PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-08 07:29:03 +00:00
Code Issues Projects Releases Wiki Activity
11,791 Commits 2 Branches 0 Tags
20b6bbda989f8468edd136a8156ab435df96ff2c
Commit Graph

11791 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
nnposter
20b6bbda98 Report empty credentials as <blank> 2019-01-06 18:18:12 +00:00
nnposter
25db5fbb0d Increases ncat temporary RSA key size to 2048 bits 
This resolves a compatibility issue with OpenSSL library configured with
security level 2, as seen on current Debian or Kali. Closes #1310, closes #1409
 2018-12-20 02:04:02 +00:00
nnposter
fc3c9159be Adds searching by fingerprint name 2018-12-18 17:30:30 +00:00
nnposter
dd75a8fec6 Refreshed service pack versions; added MS SQL 2017. Fixes #1411 2018-12-13 21:47:15 +00:00
fyodor
434de730f5 Update copyright year for Ncat and Ncat Guide 2018-12-09 02:00:55 +00:00
dmiller
6d420e82b2 Changelog for #1227 2018-12-02 05:54:58 +00:00
dmiller
1ba0119372 Add a length check for certificate parsing. Fixes #1399 2018-12-02 05:48:27 +00:00
dmiller
b1efd74249 Warn for raw scan options without needed privileges 2018-11-29 20:27:05 +00:00
dmiller
b642dc129c Fix a bug in the fix. ebf083cb0b (commitcomment-31471930) 2018-11-29 17:42:09 +00:00
dmiller
350bbe0597 Avoid a crash (double-free) when SSH connection fails 2018-11-29 17:42:09 +00:00
nnposter
f893372ddd Renamed variable to better reflect its nature 2018-11-27 20:14:55 +00:00
nnposter
f0dd1b8c8d Variable is_ssl is not a flag but a protocol string. Fixes #1400 2018-11-27 19:28:24 +00:00
dmiller
3a240371fc Require 'options' to -s* and -P* to be joined to them, e.g. not '-s SUV' 2018-11-27 18:12:43 +00:00
dmiller
ebf083cb0b Fix a crash in http scripts when following redirects 2018-11-27 04:43:16 +00:00
dmiller
f8004b792c Replace a config-time check with a ifndef that also works on Windows. 2018-11-21 06:23:08 +00:00
dmiller
33f16dd075 Don't fatal() on iflist if npcap isn't found 2018-11-21 03:43:10 +00:00
dmiller
bff7dcad4e Avoid crashing when PATH contains non-ascii/utf-8. Decode if possible 2018-11-15 16:23:32 +00:00
dmiller
adfc39f4f3 Fix crash when using dir: operator 2018-11-15 05:03:46 +00:00
dmiller
38b843558e Change for-loop initial declarations not allowed in C89 2018-11-13 17:32:32 +00:00
dmiller
8490cad95d Copy zlib DLL during staging. Avoid building nmap-update 2018-11-08 15:30:15 +00:00
dmiller
8605dea33a Fall back to TCP connect ping on Windows without pcap 
While Windows raw sockets can send and receive ICMP packets, Nmap relies on
libpcap packet capture to spot responses, so if pcap isn't available
(--unprivileged or Npcap not installed), we need to fall back to TCP connect for
host discovery, just like we do for unprivileged users on other operating
systems. Previous behavior was a fatal error suggesting unhelpfully to use
--unprivileged.
 2018-11-08 15:28:13 +00:00
dmiller
66eee935a9 Avoid compiler warning about signedness mismatch on VS2013. 2018-11-08 14:52:32 +00:00
dmiller
89a1714580 Fix Windows build for zlib update: use DLL instead of static 2018-11-08 14:51:33 +00:00
dmiller
5c83c3d2a5 Fixes for Windows build from Lua header rearrangements 2018-11-08 04:55:29 +00:00
dmiller
8b2f8dbad2 Restore unconfigured zconf.h, needed on Windows. 2018-11-08 04:35:52 +00:00
dmiller
1345eb247b Use iterative solution instead of tail recursion to avoid stack problems when optimization is off 2018-11-08 04:25:12 +00:00
dmiller
4620cc3df0 Reorder some probes to better match RDP and TLS 2018-11-06 15:07:04 +00:00
dmiller
7da763d271 Use standard way of including nbase.h 2018-11-06 15:07:03 +00:00
dmiller
7ea0a8c9ac Make functions static where possible 2018-11-06 15:07:02 +00:00
dmiller
110d9b7adf Fix wrong library typo 2018-11-06 15:07:01 +00:00
dmiller
70be64d592 Move TerminalServerCookie probe below more-likely TerminalServer probe. Probes are sent in file order, not rarity order 2018-11-05 18:12:12 +00:00
dmiller
959f722021 Process 274 service fingerprint submissions 2018-11-05 18:08:58 +00:00
dmiller
5a34fd3d8d Add script.db entries for new scripts 2018-11-05 18:07:42 +00:00
dmiller
824f9dcb2f Rearrange declarations to put all addrset functions in nbase.h, hide struct addrset internals. 2018-11-01 04:35:00 +00:00
dmiller
27807aadb4 Straighten out some headers and the (struct) addrset type 2018-11-01 04:34:59 +00:00
dmiller
c223ec5c36 Remove unused IPv6 support for legacy addrset_elem bit-matching 2018-11-01 04:34:58 +00:00
dmiller
0f916ec3bc Fix an error in common-prefix calculation 2018-10-31 23:44:52 +00:00
dmiller
625884e7dc Support netmasks in addrset trie. Use trie for resolved addresses and CIDR masks. 2018-10-31 20:32:16 +00:00
dmiller
324965d1d2 Use a radix tree (trie) to match exclude addresses 
Current exclusions list from --excludefile takes linear time to match
against. Using a trie structure, we can do matching in O(log n) time,
with a hard maximum of 32 comparisons for IPv4 and 128 comparisons for
IPv6. Each node of the trie represents an address prefix that all
subsequent nodes share; matching stops when one is matched exactly or
when the candidate address does not match any prefix of the addresses in
the trie.

