PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-19 05:59:01 +00:00
Code Issues Projects Releases Wiki Activity
6,403 Commits 2 Branches 0 Tags
42c7c15c3f91f7238daab26bdd04847ea97ec1cc
Commit Graph

6403 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
1887aef067 Allow setting certain extension headers as ancillary data in send_ipv6_ip. 2011-09-18 23:46:54 +00:00
david
074e91c0e0 Add to CHANGELOG: 
o Fixed compilation on OS X 10.7 Lion. Thanks to Patrik Karlsson and
  Babak Farroki for researching fixes.
 2011-09-18 05:18:33 +00:00
david
66cf4fbe4a Define __APPLE_USE_RFC_3542. 
Since OS X 10.7, we must declare whether we want the IPv6 sockets API to
work like RFC 2292 or RFC 3542. As far as I know, we are compatible with
both, so just pick the more recent one, which Apple says will become the
default in the future.
 2011-09-18 05:11:25 +00:00
david
6a8aebbd01 Add to TODO: 
o Fix "BOGUS!  Can't parse supposed IP packet" in packet trace of IPv6
  packets.
 2011-09-17 19:21:55 +00:00
david
70d2105b9f Use if_nametoindex instead of SIOCGIFINDEX. 
The latter isn't available on OS X.
 2011-09-17 06:40:41 +00:00
batrick
2511cd1d2a fixed wrong (global) variable name 2011-09-16 18:33:52 +00:00
david
79a663d469 Add CPE to the IPv6 OS detection todo. 2011-09-16 17:44:57 +00:00
david
4e75c3f349 Remove the constructor from OS_Classification. 
This is not needed not because cpe is not a simple pointer, and I want
to be able to initialize this with curly brackets like a struct.
 2011-09-15 18:41:46 +00:00
david
8b01344caf In build_{icmp,igmp}_raw, fill with zeros when data is NULL. 
This restores the previous behavior of these functions, which was broken
in r24127, which itself was fixing another bug.

r24127 solved the problem of --data-length appending zeroes, not random
data, to ICMP and IGMP packets. But in doing so, it added a check that
the data argument is not NULL. OS detection uses a data argument of
NULL, expecting these functions to fill in zeroes in this case. The
result of this was that the IE probes were being sent with empty
payloads instead of 120 and 150 bytes.
 2011-09-15 17:57:00 +00:00
david
1c67d5e508 Expand a Window 7 fingerprint. 2011-09-15 16:38:54 +00:00
david
1a56b09beb Don't redundantly list the NULL compressor in ssl-num-ciphers.nse. 
This can happen when we ask for a different compressor but the server
replies with NULL instead. Patch by Matt Selsky in
http://seclists.org/nmap-dev/2011/q2/1236.
 2011-09-14 18:21:23 +00:00
david
49be2a7c61 Fix compressor names in ssl-enum-ciphers.nse. 
patch from Matt Selsky in http://seclists.org/nmap-dev/2011/q2/1235.
 2011-09-14 18:14:52 +00:00
david
748e8f908f CHANGELOG for ssl-enum-ciphers strength ratings. 2011-09-14 17:57:49 +00:00
david
2990c68107 Whitespace in ssl-enum-ciphers. 2011-09-14 17:57:49 +00:00
david
3cf16f31c3 Update output and NSEDoc for ssl-enum-ciphers. 2011-09-14 17:57:48 +00:00
david
44fcc2f455 ssl-enum-ciphers update for cipher strength from Gabriel Lawrence. 2011-09-14 17:57:47 +00:00
henri
cc4310b6d0 Cosmetic fix: consistently return 'false' in the hostrule 2011-09-14 10:03:41 +00:00
henri
bba444c842 Added application CPEs for Undernet IRCu 2011-09-13 10:13:42 +00:00
henri
a16d90e443 Added application CPEs for ISA server 2011-09-13 09:32:54 +00:00
henri
b2eb0b050f Fixed broken format introduced as of r26471 2011-09-13 09:29:04 +00:00
henri
ef7e4e4d31 Added application CPEs for netatalk 2011-09-13 09:11:31 +00:00
henri
45c2293dc2 Added application CPEs fro Apple AFP server 2011-09-13 08:51:07 +00:00
tomsellers
b841ee37b7 a couple more adjustments to account status handling in brute scripts. 
Revert wording in oracle-brute.nse, add support for new category in ldap-brute.nse and reflect new wording in examples in afp-brute.nse
 2011-09-13 01:44:30 +00:00
fyodor
5743a26565 trivial nsedoc change 2011-09-12 21:07:57 +00:00
david
c0acb48951 In ms-sql-info, change the hostrule conditions 
state ~= "closed"
into
	state == "open" or state == "open|filtered"

