PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-14 03:39:02 +00:00
Code Issues Projects Releases Wiki Activity
6,322 Commits 2 Branches 0 Tags
20575e01b92192a37293a1ce0137a16103661295
Commit Graph

1287 Commits

Author SHA1 Message Date
gorjan
0cd6ee2010 Separator "," in backorifice-brute.nse instead of ";" 2011-05-28 17:55:44 +00:00
patrik
873cf47611 o [NSE] Added the Netware Core Protocol (NCP) library and the scripts 
ncp-serverinfo and ncp-enum-users. [Patrik]
 2011-05-28 09:01:31 +00:00
patrik
8b78ccf469 o [NSE] Added ldap-novell-getpass, a script that provides support for 
retrieving Universal Passwords in plain-text from Novell eDirectory.
[Patrik]
 2011-05-28 08:48:26 +00:00
gorjan
ba533d84a7 NSEDoc update for backorifice-brute to present variables as monospaced 2011-05-24 15:24:29 +00:00
batrick
5a68e5f04a Set the math.randomseed value in nse_main.lua on behalf of scripts. 
Since Lua uses the C rand and srand functions, which have a static
seed for the entire program, we don't want scripts doing this themselves.
 2011-05-23 21:43:46 +00:00
paulino
1e0e438b09 Added http-cakephp-version.nse - NSE script for fingerprinting versions of CakePHP applications. 2011-05-20 09:25:22 +00:00
gorjan
1d13bf169b Remove the Summary comment from NSEDoc and Scripts Page 2011-05-19 19:28:30 +00:00
djalal
be338214a0 Update the script name 2011-05-19 18:32:20 +00:00
djalal
edda382a77 Add the smtp-vuln-cve2011-1720 script to the script.db file. 2011-05-19 18:31:34 +00:00
djalal
a3ff996c54 Rename the smtp-check-vulns script to smtp-vuln-cve2011-1720. 2011-05-19 18:19:56 +00:00
fyodor
20e03044bf Reran nmap --script-updatedb to catch new categories of smtp-check-vulns script 2011-05-17 17:43:35 +00:00
djalal
17414d4cb4 Remove the 'dos' and 'exploit' categories. 2011-05-17 16:27:36 +00:00
gorjan
5ac0a954f0 NSEDoc fix of snmp-brute. 2011-05-16 18:48:34 +00:00
henri
0706dc1b98 Removed trailing semicolons to keep style consistent 2011-05-16 08:44:29 +00:00
djalal
c1ba251135 o [NSE] Added smtp-check-vulns, which currently checks for the Postfix 
SMTP server Cyrus SASL authentication memory corruption (CVE-2011-1720).
 2011-05-15 15:57:10 +00:00
djalal
31310f43bc Add the backorifice-brute script entry to the script.db file 2011-05-14 13:12:18 +00:00
gorjan
b98ef466b3 Adding the backorifice-brute script 2011-05-12 22:40:54 +00:00
batrick
bd64492fe9 maxn is deprecated 2011-05-11 15:13:46 +00:00
batrick
321e0d34e0 use # length operator instead of string.len (canonicalize) 
Used this perl command:

$ # perl -pi -e 's/string\.len\((.*?)\)/#\1/g' *.nse
 2011-05-11 15:12:47 +00:00
batrick
dc909f7d77 removed usage of deprecated table.getn 2011-05-11 14:41:06 +00:00
henri
1cd183014d Use stdnse.format_output() instead of comma-separated values, to produce 
readable output regardless of the number of discovered plugins
 2011-05-11 14:28:46 +00:00
patrik
079195122d o [NSE] Applied patch from Daniel Miller that fixes a bug in http-form-brute 
reported by Josh Greenwood. The script would break if autodetection of
  either brute form fields would fail.

