphers. Fixes #474 2016-08-11 23:47:31 +00:00
paulino
26bec9be41 Fixes incorrect argument name in documentation 2016-07-30 21:58:56 +00:00
nnposter
367dc67f5a Re-wrapped description output in script ssl-poodle. Fixes #481 2016-07-29 21:47:27 +00:00
nnposter
b9c4c12462 Re-wrapped description output in script ssl-dh-params. Fixes #476 2016-07-29 16:50:32 +00:00
dmiller
4486148760 Remove an unnecessary debug statement from development 2016-07-28 05:11:33 +00:00
dmiller
4fa478cea4 Check for non-404 file nonexistence responses in http-config-backup 2016-07-22 15:52:30 +00:00
dmiller
b019b4a369 Add clock-skew.nse to version control (oops!) 2016-07-22 14:33:47 +00:00
dmiller
f002aee6a9 Add TLSA type to dns-zone-transfer, refactor bto16 2016-07-21 22:27:30 +00:00
dmiller
5b7a07b6c9 Add clock-skew script, datetime library 2016-07-21 17:05:25 +00:00
dmiller
be3cd99dbc Add missing require 2016-07-21 17:05:23 +00:00
dmiller
033d77540a Use formulas.lua for mean, stddev in dns-cache-snoop 2016-07-21 17:05:22 +00:00
dmiller
e81b4a719a Update wdb-version to Lua5.3 syntax 2016-07-17 04:56:30 +00:00
dmiller
95f7b76d9f Avoid 'baseoid' output when snmp-hh3c-logins fails. 2016-07-13 17:51:09 +00:00
dmiller
0ac0d8f505 Fix globals, whitespace 2016-07-08 04:36:31 +00:00
dmiller
b47c55dc6e Add sslv2-drown. Closes #365 2016-07-07 16:35:39 +00:00
dmiller
17040f4cf1 Move core of sslv2.nse into sslv2.lua so other scripts can use it. Cache results in registry. 2016-07-07 16:35:37 +00:00
dmiller
d6fbe8b2ca Refactor some code from sslv2.nse into sslv2.lua 2016-07-07 16:35:36 +00:00
tomsellers
63c9a1f8c0 NSE: added output to docker-version.nse 2016-07-07 00:04:15 +00:00
tomsellers
5ca3902b3a NSE: fix bug in docker-version.nse that transposed version and name 2016-07-06 19:37:56 +00:00
batrick
7f5ec526fe Merge branch 'nse-lua53' 
Lua 5.3 adds several awesome features of particular interest to nmap including
bitwise operators and integers, a utf8 library, and standard binary pack/unpack
functions.

In addition to adding Lua 5.3, this branch changes:

o Complete removal of the NSE bit library (in C), It has been replaced with
  a new Lua library wrapping Lua 5.3's bit-wise operators.

o Complete removal of the NSE bin library (in C). It has been replaced with a
  new Lua library wrapping Lua 5.3's string.pack|unpack functions.

o The bin.pack "B" format specifier (which has never worked correctly) is
  unimplemented.  All scripts/libraries which use it have been updated. Most
  usage of this option was to allow string based bit-wise operations which are no
  longer necessary now that Lua 5.3 provides integers and bit-wise operators.

o The base32/base64 libraries have been reimplemented using Lua 5.3's new
  bitwise operators. (This library was the main user of the bin.pack "B" format
  specifier.)

o A new "bits" library has been added for common bit hacks. Currently only has
  a reverse function.

Thanks to David Fifield, Daniel Miller, Jacek Wielemborek, and  Paulino
Calderon for testing this branch.
 2016-07-02 17:02:27 +00:00
dmiller
0d12307030 Improve parsing and request building in sslv2. Part of #365 2016-06-30 17:01:21 +00:00
dmiller
9c42f852c7 Fix incorrectly labeled prime in ssl-dh-params. Closes #347 2016-06-30 14:25:59 +00:00
dmiller
26fb5d6f99 Return NOT_VULN report instead of 'false' in http-frontpage-login 2016-06-26 04:15:17 +00:00
dmiller
c6be42d88b Avoid blank output from http-fileupload-exploiter 2016-06-26 04:15:16 +00:00
dmiller
822b2d593a Don't run tor-consensus-checker on private/reserved IPs 2016-06-26 04:15:15 +00:00
dmiller
dc4c9927d9 Fix a format string crash (missing formatted value) in targets-ipv6-map4to6 2016-06-25 20:22:01 +00:00
dmiller
91c379fa92 Avoid an error in imap-ntlm-info when starttls fails 2016-06-25 19:43:31 +00:00
dmiller
1c16a55227 New script: http-mcmp. Closes #304 2016-06-25 19:23:26 +00:00
paulino
bff2dc4563 Adds clamav-exec.nse to detect ClamAV servers vulnerable to remote clamav command execution 2016-06-20 05:50:04 +00:00
dmiller
a2ed5c4a30 Lua strings are 1-indexed. This is not a bug for now, but is incorrect. 2016-06-18 15:49:18 +00:00
paulino
540494a92d Adds http-aspnet-debug to detect ASP.NET applications with debugging enabled. 2016-06-18 14:51:03 +00:00
dmiller
60a1c85a93 Properly cache enterprise numbers for snmp-info (was parsing for every target) 2016-06-17 16:11:33 +00:00
dmiller
cb4b46bd53 Canonicalize authors as tables instead of comma-separated strings 2016-06-09 22:46:42 +00:00
batrick
b3a88696ef Revert "NSE: make minor adjustments to script" 
This reverts commit 317eb0de31f40454cd213296e6cee71c1f78e006.

This commit started as a way to fix perceived problems but eventually I found
the script worked correctly (I had a misunderstanding of the purpose). I kept
the small changes but ended up breaking the script anyway. So let's just revert
this.
 2016-06-09 12:25:19 +00:00
dmiller
39018e3e91 Check for RSA exponent of 1, resulting in F score 2016-06-09 04:36:09 +00:00
batrick
baef5e0c08 Merge branch 'http-internal-ip-disclosure' 
* http-internal-ip-disclosure:
  NSE: make minor adjustments to script
  NSE: add new script http-internal-ip-disclosure
  http-internal-ip-disclosure branch
 2016-06-08 23:18:47 +00:00