PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-14 19:59:02 +00:00
Code Issues Projects Releases Wiki Activity
6,322 Commits 2 Branches 0 Tags
20575e01b92192a37293a1ce0137a16103661295
Commit Graph

1287 Commits

Author SHA1 Message Date
david
adc460fc22 o [NSE] Added the ftp-proftpd-backdoor.nse script by mak Kolybabi, 
which checks for a backdoor in ProFTPD 1.3.3c.
 2010-12-07 00:22:01 +00:00
david
f8530814ab o [NSE] Added http-vhosts.nse from Carlos Pantelides. This script 
brute-forces virtual hosts by sending different Host headers to the
  same server.
 2010-12-06 05:19:35 +00:00
robert
e43a866bea Tweaked the versions slightly (removed 4.3.1 from the bunny hash as it looks wrong and hasn't been corroborated), based on 0php.com data. 2010-11-30 09:25:04 +00:00
fyodor
6c62ce69e8 note some of the information obtained from hddtemp service 2010-11-30 01:56:39 +00:00
david
77a4235fc4 Fixes to firewalk.nse from Henri Doreau: "The first one was due to my 
ignorance that the first index of lua arrays is 1 (and not 0). Because
of that, I was setting a too high ttl value when retrieving it from
traceroute results. The second one was a syntax error on a
nmap.log_write() call."
 2010-11-29 19:16:49 +00:00
david
f8b17ae441 o [NSE] Added the hddtemp-info script from Toni Ruotto, which gets 
hard drive temperatures from the hddtemp service.
 2010-11-29 19:00:11 +00:00
robert
a92eacec1d Added all missing PHP 5.x hashes and tidied up the output (grouped ranges and made it consistently use a dash). 
Hashes are now arranged in order, to make it easier to find manually.

