PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 14:11:29 +00:00
Code Issues Projects Releases Wiki Activity
8,137 Commits 2 Branches 0 Tags
201a5130a23aa98e21e03fe73a96db9bc424ce47
Commit Graph

1811 Commits

Author SHA1 Message Date
david
201a5130a2 Fix nsedoc issues (missing ---, mostly) 
Originally committed by dmiller but recommitted by david after recovery
from backup.
 2013-04-12 17:29:16 +00:00
kris
5c9a2b54ce Update script.db 2013-03-28 22:26:31 +00:00
dmiller
97c5aa0f0c Return nil, not false, from firewall-bypass.nse 2013-03-28 21:07:08 +00:00
patrik
b6492f96af add LLMNR support and cleaned up some result output 2013-03-16 03:18:28 +00:00
patrik
675000afe8 change debug level for missing decoders, more indent cleanup 2013-03-16 03:18:24 +00:00
tomsellers
6efffce8a9 Address an false positive issue caused http-git interacting with HTTP servers that report 200 OK to all requests. 2013-03-07 02:05:23 +00:00
dmiller
8d28811522 Update scripts with millisecond timeouts to timespec 
Similar changes to r30653, but may break compatibility with people using
integer millisecond values, which are now treated as number of seconds.
To get same behavior, use ms after number, e.g. 5000 becomes 5000ms or
5s
 2013-03-06 15:14:20 +00:00
dmiller
f42dde7ba2 Document some undocumented script-args 2013-03-05 22:31:39 +00:00
dmiller
fdb0f775e2 Update timeout script-args to use standard timespec 
Many scripts were documented as using timespecs (10s, 5000ms, etc) for
timeout script-args, but one 1 or 2 actually did. Now all timeout
script-args will accept timespecs, except those which took a number of
milliseconds, which remain unchanged.

Also fixed some documentation issues (missing script name in arg
description, missing nsedoc for args, etc)
 2013-03-05 21:34:25 +00:00
david
3150d2fff6 Don't set_port_version just from a 200 response. 
Require a more positive page body match before doing that.
http://seclists.org/nmap-dev/2013/q1/304
 2013-03-05 21:20:45 +00:00
david
5edcec7a9a Make flume-master-info output nothing if it finds no page matches. 2013-03-05 21:20:44 +00:00
david
1493e74f63 Add missing set_port_version. 
These scripts changed the port table but did not commit the changes with
set_port_version.
 2013-03-05 21:20:37 +00:00
dmiller
6cb76e801f Fix timeout handling for broadcast-listener 
Documentation says broadcast-listener.timeout takes a time spec (s, m,
h), but it only took seconds. Now it obeys its own documentation.
 2013-03-04 22:16:42 +00:00
david
c46ae4bc20 Reindent http-favicon. 2013-03-02 01:09:59 +00:00
david
801e69e323 Update ip-geolocation-geoplugin.nse for a new data format. 
The response seems to be plain JSON now, with nothing extraneous.
Reported by Robin Wood.
http://seclists.org/nmap-dev/2013/q1/232
 2013-02-24 02:50:03 +00:00
david
570a77b414 Use binary strings, not hex strings, internally in ike-version. 
Patch by Jesper Kückelhahn.
http://seclists.org/nmap-dev/2013/q1/152
 2013-01-30 06:25:32 +00:00
patrik
d79e431e7a nse_check_globals cleanup 2013-01-28 04:28:38 +00:00
david
710b460ac1 Add ike-version and ike library by Jesper Kückelhahn. 
http://seclists.org/nmap-dev/2013/q1/49
 2013-01-28 03:06:39 +00:00
dmiller
fd2130bae1 Update categories for jdwp-exec and jdwp-inject 
Categories for both: exploit, intrusive

