PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-10 09:49:05 +00:00
Code Issues Projects Releases Wiki Activity
5,019 Commits 2 Branches 0 Tags
3f15b93e98a6905853d1271594c45b51eb669fe0
Commit Graph

5019 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
patrik
3f15b93e98 Fixed typo in ms-sql-xp-cmdshell.cmd argument. Changed from mssql-xp-cmdshell 
to ms-sql-xp-cmdshell. [Patrik]
 2011-02-09 16:25:42 +00:00
tomsellers
21ee742ca3 Addition Tomcat/Coyote match line to capture Tomcat version data 
when the server provides it.
 2011-02-09 11:55:02 +00:00
ron
d33c79c65f Removed some duplicate shares for bruteforcing, alphabetized the list, and added TEMP and SHARE - all thanks to Chris Woodbury's suggestions 2011-02-09 04:22:15 +00:00
fyodor
943f720292 a few changes from chat w/David 2011-02-08 20:14:29 +00:00
david
7cf032563d o The -V and --version options now show the platform Nmap was compiled 
on, which features are compiled in, and the version numbers of
  libraries it is linked against. [Ambarisha B., David]
 2011-02-08 19:50:13 +00:00
david
ae4ad5de25 Add NSE TODO, DNSSEC enumeration script. 2011-02-04 17:02:50 +00:00
david
ac4fc3c2b8 New NSE TODO. 2011-02-04 08:46:16 +00:00
david
31935a45d4 o [NSE] Fixed some portrules that used shortport functions incorrectly 
and always returned true in dns-zone-transfer and
  ftp-proftpd-backdoor. [Jost Krieger]
 2011-02-04 08:46:14 +00:00
kris
740318cee9 Updating ip_is_reserved(): the last IPv4 address blocks (102-104/8, 179/8 and 
185/8) have been allocated to the RIRs
 2011-02-04 03:06:57 +00:00
david
cd9d6a9fc4 Add status and address to the list of elements that can be diffed. Patch 
by Daniel Miller.
 2011-02-03 04:53:06 +00:00
david
173027cf0d Factor out code that formats a script result diffs. 2011-02-03 04:53:04 +00:00
david
98daa69d41 Add support for prerule and postrule scripts to Ndiff. 2011-02-03 04:53:03 +00:00
david
bb07ca0b57 Limit exception catching to IOError; i.e., missing files. I much prefer 
to get a stack trace in most situations.
 2011-02-03 04:53:01 +00:00
david
4c649d481b Fix ordering of hostscript diff elements when either side of the diff 
doesn't have any. Patch by Daniel Miller.
 2011-02-03 04:52:59 +00:00
david
5e3c5d8eca Fix typos in nmap.dtd: (prescript, postscript) not (prescripts, 
postscripts).
 2011-02-03 04:52:57 +00:00
david
c68449d5b3 CHANGELOG: 
o [NSE] Fixed a bug in the nrpe-enum script that would make it run for
  every port (when it was selected, which it was not by default).
  Daniel Miller reported the bug. [Patrick]
 2011-02-01 21:28:06 +00:00
david
21113fdfa9 Fix the nrpe-enum portrule. It was returning a function, thus always 
true.
 2011-02-01 21:25:46 +00:00
david
47030f71db o [NSE] Made it a controlled Lua stack trace instead of a fatal error 
when an NSE script sets a negative socket timeout. Vlatko Kosturjak
  reported the bug. [David]
 2011-02-01 21:20:29 +00:00
fyodor
06b988353a Some changes from weekly chat w/David 2011-02-01 20:24:08 +00:00
david
84c4899414 In snmp-interfaces.nse, move the check for the required script argument 
snmp-interfaces.host into the prerule and out of the action. Otherwise,
being default, this is the only script that runs during the prescan by
default.
 2011-02-01 18:16:28 +00:00
david
b1e3114eca Move the "Script Pre-scanning", "Script scanning", and "Script 
Post-scanning" messages to inside the run function, so they can be
printed only after we're sure we have at least one thread to run.
 2011-02-01 18:16:27 +00:00
david
c0f8979b01 Require a verbosity of 2 or higher for "NSE: Starting runlevel 1 (of 2) 
scan." messages. (Was 1 or higher.)
 2011-02-01 17:18:12 +00:00
kris
c95e5d797b updating ip_is_reserved(): 39/8 and 106/8 allocated today 2011-02-01 00:19:56 +00:00
david
202d26df7f Canonicalize "Windows ... Pro" to "Windows ... Professional". Patch by 
Xavier Sudre.
 2011-01-31 20:02:55 +00:00
david
620dc0e32d splay an error when a directory listing can't be found in ftp-anon, 
instead of throwing an exception (and losing the fact that anonymous FTP
was allowed).
 2011-01-31 09:46:32 +00:00
david
f2dac38381 Gracefully handle EOF in ftp-anon.nse. 2011-01-31 09:46:31 +00:00
djalal
d1b34654b8 Fix a bug which caused some NSE scripts to fail, due to the absence of 
the NSE SCRIPT_NAME environment variable when the scripts are loaded.
Reported by Michael Pattrick.
 2011-01-30 23:31:57 +00:00
david
747da97bd1 Add some more explicit repetitions of "Windows" in nmap-os-db. 2011-01-30 19:39:45 +00:00
david
5326c46639 Spell out "Windows" explicitly for each alternative when a fingerprint 
matches multiple versions of Windows. So,

