PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-09 15:06:35 +00:00
Code Issues Projects Releases Wiki Activity
6,627 Commits 2 Branches 0 Tags
2fa4cf467fce85ee90f46653abceda5ca88d53eb
Commit Graph

793 Commits

Author SHA1 Message Date
patrik
2fa4cf467f Fixed bug in srvloc library and broadcast-novell-locate script that would make 
the script fail to complete in cases where no url was returned as part of the
srvloc reply. [Patrik]
 2012-03-02 23:27:18 +00:00
patrik
480e5ac605 o [NSE] Added the library rpcap and the scripts rpcap-brute and rpcap-info 
which perform brute force password guessing and extract information from the
  WinPcap Remote Packet Capture daemon. [Patrik]
 2012-03-02 12:39:18 +00:00
patrik
43253cea53 o [NSE] Added authentication support to MongoDB library and modified existing 
scripts to support it. Added the script mongodb-brute to perform password
  brute force guessing. [Patrik]
 2012-03-02 12:28:30 +00:00
tomsellers
9f4fcc4da5 [NSE] Added support to broadcast-listener for extracting address, native vlan and management IP address from CDP packets. 2012-02-25 17:18:22 +00:00
patrik
2881ec0a19 o [NSE] Added RPC Call CALLIT to the RPC library and modified UDP sockets to be 
unconnected in order to support broadcast. [Patrik]
 2012-02-25 15:59:41 +00:00
patrik
765c5854b3 o [NSE] Added a sslcert library that gets and caches SSL certificates in the 
registry. Modified the scripts ssl-cert and ssl-google-cert-catalog to take
  advantage of this change. [Patrik]
 2012-02-23 19:26:37 +00:00
patrik
bd2c9e01f6 o [NSE] Applied patch from Andrew Orr that fixes the recent changes in the 
BitCoin protocol. [Patrik]
 2012-02-20 19:12:38 +00:00
patrik
8f7461b357 o [NSE] Added a Network Data Management Protocol (ndmp) library and the 
scripts:
  + ndmp-version - retrieves version information
  + ndmp-fs-info - retrieves information about remote filesystems
  [Patrik]
 2012-02-19 14:56:17 +00:00
patrik
80e998b91f o [NSE] Added support for edns-client-subnet requests to the DNS library and 
the script dns-client-subnet-scan that scans for addresses resolved from
  different subnets. [John Bond]
 2012-02-19 13:22:20 +00:00
tomsellers
8a0931b752 Improved EIGRP processing for broadcast-listener. The pattern match was insufficient so I added a check for IP protocol 88. 2012-02-14 23:38:01 +00:00
tomsellers
7807926f15 [NSE] Added support for decoding EIGRP broadcasts from Cisco routers to broadcast-listener.nse 2012-02-12 21:20:16 +00:00
patrik
fccccff960 * bugfixes to several http scripts related to new redirect code in http 
library
* added option to httpspider that allows passing the redirect_ok closure to
  the http library
[Patrik]
 2012-02-11 22:37:14 +00:00
patrik
e8dad669ef Fixed bug in redirection code reported by David. The redirect_ok function 
would fail validating a location if the port passed to http.get or http.head
was a number and not a table. [Patrik]
 2012-02-11 17:50:48 +00:00
patrik
48423a8a88 o [NSE] Added redirect support to the http library. All calls to http.get and 
http.head now transparently handle any HTTP redirects. [Patrik]
 2012-02-11 13:37:40 +00:00
tomsellers
74798d0356 Removed svn:execute property from certain .LUA scripts in the /nselib directory. This was enabling the execute bit on files when they were checked out. 2012-02-08 04:12:45 +00:00
tomsellers
4cb024c21d Corrected a numeric type related to version detection against MS SQL 2008 R2 RTM. Added detection version number for MS SQL 2008 R2 SP1 2012-02-08 02:41:53 +00:00
patrik
557874588f o [NSE] Modified the sql-injection script to use the httpspider library. 
[Lauri Kokkonen]
 2012-02-05 13:47:31 +00:00
patrik
908ac61fb0 o [NSE] Added a rsync library and two new script: 
+ rsync-list-modules - list available rsync modules
  + rsync-brute - attempts to brute force passwords against a rsync module
  [Patrik]
 2012-02-05 10:10:59 +00:00
patrik
2d55f8822c Fixed a number of bugs and prepared the library to handle the new redirect 
code being added to the http-library. [Patrik]
 2012-02-02 21:23:19 +00:00
patrik
af3734f41f o [NSE] Fixed a bunch of global access errors in various libraries reported by 
the nse_check_globals script. [Patrik]
 2012-01-30 23:13:35 +00:00
henri
5594173c17 Fixed a couple additional typos: 
compatiable -> compatible
  prefered -> preferred
  connectiosn -> connections
  statis -> status
 2012-01-30 10:19:22 +00:00
henri
49a61f0fa6 Fixed typo (functino -> function). 2012-01-30 10:05:18 +00:00
patrik
d4ca7dccfd fixed bug that would fail reading url and options supplied to the Helper:new 
method.
 2012-01-28 19:29:32 +00:00
patrik
0ad978d3b8 o [NSE] Added the scripts xdmcp-discover, broadcast-xdmcp-discover and the 
X Display Manager Control Protocol (xdmcp) library. The scripts discover
  hosts either using unicast or broadcast and try to detect supported
  authentication and authorization mechanisms. [Patrik]
 2012-01-26 19:35:19 +00:00
patrik
5b05cbe46e o [NSE] Added script iax2-brute and supporting IAX2 library that performs 
brute-force password guessing against the Asterisk IAX2 protocol. [Patrik]
 2012-01-24 20:55:29 +00:00
patrik
5ef9f2a70d o [NSE] Added script broadcast-dhcp6-discover and supporting DHCPv6 library. 
The script retrieves and prints an IPv6 address and some of the DHCP6
  options. [Patrik]
 2012-01-24 19:54:50 +00:00
henri
1f431b953f Consistent naming of the address fields between IPv4 and IPv6. 
All IP packet objects now have the following attributes:

  - ip_bin_src (binary src address)
  - ip_bin_dst (binary dst address)
  - ip_src (decimal-dotted string src address)
  - ip_dst (decimal-dotted string dst address)

The ip6_src and ip6_dst attributes have therefore been renamed (ip_bin_src and
ip_bin_dst).

This patch also updates the scripts accordingly.
 2012-01-21 14:46:00 +00:00
henri
78a606b0b7 Fixed typo in comments: 
* respones -> responses
 2012-01-19 22:23:44 +00:00
henri
6f95d9fabe Fixed typos in comments: 
* Thse -> These
  * retunred -> returned
  * pipeling -> pipelining
 2012-01-19 22:22:10 +00:00
patrik
c579d844ba o [NSE] Added script dns-nsid by John Bond, that retrieves name server ID and 
version information.

o [NSE] Applied patch to DNS library by John Bond that adds support for the
  CHAOS class and NSID requests.
 2012-01-17 11:37:19 +00:00
patrik
14c553c2e0 o [NSE] Changed the dnsbl library to take a threaded approach into querying 
DNSBL provides drastically improving performance. [Patrik]

o [NSE] Applied patch from Duarte Silva to dnsbl adding new services and the
  ATTACK category. [Duarte Silva]
 2012-01-15 11:38:35 +00:00
david
a2e693fb24 Factor out port and service lists for shortport.http. 2012-01-14 01:03:16 +00:00
david
b6b2b21e2f Add "soap" to shortport.http. 
Suggested by Gabe Lawrence.
 2012-01-13 03:55:33 +00:00
patrik
0469654acf Modified code used to create the PPPoE host unique tag [Patrik] 2012-01-11 18:21:24 +00:00
patrik
92cb5a3def Fixed bug that would fail to calculate a PADI host unique value in the pppoe 
library under certain circumstances. Fixed bug that would fail to terminate
script properly if no response was received from pppoe server. [Patrik]
 2012-01-10 21:08:20 +00:00
patrik
956c9ffe53 o [NSE] Added the script broadcast-pppoe-discover that discovers PPPoE servers 
on the LAN using the PPPoE Discovery Protocol. [Patrik]
 2012-01-10 18:22:39 +00:00
patrik
0267b56a27 o [NSE] Added the script membase-brute that performs password brute force 
password guessing against the Membase TAP protocol. [Patrik]

o [NSE] Added the script membase-http-info that retrieves information from the
  Couchbase distributed key-value pair server. [Patrik]
 2012-01-10 18:19:21 +00:00
patrik
bf7a46fc0d Added support for decoding the ether_type to Frame:ether_parse in the packet 
library. [Patrik]
 2012-01-10 06:59:45 +00:00
henri
ed2fc828ac Added IPv6 support to firewalk.nse. 2012-01-08 15:13:35 +00:00
patrik
a1bdd51eaf Reverted change tom match.numbytes 2012-01-03 15:10:04 +00:00
patrik
1b370e16a4 o [NSE] Fixed bug in match.numbytes that would return one byte less than what 
was requested. Updated redis library to take the fix into account. [Patrik]
 2012-01-03 14:20:13 +00:00
henri
27aec6396d Indentation fix 2012-01-02 22:13:50 +00:00
patrik
2269e76438 o [NSE] Added a natpmp library and the script nat-pmp-mapport that allows 
NAT mapping of external TCP and UDP ports to internal addresses. [Patrik]
 2012-01-02 11:41:21 +00:00
patrik
4118ee064b o [NSE] Added the script redis-info that lists version and statistic information 
gathered from the Redis network key-value store. [Patrik]

o [NSE] Added the script redis-brute that performs brute force password
  guessing against the Redis network key-value store. [Patrik]
 2012-01-02 11:27:06 +00:00
patrik
0ee55f4651 o [NSE] Added the script socks-brute that performs brute force password 
guessing against SOCKS 5 servers. [Patrik]
 2012-01-02 11:15:34 +00:00
patrik
588ac4fd32 Disable username as password if passonly option is used [Patrik] 2011-12-31 10:17:42 +00:00
patrik
20575e01b9 Fixed bug that would prevent brute library from stopping to guess passwords 
for an account, even when the correct password was found. [Patrik]
 2011-12-30 20:14:48 +00:00
patrik
9ff471d906 o [NSE] Removed DoS code from dhcp-discover and placed it into the discover and 
safe categories. Added support for adding options to DHCP requests in the
  dhcp library. [Patrik]
 2011-12-29 08:07:26 +00:00
patrik
a4e6a82b00 Cleaned up code and removed interface from functions dhcp_send and 
make_request as it was not used. Added WPAD action. [Patrik]
 2011-12-28 21:17:31 +00:00
patrik
07e0426629 o [NSE] Changed the dhcp-discover script to use the DHCPINFORM request to query 
dhcp servers instead of DHCPDISCOVER. Cleaned up some code in the DHCP
  library. [Patrik]
 2011-12-27 18:48:34 +00:00