PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-16 02:16:34 +00:00
Code Issues Projects Releases Wiki Activity
5,029 Commits 2 Branches 0 Tags
22f528cd3f273c316cea685fa38b4ce99bbd9aba
Commit Graph

557 Commits

Author SHA1 Message Date
ron
d33c79c65f Removed some duplicate shares for bruteforcing, alphabetized the list, and added TEMP and SHARE - all thanks to Chris Woodbury's suggestions 2011-02-09 04:22:15 +00:00
patrik
a139a26fd7 Fix for bug that would make Nmap fail to run when compile without SSL support. 
The wsdd library incorrectly assumed OpenSSL to always be available and the
ssh-hostkey used the undeclared SCRIPT_NAME in message when evaluating SSL
support. The bug was reported by Michael Pattrick on nmap-dev:
http://seclists.org/nmap-dev/2011/q1/312

[Patrik]
 2011-01-30 10:39:17 +00:00
patrik
3b3ba286ff Applied patch to fix bug in discovery code reported by Chris Woodbury 
http://seclists.org/nmap-dev/2011/q1/228
[Patrik]
 2011-01-23 07:49:45 +00:00
david
596d2bf477 Fix to rmi.doh by Martin Swende. 2011-01-16 05:07:22 +00:00
fyodor
77290c8053 Add a --- line to start off the top NSEDoc section--otherwise it was being ignored by our nsedoc web rendering system 2011-01-15 07:13:40 +00:00
patrik
583f65227c o [NSE] Added support for dynamic updates to the DNS library. Added the 
script dns-update.nse, which attempts to add a DNS record to a given zone.
  [Patrik]
 2011-01-14 15:15:24 +00:00
fyodor
0074b626cc o Integrated cracked passwords from the Gawker.com compromise 
(http://seclists.org/nmap-dev/2010/q4/674) into
  Nmap's top-5000 password database. A team of Nmap developers, lead
  by Brandon Enright has cracked 635,546 out of 748,081 password
  hashes so far (85%). Gawker users' top passwords are are "123456",
  "password", "12345678", "lifehack", "qwerty", "abc123", "12345",
  "monkey", "111111", "consumer", and "letmein".
 2011-01-12 08:38:39 +00:00
david
4fa142de14 Use the local read (which obeys the "lines" and "bytes" options) intead 
of sd:receive in comm.opencon, which is used by comm.get_banner.
 2011-01-10 00:25:14 +00:00
david
64ccea886b Whitespace in comm.lua. 2011-01-10 00:25:12 +00:00
ron
4e5f8799e1 Added a bunch of CMS checks for http-enum.nse submitted to me by Robert Rowley 2011-01-09 18:51:03 +00:00
david
6ef0d9624a Whitespace, documentation, style in tab.lua. 2010-12-30 21:08:27 +00:00
david
a9a5869173 Normalize tab.lua usage so that a call to tab.nextrow comes after (not 
before) each group of tab.add, and there is no tab.nextrow before or
after tab.addrow. Also remove manual indenting that was accomplished by
padding the first column with spaces; this is done by
stdnse.format_output now.
 2010-12-30 21:08:25 +00:00
david
04210ef88f When an entry in stdnse.format_output has multiple lines, insert the 
indent and prefix before each line, not just at the beginning. If the
indent was ">>>>", then formatting the line "AB\nCD" would result in

| >>>>  AB
|_CD

Now it will be

| >>>>  AB
|_>>>>  CD

Some script were working around this by relying on an invisible blank
first line and manually indenting following lines.
 2010-12-30 21:08:24 +00:00
david
190ca31c6c Don't pad the last item in each row in tab.lua. This prevents one long 
line from making all other lines wrap with blanks.
 2010-12-30 21:08:22 +00:00
david
974d6061b3 Change t['rows'] to t.current_row, because it may not be equal to the 
number of rows that are actually in the table (may be one greater).
 2010-12-30 21:08:21 +00:00
david
1ee0fae3d1 Insert an empty row table when tab.nextrow is called and there is 
nothing in the current row yet. This allows using #t or ipairs to get
the number of rows that have been filled by the user. t.rows is the
index number of the next row that will be filled in, or the one that is
currently being filled in if something has already been entered.
t.rows == #t + 1 means that we've finished with the previous row, but we
don't want to count a new (blank) row until we've started filling
something in.
 2010-12-30 21:08:19 +00:00
david
396481c1b8 Remove the "cols" attribute of tab.lua tables. Just calculate it 
dynamically when dumping.
 2010-12-30 21:08:17 +00:00
david
086b043cde Remove the single-string special case in stdnse.format_output. 
This should be handled by the generic case, and I don't think it was
used anyway because the logic was wrong:

if(indent == nil and #data == 1 and type(data) == 'string' and not(data['name']) and not(data['warning'])) then
  return data[1]
end