For now, only numeric addresses without netmask are supported. We plan
to extend this to addresses with netmasks, including resolved names.
Storing IPv4 ranges and wildcards in this structure would be
prohibitively complex, so the existing linear match method will be used
for those. It is unlikely that any users are using large exclusion lists
of these types of specifications, so performance impact is small.

Potential future features could use the trie structure to implement
custom routing or scope-limiting.

This was a todo list item based on this report:
https://seclists.org/nmap-dev/2012/q4/420
 2018-10-31 14:01:34 +00:00
dmiller
86d1f7e66e Don't quit on ERROR_IO_INCOMPLETE. Closes #1372 2018-10-26 20:50:58 +00:00
dmiller
1c2829cbd0 Fix a bug: if service is vulnerable, this is a table, not a string. 2018-10-25 16:30:48 +00:00
dmiller
e3d08f7e94 Avoid shutting down SSL descriptor twice. Fixes #1365 2018-10-25 04:53:59 +00:00
dmiller
8cb2b0ea2a Add or fix See Also links between scripts 2018-10-24 19:36:04 +00:00
dmiller
8fef7f7df5 Compatibility hack for older Nmap versions 2018-10-24 16:35:33 +00:00
ron
1419b86e13 Added a pair of modules for finding and exploiting 'WebExec', a vulnerability in Cisco's WebEx 2018-10-24 16:14:43 +00:00
dmiller
d03b10ea36 Deprecate/disable -PR option as it was not really being checked. 
Fixes #1361
 2018-10-24 03:55:42 +00:00
dmiller
9a6f9c5abe Replace redundant checks with a call to o.RawScan() 2018-10-24 03:55:41 +00:00
fyodor
aa867cf1b7 Apply patch from Brandon Enright to handle underscores in part of the libssh banner. According to David Fifield's research, libssh switched to underscores in 2017, version 0.7.4 2018-10-23 20:09:52 +00:00
dmiller
14705cd417 ultrascan: bail early if there are no probes in the current scan 
This shouldn't ever happen, but it currently does for host discovery
scans using -PR where the target is not directly connected. See #1361
 2018-10-22 20:12:45 +00:00
ron
467b06008e Add permissions to openscmanagerw() in msrpc.lua, allowing the caller to specify the permissions they need. 2018-10-22 17:29:49 +00:00