For a list of all the PHP 5 hashes I generated see: http://seclists.org/nmap-dev/2010/q4/518
 2010-11-27 11:21:36 +00:00
patrik
a8efdad527 fixed usage typo. change port number from 5900 to 1352. 2010-11-24 20:56:43 +00:00
robert
485ee4aded Added a new credits hash for PHP/5.2.2 based on testing with php-5.2.2-Win32.zip. 2010-11-24 15:51:39 +00:00
david
21d0324c5b Updates to rmi-dumpregistry.nse and rmi.lua from Martin Holst Swende. 2010-11-23 17:45:58 +00:00
fyodor
3652bd6939 Rename a couple http scripts to make it more clear that they use the http protocol and for consistency with other script names 2010-11-20 04:22:51 +00:00
fyodor
ddcc972443 Update some text in scripts in preparation for rename of these two scripts 2010-11-20 04:19:16 +00:00
fyodor
10d85c1a6b Removed broadcast-upnp-info and broadcast-dns-service-discovery from the default category. With these running by default, I was getting a bunch of information about printers and stuff on my LAN. Which is great info, and I love the scripts, but that's not what I'm really looking for when just trying to scan scanme.nmap.org 2010-11-20 02:04:00 +00:00
patrik
68643a2946 applied patch from Thomas Buchanan containing bugfixes and some re-factoring 
http://seclists.org/nmap-dev/2010/q4/447
 2010-11-19 19:31:50 +00:00
david
c0b8514b4d In realvnc-auth-bypass, check the status in socket receive operations 
instead of checking for result == "TIMEOUT".
 2010-11-18 22:54:16 +00:00
david
1766507ecf Add a new http-php-version.nse version from a server that said: 
X-Powered-By: PHP/5.1.6
 2010-11-17 22:05:04 +00:00
ron
f4769f75e9 Fixed a bug in http-userdir-enum (was missing an argument to http.pipeline_add()) 2010-11-17 20:24:48 +00:00
david
fb0aa3f1e3 Add more http-passwd payloads from Ange Gutek. 2010-11-11 19:02:17 +00:00
patrik
734f938b04 o [NSE] Added a new Web Service Dynamic Discovery library (wsdd) and the two 
scripts broadcast-wsdd-discover and wsdd-discover. [Patrik]
 2010-11-10 22:35:13 +00:00
david
a92f1cb8a4 Update to firewalk.nse from Henri Doreau to use a more polymorphic style 
of supporting multiple protocols.
 2010-11-06 01:54:30 +00:00
david
ccce86a1a7 Add an http-passwd.root script argument. Patch by Ange Gutek. 2010-11-05 21:18:23 +00:00
batrick
ca56c00d33 removed some unnecessary locals 2010-11-05 14:25:44 +00:00
patrik
f61358ab28 fixed the following error: 
./scripts/domino-enum-users.nse:113: variable 'filename' is not declared
stack traceback:
	[C]: in function 'error'
	./nselib/strict.lua:69: in function <./nselib/strict.lua:60>
	./scripts/domino-enum-users.nse:113: in function <./scripts/domino-enum-users.nse:66>
	(tail call): ?
[Patrik]
 2010-11-05 10:07:50 +00:00
patrik
356c1e12a9 fixed the following bug reported by Ron 
./scripts/ldap-brute.nse:75: attempt to get length of local 'contexts' (a nil value)
stack traceback:
       ./scripts/ldap-brute.nse:75: in function 'get_naming_context'
       ./scripts/ldap-brute.nse:121: in function <./scripts/ldap-brute.nse:95>
       (tail call): ?
 2010-11-04 18:53:56 +00:00
ron
b7a802bce8 Removed some more errant newlines from the output 2010-11-03 19:53:58 +00:00
ron
c5a111c5b9 Removed an errant '\n' that was causing blank lines 2010-11-03 19:50:25 +00:00
patrik
92b6fa9038 o [NSE] Added a new library upnp that provides UPnP support to the scripts 
upnp-info and broadcast-upnp-info. The library is largely based on code
  taken from Thomas Buchanan's upnp-info script. [Patrik]
 2010-11-02 19:05:19 +00:00
david
80605e3e09 In firewalk.nse, bail out if we have neither of the scripts args 
firewalk.ttl and firewalk.gateway. Otherwise we would get a nil
dereference when running with
	--script=firewalk --traceroute
Ron reported this.
 2010-11-02 19:03:35 +00:00
david
f8714ae9ff Fix some documentation typos in rmi-dumpregistry.nse, split the first 
paragraph so the summary is shorter.
 2010-11-02 17:46:41 +00:00
david
d4007d43e5 Make rmi-dumpregistry.nse default. 2010-11-02 17:45:07 +00:00
patrik
7b2b7bd227 o [NSE] Added a new library dnssd with supporting functions for DNS Service 
Discovery. Moved multicast prerule from dns-service-discovery to a new
  script called broadcast-dns-service-discovery. [Patrik]
 2010-11-02 17:22:38 +00:00
ron
fef25e6a42 Made some big style changes to clean up HTTP library. Primarily focused on improving the interface, NSEDoc, and pipline support 2010-11-02 02:07:01 +00:00
david
3040659465 Add the rmi.lua library and rmi-dumpregistry.nse script by Martin Holst Swende. 2010-11-01 20:47:48 +00:00
djalal
e4edb08571 Move the script argument checks to the rule functions. 2010-10-31 22:52:46 +00:00
djalal
3744d4c0ac Small code cleaning. 2010-10-31 21:37:06 +00:00
kris
b69d93e2ab o [NSE] Added the ssh2-enum-algos script which reports the number of 
algorithms the target SSH2 server supports, by type. If verbosity
  is set, then the offered algorithms are listed. Output is reduced
  for identical "client to server" and "server to client" lists by
  using a single combined list. [Kris]
 2010-10-29 14:30:00 +00:00
ron
13bb98b8b8 Bring in changes from my experimental brange, nmap-http 2010-10-27 03:08:08 +00:00
djalal
7b9b094ea5 Make the script able to add new discovered DNS records onto Nmap scanning queue. 2010-10-20 15:47:54 +00:00
david
877cbab16f o [NSE] Added reporting of the type and bit size of certificate public 
keys to ssl-cert.nse. [Matt Selsky]
 2010-10-20 05:49:17 +00:00
fyodor
203d423d50 Added upnp-info to the discovery category 2010-10-16 21:45:08 +00:00
david
f8c32e0971 Fix a typo found by Gutek. 2010-10-16 17:47:36 +00:00
david
696d1946c2 Fix typo. 2010-10-16 17:27:28 +00:00
david
dd7a40b288 Add hostmap.nse from Ange Gutek. 2010-10-16 03:01:08 +00:00
david
d096dd7626 Update script.db. 2010-10-16 01:59:08 +00:00
david
18157ed081 Merge from /nmap-exp/david/nmap-unconnected. This adds unconnected 
socket support to NSE, with updates in scripts and libraries.

o [NSE] Added the ability to send and receive on unconnected sockets.
  This can be used, for example, to receive UDP broadcasts without
  using pcap. A number of scripts have been changed so that they can
  work as prerule scripts to discover services by UDP broadcasting,
  optionally add the discovered targets to the scanning queue:
    - ms-sql-info
    - upnp-info
    - dns-service-discovery
  The nmap.new_socket function can now optionally take a default
  protocol and address family, which will be used if the socket is not
  connected. There is a new nmap.sendto function to be used with
  unconnected UDP sockets. [David, Patrik]
 2010-10-16 00:48:44 +00:00
patrik
1aed246b69 fixed bug in authentication encryption function as reported by Sergey 
http://seclists.org/nmap-dev/2010/q4/83

changed the way the library reports "Must change password at next logon"
fixed bug in ms-sql-hasdbaccess that would occur if no rows were returned
[Patrik]
 2010-10-15 19:47:54 +00:00
kris
e297c8de73 update script name in @output 2010-10-13 03:52:34 +00:00
kris
8d7d95ba57 update script.db 2010-10-13 00:06:39 +00:00
ron
3cc2257530 Added a new smb script: smb-flood.nse. This denial-of-service script attempts to open too many SMB connections to the server, which can deny legitimate connections from being established. 2010-10-03 23:02:39 +00:00
david
1723949c05 Revert r20455; I meant to do this in a branch. 2010-10-01 06:29:17 +00:00