This seems to be checking for a one-element table whose single element
is a string. But the test "#data == 1 and type(data) == 'string'" is
actually testing for a one-byte string. I think this is supposed to be
"type(data[1]) == 'string'", but anyway it should be handled by the
generic case.
 2010-12-30 21:08:15 +00:00
david
d9d47eb93d Use sock:receive when neither the "lines" nor "bytes" option is given to 
comm.exchange. Previously it was acting as if it got bytes=1, which
could return as few as one bytes. sock:receive will read until timeout
or EOF.
 2010-12-29 22:44:03 +00:00
david
e2f8d1f5cb Move the read_reply function out of ftp-anon.nse and into a new library 
ftp.lua.
 2010-12-29 21:24:52 +00:00
david
3f2a6606af Add "vnc-http" and port 5800 to shortport.http. 2010-12-16 02:00:23 +00:00
djalal
afe98e8d80 Fix a bug that was causing the read_from_file() to not return the correct file lines. 2010-12-14 10:20:23 +00:00
david
a9e4947411 Make msrpc.call_function a public function. stuxnet-detect.nse is about 
to need this, and Dražen had to do it too while he was working on the
NDR library.
 2010-12-12 22:40:41 +00:00
patrik
46cdf28fce o [NSE] Added a new iSCSI library and the two scripts iscsi-info and 
iscsi-brute. [Patrik]
 2010-12-10 23:20:59 +00:00
batrick
47e6012b15 remove old commented code 2010-12-08 14:19:08 +00:00
batrick
86993d74d5 Use better construction for iterating lines. 2010-12-08 14:18:45 +00:00
batrick
bfa052c2f3 Changed (commented) debug statements to use stdnse.print_debug instead of 
io.write.
 2010-12-08 14:17:11 +00:00
batrick
47e3a20aa8 use better construction to iterate lines of a file 2010-12-08 14:11:48 +00:00
batrick
6fb600782f Don't use io.write to print error information. 2010-12-08 14:08:35 +00:00
batrick
03c7e9d00e Have stdnse.make_buffer read chunks instead of lines [1] so we do not implicitly 
buffer based on the presence of new lines.

[1] http://seclists.org/nmap-dev/2010/q4/554
 2010-11-29 22:51:51 +00:00
david
21d0324c5b Updates to rmi-dumpregistry.nse and rmi.lua from Martin Holst Swende. 2010-11-23 17:45:58 +00:00
patrik
f3641ee649 lowered the timeout from 30 seconds to 5 for new connections 
add new functionality for discovering servers using the MSSQL Browser service
add new functionality to decode version data received from the browser service
[Patrik]
 2010-11-20 18:54:50 +00:00
ron
f14a179b44 Fixed a bug in stdnse.format_output() where the 'name' attribute of the top-most table wouldn't display 2010-11-20 16:18:18 +00:00
kris
1317675fb3 Document the status return value for nmap.resolve(). Patrik noticed the 
omission.
 2010-11-19 21:38:47 +00:00
patrik
68643a2946 applied patch from Thomas Buchanan containing bugfixes and some re-factoring 
http://seclists.org/nmap-dev/2010/q4/447
 2010-11-19 19:31:50 +00:00
ron
684c7e0229 Added credit for the new fingerprints 2010-11-18 23:36:41 +00:00
ron
d40bdc8139 Added fingerprints for WRT54g, Prinenergy Dashboard, and Adobe Acrobat Connect Pro 2010-11-18 23:35:27 +00:00
patrik
fb8ae1ffd0 applied patch from Thomas Buchanan that fixes a bug in the upnp library that 
would incorrectly report ports as open if the connection timed out.
 2010-11-18 00:06:51 +00:00
ron
38f1689e82 Added a leading '/' to paths where it was missing before. 2010-11-17 23:57:17 +00:00
patrik
734f938b04 o [NSE] Added a new Web Service Dynamic Discovery library (wsdd) and the two 
scripts broadcast-wsdd-discover and wsdd-discover. [Patrik]
 2010-11-10 22:35:13 +00:00
ron
bfd642c6fb Removed a line that causes a lot of false positives 2010-11-06 07:34:32 +00:00
ron
d73016e41f Added a bunch of fingerprints from @jhaddix 2010-11-05 16:16:54 +00:00
batrick
c30cb92e81 Corrected and reformatted the raw packet I/O documentation. 2010-11-05 14:01:05 +00:00
patrik
e26eef6533 fixed typo intead -> instead [Patrik] 2010-11-05 10:10:36 +00:00
patrik
937b2df7dd changed the extractAttribute function to be case insensitive when retrieving 
attributes.
 2010-11-04 19:53:01 +00:00
batrick
93528b984c Fixed bad global access. 2010-11-02 23:35:02 +00:00
patrik
5093705244 Added check for already discovered devices in order to avoid duplicates as 
reported by David here: http://seclists.org/nmap-dev/2010/q4/257 [Patrik]
 2010-11-02 20:46:11 +00:00
patrik
92b6fa9038 o [NSE] Added a new library upnp that provides UPnP support to the scripts 
upnp-info and broadcast-upnp-info. The library is largely based on code
  taken from Thomas Buchanan's upnp-info script. [Patrik]
 2010-11-02 19:05:19 +00:00
patrik
7b2b7bd227 o [NSE] Added a new library dnssd with supporting functions for DNS Service 
Discovery. Moved multicast prerule from dns-service-discovery to a new
  script called broadcast-dns-service-discovery. [Patrik]
 2010-11-02 17:22:38 +00:00
ron
2957b4d733 Added http-fingerprint matches for Nessus's HTTP server 2010-11-02 15:42:28 +00:00