  http://seclists.org/nmap-dev/2011/q2/524
 2011-05-11 13:04:20 +00:00
patrik
e8c5640dda o [NSE] Added a SIP library and two new scripts sip-brute.nse and 
sip-user-enum.nse providing brute and user enumeration support for the SIP
  protocol. [Patrik]
 2011-05-09 18:00:52 +00:00
gorjan
242b483cf9 Fix for backorifice-info.nse, setting the port.state as "open" 2011-05-08 16:37:41 +00:00
henri
f6e9e30be0 o [NSE] Added xmpp.nse, which collects XMPP server information [Vasiliy Kulikov] 2011-05-07 21:14:21 +00:00
henri
4ff284cdc6 fixed parameter name in script usage 2011-05-07 17:37:49 +00:00
kris
eb7202d45c fix whitespace inconsistencies from copy-and-pastes 2011-05-06 23:48:41 +00:00
batrick
7f66646636 Patch to make require errors silent and removed evil workarounds. 
Added new stdnse function stdnse.print_verbose (similar to print_debug).
 2011-05-04 21:06:53 +00:00
djalal
9e60e88eca o [NSE] Added broadcast-avahi-dos.nse, which tries to detect if the 
hosts in the local network that are running Avahi are vulnerable to
  the NULL UDP packet denial of service (CVE-2011-1002).
 2011-05-02 23:38:18 +00:00
david
b1e8d47fee Put http-auth in "safe" now that it is not in "default". 2011-04-30 19:23:19 +00:00
david
3ae3339cb7 Make the set of script "default and intrusive" empty. 
These scripts got removed from default:
	dhcp-discover
	dns-zone-transfer

These scripts got removed from intrusive:
	dns-recursion
	ftp-bounce
	http-open-proxy
	socks-open-proxy

Thanks to Toni for noticing these.
 2011-04-30 19:21:38 +00:00
david
6920f6b913 Remove credential guessing from http-auth.nse. 
This was really lame compared to http-brute, only guessing two
username/password combinations. Also we shouldn't be guessing any
passwords in a default script.
 2011-04-30 19:21:36 +00:00
david
d668c758e0 Join an NSEDoc comment to get @output. 2011-04-30 09:35:28 +00:00
henri
ef68defe0a Replaced firewalk scan states by a simpler boolean for readability reasons. 2011-04-29 16:40:45 +00:00
henri
7e2a85cab9 Added the http-wp-plugins script by Ange Gutek. 2011-04-29 07:43:41 +00:00
david
de9d0362e0 Treat 5xx errors as success (guessed password) in http-brute. 
This was suggested by Toni Ruottu in
http://seclists.org/nmap-dev/2011/q1/940.
 2011-04-28 04:14:54 +00:00
david
ef2b75387b Add --- NSEDoc comment to backorifice-info.nse. 2011-04-27 22:38:56 +00:00
batrick
759426c215 Committed corrections [1] made by Gorjan Petrovski to factor out some code into 
a function, fix indentation, and other minor bugs.

[1] http://seclists.org/nmap-dev/2011/q2/314
 2011-04-26 02:23:28 +00:00
djalal
f8756deb0b Fix a typo in a comment. 2011-04-22 22:21:43 +00:00
djalal
849d0c5101 o [NSE] Call the new nmap.get_interface_info() function instead of 
nmap.get_interface_link() to get the network interface link type.
   The nmap.get_interface_link() function is deprecated and will be
   removed.
 2011-04-22 22:19:08 +00:00
djalal
546b8c4749 o [NSE] Fix a bug reported by Daniel Miller that was causing the nfs-ls 
script to ignore NFS mounts when the Mount version is 1.
 2011-04-22 21:52:20 +00:00
david
fef214063a Add omp2-brute and omp2-enum-targets from Henri Doreau. 2011-04-20 23:44:16 +00:00
david
3447e2a6a2 Use get_script_args to handle smb-related flag options, to use our 
common true/false logic and not hardcode "1" and "true" in places. Patch
by Chris Woodbury.
 2011-04-20 21:35:10 +00:00
david
e0f589a37f Document backorifice-info script args. 2011-04-20 07:45:13 +00:00
david
7880167e48 Localize functions and variables. 2011-04-20 07:45:12 +00:00
david
5726c875e9 Add backorifice-info.nse. 2011-04-20 07:45:10 +00:00
david
ec4db04494 Add checks for nmap.address_family == "inet" to scripts that require 
that. Patch by Henri Doreau.
 2011-04-19 18:09:15 +00:00
david
46c29d3f60 Use stdnse.print_debug instead of log_write. Patch by Henri Doreau. 2011-04-19 18:09:13 +00:00
david
94d0720515 Add quake3-master-getservers postrule summary patch from Toni. 2011-04-19 04:41:10 +00:00
david
e9294bbb2e Change the lookup for specialized negotiation functions in ssl-cert.nse. 
Instead of having an array called STARTTLS_PORTS, with linear lookup for
membership, defined SPECIALIZED_FUNCS, mapping port numbers to
negotiation functions. This make sit a little easier to add other SSL
negotiation mechanisms, like HTTP Upgrade.
 2011-04-18 16:07:49 +00:00