(state ~= "closed") matches "filtered", so the script was running
against hosts that had all the relevant ports filtered.
 2011-09-12 16:36:06 +00:00
djalal
0b20e734b4 Define 'State.DISABLED_VALID' value. 2011-09-12 14:21:21 +00:00
djalal
ae90b1b6f8 Declare the 'new_targets' inside the NOLUA conditional directives. 2011-09-11 22:53:57 +00:00
tomsellers
4e87a1df42 Added string for .PARAM account status, this will be useful later. 2011-09-11 21:28:28 +00:00
tomsellers
198fd3b3bb Changing account status strings for consistency. Adding two new account states, LOCKED_VALID & LOCKED_DISABLED. 2011-09-11 21:23:34 +00:00
fyodor
726022d23f Slightly improve the nsedoc for a couple libraries 2011-09-11 21:21:17 +00:00
david
d2462fa413 Use cpe:/o:sun:sunos; coe:/o:sun:solaris names are deprecated. 2011-09-11 21:11:32 +00:00
david
d2bce72bee Doc typo in address-info.nse. 2011-09-11 21:05:57 +00:00
fyodor
2ff08a24a1 Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized 2011-09-11 20:50:56 +00:00
fyodor
a5d81c3b35 Improve some NSEDoc descriptions 2011-09-11 20:44:07 +00:00
fyodor
bff90f3d55 minor updates to the nsedoc descriptions for some scripts 2011-09-11 18:26:37 +00:00
tomsellers
24c8c06f1b Added support to nmap-service-probes for Microsoft SQL 2008 R2 RTM and SP1. 
Added softmatch line for Microsoft SQL 2008 R2.

Added specificity to CPE data on Microsoft SQL Server matchlines.
Removed auto flag on the os cpe lines for MS SQL Server
 2011-09-11 16:18:06 +00:00
tomsellers
03e49171dd Added ms-sql-brute.brute-windows-accounts to script documentation. Adjusted existing documentation to improve rendered result on NSEDOC web page. 2011-09-11 14:14:08 +00:00
tomsellers
22a029c21b Updating CHANGELOG info on recent changes. 2011-09-11 12:49:54 +00:00
tomsellers
035ae9e9b1 Updated account status text in brute force password discovery scripts in an effort to make the reporting more consistent across all scripts. This will have an impact on any code that parses these values. 
In the case of a few of these scripts the only thing that was updated was the example text as the scripts relied on the creds library which handles the strings internally.
 2011-09-11 12:13:13 +00:00
tomsellers
1c92c03401 Add a few scripts to the "broadcast" script category based on traffic behavior. 2011-09-11 11:58:18 +00:00
tomsellers
2c8d24b557 Added error handling to catch and gracefully handle error when script was called via category instead of explicitly. The error was due to the backorifice-brute.ports script arg not being specified and the script trying to concat the value (nil). 2011-09-11 11:49:28 +00:00
henri
2c47d52262 Fixed/Added CPEs for Cisco products 2011-09-10 08:40:27 +00:00
henri
67505e22fb Report more precise CPE for the distribution/OS if possible 2011-09-10 08:23:00 +00:00
david
f0dc4ebd99 Something I just thought of: NSE should have access to CPE results. 2011-09-10 01:27:07 +00:00
tomsellers
ee676fab14 Added support for specifying a UPN suffix to be appended to usernames when brute forcing Microsoft Active Directory accounts. This should provide more reliable tests against domains that have been heavily organized into OUs or have child domains with a single UPN suffix. The UPN suffix can guessed or found via a null LDAP bind by ldap-rootdse.nse. 2011-09-09 23:57:21 +00:00
david
04069e6166 Merge r26341:26417 from /nmap-exp/david/nmap-cpe. 
This adds CPE output support.
 2011-09-09 23:24:14 +00:00
batrick
c4d6d12be7 \x is not a valid escape sequence... 2011-09-09 19:08:13 +00:00
david
bf51635ae3 Name typo. 2011-09-09 08:51:50 +00:00
david
5574f50bf4 Free TOps_AVs and TWin_AVs between OS rounds. 
This was leaking a small amount of memory when OS detection was repeated
on a host.
 2011-09-09 08:24:47 +00:00
fyodor
1697e714fe Add some new infrastructure tasks we're working on 2011-09-08 23:32:20 +00:00