PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-14 03:39:02 +00:00
Code Issues Projects Releases Wiki Activity
6,322 Commits 2 Branches 0 Tags
20575e01b92192a37293a1ce0137a16103661295
Commit Graph

1287 Commits

Author SHA1 Message Date
david
fb18ead35c Fix typoed variable name in http-vhosts.nse. 2011-04-11 02:35:49 +00:00
patrik
bbbccd4e01 o [NSE] Added the afp-ls script that lists files accessible on remote 
AFP Volumes. [Patrik]
 2011-04-05 08:31:34 +00:00
david
f43ca1ae27 Restore a check for nmap.is_privileged to targets-sniffer.nse. I asked 
Nick to remove this, but it turns out nmap.pcap_open has a bad failure
mode when you're not root. It sleeps for several seconds then throws an
error. So rather than tackle that I'll add this check back to the
script.
 2011-04-05 06:12:03 +00:00
david
d0bcacd18a Check if we have an interface to work with in the prerule of 
targets-sniffer.nse.
 2011-04-05 06:12:02 +00:00
david
067d7d9660 Put targets-sniffer.nse in "broadcast". 2011-04-05 06:12:00 +00:00
david
aa3a9baac8 Add the targets-sniffer script by Nick Nikolaou. 2011-04-05 06:11:59 +00:00
david
d0ea18119c Add epmd-info script from Toni Ruottu. 2011-04-04 18:28:33 +00:00
david
8757392fb5 Remove "-p 5353 <target>" from the @usage of 
broadcast-dns-service-disocvery.nse. It's not needed for the broadcast
script.
 2011-04-03 21:00:37 +00:00
patrik
c7af8736a7 Applied the following patch from Chris Woodbury to make ms-sql-info run less 
often: http://seclists.org/nmap-dev/2011/q1/1102 [Patrik]
 2011-04-03 20:44:42 +00:00
patrik
0ee33e4cb7 o Moved afp.username and afp.password arguments to afp-library. 
o Add support for getting file-dates, acls and sizes
[Patrik]
 2011-04-03 12:53:12 +00:00
david
603082755d Change the http-affiliate-id registry key to be named after the script. 2011-04-01 06:48:55 +00:00
david
e63a6b7d4c Include the path in http-affiliate-id postrule output. 2011-04-01 06:48:53 +00:00
david
585e25ba02 Add postrule to http-affiliate-id.nse by Daniel Miller that shows groups 
of targets using the same ID.
 2011-04-01 06:48:52 +00:00
david
1d9bf8bef5 Expanded Amazon pattern for http-affiliate-id from Daniel Miller. 2011-04-01 06:17:15 +00:00
batrick
e791c0e4ab style changes 2011-03-31 20:42:49 +00:00
david
6fdca6e01f Better Amazon associates match: allow '?'. 2011-03-31 20:32:56 +00:00
david
d4dd71261d Documentation, whitespace, style in http-affiliate-id. 2011-03-31 20:32:55 +00:00
david
f522332a89 Add http-affiliate-id.nse, originally from Hani Benhabiles, then patched 
by Daniel Miller.
 2011-03-31 20:32:50 +00:00
djalal
fea17448d3 Adjust the output sample of the nsedoc. 2011-03-30 10:52:41 +00:00
david
2b898d61f7 o [NSE] ssh-hostkey now additionally has a postrule that prints hosts 
that have the same hostkey. [Toni Ruottu]
 2011-03-27 22:04:13 +00:00
david
6d90b593b7 Change the "name" member of a decoded NSEC record to be called 
"next_dname" instead.
 2011-03-27 05:07:16 +00:00
david
477bd66fc9 Merge r22369:22777 from /nmap-exp/david/nmap-nsec. This adds the 
dns-nsec-enum script, originally by John Bond and improved by him and
me.

Changes in dns.lua:
  Add dnssec option to dns.query that adds an OPT RR with the DO (DNSSEC
    okay) flag set.
  Add answer fetcher for NSEC records (unused currently).
  Add decoder for NSEC records.
  Add rudimentary handling of the additional section in dns.encode.
  Add a check that a decoder exists before trying to call it.
 