per http://seclists.org/nmap-dev/2013/q1/105
 2013-01-25 21:23:02 +00:00
david
9827b75f82 Whitespace in http-headers. 2013-01-25 17:43:29 +00:00
david
60600a5a77 Update http-headers output. 2013-01-25 17:43:28 +00:00
david
ac2cf33113 http-headers uses HEAD by default, not GET. 2013-01-25 17:43:27 +00:00
david
e77a084790 Restore original docs for ip-forwarding.target. 
It was hidden as a @param isntead of an @args.
 2013-01-24 18:11:06 +00:00
david
67aa5516f4 Fix various NSEDoc problems. 
Found by David Matousek.
http://seclists.org/nmap-dev/2013/q1/88
 2013-01-24 18:04:42 +00:00
david
27c8ff9876 Fix NSEDoc in http-vhosts. 
Noticed by David Matousec.
http://seclists.org/nmap-dev/2013/q1/39
 2013-01-16 18:46:45 +00:00
david
42b6489312 Limit ventrilo-info to port 3784 (TCP or UDP). 
Cf. r30460. We may want to run on more port numbers than just this one,
because the server can be configured to run on other ports. But we don't
want it to run for every open|filtered UDP port by default. We don't
ahve a good way to express anything in between.
 2013-01-16 00:29:08 +00:00
david
0a5677085d Some doc changes in ventrilo-info. 2013-01-16 00:29:07 +00:00
david
b1ad58d68d Add ventrilo-info script from Marin Maržić. 
http://seclists.org/nmap-dev/2012/q4/478
 2013-01-16 00:29:05 +00:00
david
906a94e600 Fix spelling in some comments. 
By Matt Selsky.
http://seclists.org/nmap-dev/2013/q1/34
 2013-01-15 22:31:11 +00:00
david
8ae9768b7e Rearrange some variables for proper NSEDoc generation. 
http://seclists.org/nmap-dev/2013/q1/26
 2013-01-14 23:00:37 +00:00
david
4cf5d561cb Limit murmur-version to five ports. 
It can be configured to run on any port, but
http://mumble.sourceforge.net/FAQ/English#What_is_the_default_server_port_for_Murmur.3F
says the default is 64738. Include that port and the next four higher.
The script was running for every open|filtered port, which is excessive.
 2012-12-30 00:52:36 +00:00
david
02659c3de2 Use version_port_or_service over port_or_service. 2012-12-30 00:39:30 +00:00
david
d24ab2d43c Make dns-nsec-enum and dns-nsec3-enum reference each other. 2012-12-29 15:25:41 +00:00
david
f5de2d9419 Restore UTF-8 in author field of murmur-version. 
There's a bug in NSEDoc that we should fix that causes
	Marin Maržić
to appear as
	Marin Maržić
in HTML output. It is wrongly assuming a one-byte encoding.

http://seclists.org/nmap-dev/2012/q4/477
 2012-12-18 04:36:09 +00:00
patrik
0587b3e0c4 nse_check_globals cleanup 2012-12-18 02:46:01 +00:00
dmiller
b3b3fa70e8 Fix broadcast-dropbox-listener not giving output 
The check for output using maxn was changed to use the # operator in
r23147, but the table was not an "array"-style table. Changed it to test
for next(ids) instead, which works.
 2012-12-17 23:34:35 +00:00
aca
d8dc00e0ed Merged mysql-enum from my dev branch 2012-12-17 15:59:35 +00:00
batrick
5edca6f97b Undo previous commits as http-slowloris-check.nse doesn't do a DOS attack like http-slowloris.nse. 
See http://seclists.org/nmap-dev/2012/q4/465
 2012-12-16 01:58:59 +00:00
batrick
02369ec7d9 update script.db for r30412 2012-12-16 00:23:22 +00:00
batrick
8b8e4e307e This script never ends and seeks to crash the web server... why was this categorized as safe?? 2012-12-16 00:18:13 +00:00
david
43f28b8f4a Add structured output to http-get.nse. 
This patch is by Alex Weber.
http://seclists.org/nmap-dev/2012/q4/434
 2012-12-13 04:16:01 +00:00
david
9083da3e53 Add link to Mumble protocol documentation. 2012-12-11 05:34:03 +00:00
david
59478987fa Change the output of murmur-version a bit. 2012-12-11 05:34:02 +00:00
david
eef7155ee1 Add murmur-version script from Marin Maržić. 
http://seclists.org/nmap-dev/2012/q4/408
 2012-12-11 05:34:01 +00:00
david
8f3165f7a6 Don't substitute nonprinting characters in http-git. 
NSE already escapes output everywhere. More importantly, the call to
gsub returns two values, which were being treated as structured output
and unstructured output. The second return value is an integer count of
substitutions, so what you would see in normal output was
|_http-git: 0
while what used to be normal output was going to XML.

Alex Weber noticed that the script was not working.
http://seclists.org/nmap-dev/2012/q4/397
 2012-12-08 10:22:55 +00:00
david
e78540e9a5 Fix regex in http-git. 
Patch by Alex Weber.
http://seclists.org/nmap-dev/2012/q4/397
 2012-12-08 10:22:54 +00:00
david
ec53dc049a Update with new mailing list addresses. 2012-12-06 02:23:34 +00:00
david
4c9a3ef4de Add multicast group name output to broadcast-igmp-discovery. 
Patch by Vasily Kulikov.
http://seclists.org/nmap-dev/2012/q4/350
 2012-11-29 19:58:30 +00:00
david
e262a5bb19 Add CPE to smb-os-discovery output. 2012-11-29 05:36:50 +00:00
david
21e953d489 Add cpe field to smb-os-discovery output. 2012-11-29 05:36:49 +00:00