Fingerprint Microsoft Windows XP or Windows Server 2003

not

Fingerprint Microsoft Windows XP or Server 2003

I used the second form to save space, but it turns out there are already
more fingerprints using the first format. These were contributed by
Xavier Sudre.
 2011-01-30 19:39:36 +00:00
david
71ef116d1e Add to CHANGELOG: 
o Fixed some inconsistencies in nmap-os-db reported by Xavier Sudre
  from netVigilance.
 2011-01-30 19:22:49 +00:00
david
abb16d1093 Define ARCHFLAGS to convince py2app that we need a universal bootstrap 
binary. Apparently something changed in distutils that now makes this
necessary.
 2011-01-30 19:16:03 +00:00
robert
d50c58dcc1 Force a match against "^PHP/" (i.e. now with a trailing forward slash) to prevent the "Version from header" from incorrectly matching against the Set-Cookie header with the value "PHPSESSID". This should match PHP/2.x onwards; I'm not sure about earlier versions of PHP as I can't find any references. 
This will no longer match against the generic "X-Powered-By: PHP" (rare?), but that never gave us a version number anyway, so you could consider that a bug too.

We don't currently check for variations such as "Zend Core/2.0.1 PHP/5.2.1", so that could be added in the future, but at least the http-headers script will reveal the X-Powered-By header anyway.
 2011-01-30 11:15:48 +00:00
patrik
a139a26fd7 Fix for bug that would make Nmap fail to run when compile without SSL support. 
The wsdd library incorrectly assumed OpenSSL to always be available and the
ssh-hostkey used the undeclared SCRIPT_NAME in message when evaluating SSL
support. The bug was reported by Michael Pattrick on nmap-dev:
http://seclists.org/nmap-dev/2011/q1/312

[Patrik]
 2011-01-30 10:39:17 +00:00
fyodor
2ffa4e7e02 Add a little bug reported by Brian Krebs 2011-01-30 05:40:02 +00:00
david
b537d9ba4b Merge some identical nmap-os-db fingerprints found by Xavier Sudre. 2011-01-30 01:25:49 +00:00
david
9481dd4067 One more nmap-os-db canonicalization. 2011-01-30 01:06:42 +00:00
david
46691fcb3d Some nmap-os-db canonicalizations from Xavier Sudre. 2011-01-30 01:04:35 +00:00
fyodor
5e118af4d0 Update SVN version number to 5.51SVN so that it is above the current release number (5.50). 2011-01-29 19:35:46 +00:00
djalal
25292e93a7 Add a directive for the --scripthelp code to check if Lua is compiled. 2011-01-29 11:30:23 +00:00
fyodor
7e33f19662 fix a small typo 2011-01-29 08:00:19 +00:00
david
d7e555c878 Patch from Daniel Miller: fix an output line that was writing to stdout 
even when other output was redirected.
 2011-01-28 21:16:18 +00:00
david
0c8e9d05c3 Add 5.50 line to CHANGELOG. 2011-01-28 21:16:17 +00:00
david
8d5edf66c3 Fix some XML syntax errors in scripting.xml. 2011-01-28 18:12:52 +00:00
david
1f6218599f Add a short section on --script-help to refguide.xml. 2011-01-28 18:06:08 +00:00
david
b53b5fced0 Add a missing period to NSEDoc. 2011-01-28 17:54:49 +00:00
batrick
9b135b281f localize some function calls 2011-01-28 13:54:05 +00:00
david
5fa2e66900 Include the "scripts" and "nselib" directory paths in XML --script-help 
output.
 2011-01-28 04:15:21 +00:00
fyodor
31d164ccf5 Oops, one more trivial CHANGELOG update 2011-01-28 01:09:45 +00:00
fyodor
63f0c653fc Trivial shortening of a CHANGELOG entry 2011-01-28 01:08:33 +00:00
fyodor
a99c5da132 note a remaining documentation task for --script-help 2011-01-28 01:03:17 +00:00