Also added a copy of the simplified BSD license that the new script is
under.
 2011-03-27 04:24:43 +00:00
jah
5a32f584d4 Modified regex used to parse the 'last modified' line of whois assignments files 
to allow for the absence of the etag on that line.
 2011-03-24 12:49:00 +00:00
david
ae11175ad8 Put ssl-known-key in {"safe", "discovery", "vuln"} (was {"discovery"}). 2011-03-22 19:44:46 +00:00
david
6142158b43 Updates to ssl-known-key by Mak Kolybabi, 
http://seclists.org/nmap-dev/2011/q1/934. Change the database format.
Change the output.
 2011-03-22 19:44:45 +00:00
david
0e970b4bc6 ssl-known-key.nse: Use shortport.ssl. Rename ssl-fingerprints.txt to 
ssl-fingerprints; no extension appears to be the prevailing convention
in nselib/data. Allow comments and blank lines in ssl-fingerprints. Add
Little Black Box copyright and attribution to ssl-fingerprints. Boost
some print_debug thresholds.
 2011-03-22 19:44:42 +00:00
david
47557a108b o [NSE] Added ssl-known-key.nse, which checks SSL certificates against a 
list of certificates with known keys that have been extracted from
  firmware files. [Mak Kolybabi]
 2011-03-22 19:44:40 +00:00
david
93aa8e052b More names for http-vhosts from Carlos Pantelides. 2011-03-21 23:19:36 +00:00
patrik
4528f52188 Deleted the ms-sql-discover script per the following discussion: 
http://seclists.org/nmap-dev/2011/q1/725 [Patrik]
 2011-03-19 20:09:43 +00:00
fyodor
0e68420cc6 Oops, I forgot to add the comment symbols to my nsedoc @output changes to this script. 2011-03-19 18:58:31 +00:00
fyodor
8e9ef47bff Add a header line to rpcinfo program listing. I also updated the @usage docs to include results against 58.224.52.156 2011-03-19 08:57:17 +00:00
patrik
b62cebc7b3 o [NSE] Fixed a problem in oracle-brute that would fail due to connection 
exhaustion. Fixed some debugging messages in the brute library [Patrik]
 2011-03-19 08:26:33 +00:00
fyodor
e896e27e8a Put rpcinfo in the default category and also improve the NSEDoc documentation for it slightly 2011-03-19 08:06:34 +00:00
robert
7b27940ada Updated the hash information to include PHP/5.3.6 (released today). 2011-03-17 15:42:56 +00:00
david
4fc1ea786b Remove redundant "Result:" label from dns-brute.nse output. Use the 
"name" feature of format_output instead of inserting putative data rows
for labels.
 2011-03-15 17:12:45 +00:00
david
656109a31f Add a link to Nping Echo Mode documentation. 2011-03-13 02:02:29 +00:00
david
a3ec901899 Add nping-brute.nse from Toni Ruottu. 2011-03-13 02:02:27 +00:00
jah
8b0f87e91c Conditionally write the HTTP etag response header value to the IPv4 and IPv6 
Assignments text files, i.e. don't try and write the header value if it wasn't
received!
 2011-03-10 12:32:27 +00:00
fyodor
0b7b41d05f Trivial reword to fix a little grammar/typo problem 2011-03-06 09:34:57 +00:00
david
eacb827eee Don't require the dns-brute.domain argument to be given to add new 
targets.
 2011-03-05 21:16:18 +00:00
david
66a7e95105 Simple portrule: trust whatever the user gives us. 2011-03-05 21:16:16 +00:00
david
da79e0aaa2 Use a rewritten guess_domain function and bail out if the domain isn't 
known.

Previously it would solider on even if given only an IP address, trying
names like ftp.168.0.1 and www.168.0.1.
 2011-03-05 21:16:13 +00:00
david
cc4019aedd Make domainname local rather than global. I expect this would cause 
problems more tha one instance of this script were run at once.
 2011-03-05 21:16:12 +00:00
david
4e43fff90a Signal the condvars when threads are finished. 2011-03-05 21:16:11 +00:00
david
6399fe23c3 Look up IPv6 records unconditionally. 2011-03-05 21:16:08 +00:00
david
10ae05791c Localize functions. 2011-03-05 21:16:07 +00:00
david
c2ca0ded54 Pass an interator instead of separate arguments to thread functions. 2011-03-05 21:16:06 +00:00
david
4225147e6c Use stdnse.print_debug. 2011-03-05 21:16:04 +00:00
david
bdbf332562 Use a unified resolve function. 2011-03-05 21:16:03 +00:00
david
3626dacbca Put the lists of host names and srv names at the file level. 2011-03-05 21:16:01 +00:00