PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-26 08:09:07 +00:00
Code Issues Projects Releases Wiki Activity
5,888 Commits 2 Branches 0 Tags
44fcc2f4550f978f85d080ff7ce5a1e863f39a42
Commit Graph

5888 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
44fcc2f455 ssl-enum-ciphers update for cipher strength from Gabriel Lawrence. 2011-09-14 17:57:47 +00:00
henri
cc4310b6d0 Cosmetic fix: consistently return 'false' in the hostrule 2011-09-14 10:03:41 +00:00
henri
bba444c842 Added application CPEs for Undernet IRCu 2011-09-13 10:13:42 +00:00
henri
a16d90e443 Added application CPEs for ISA server 2011-09-13 09:32:54 +00:00
henri
b2eb0b050f Fixed broken format introduced as of r26471 2011-09-13 09:29:04 +00:00
henri
ef7e4e4d31 Added application CPEs for netatalk 2011-09-13 09:11:31 +00:00
henri
45c2293dc2 Added application CPEs fro Apple AFP server 2011-09-13 08:51:07 +00:00
tomsellers
b841ee37b7 a couple more adjustments to account status handling in brute scripts. 
Revert wording in oracle-brute.nse, add support for new category in ldap-brute.nse and reflect new wording in examples in afp-brute.nse
 2011-09-13 01:44:30 +00:00
fyodor
5743a26565 trivial nsedoc change 2011-09-12 21:07:57 +00:00
david
c0acb48951 In ms-sql-info, change the hostrule conditions 
state ~= "closed"
into
	state == "open" or state == "open|filtered"

(state ~= "closed") matches "filtered", so the script was running
against hosts that had all the relevant ports filtered.
 2011-09-12 16:36:06 +00:00
djalal
0b20e734b4 Define 'State.DISABLED_VALID' value. 2011-09-12 14:21:21 +00:00
djalal
ae90b1b6f8 Declare the 'new_targets' inside the NOLUA conditional directives. 2011-09-11 22:53:57 +00:00
tomsellers
4e87a1df42 Added string for .PARAM account status, this will be useful later. 2011-09-11 21:28:28 +00:00
tomsellers
198fd3b3bb Changing account status strings for consistency. Adding two new account states, LOCKED_VALID & LOCKED_DISABLED. 2011-09-11 21:23:34 +00:00
fyodor
726022d23f Slightly improve the nsedoc for a couple libraries 2011-09-11 21:21:17 +00:00
david
d2462fa413 Use cpe:/o:sun:sunos; coe:/o:sun:solaris names are deprecated. 2011-09-11 21:11:32 +00:00
david
d2bce72bee Doc typo in address-info.nse. 2011-09-11 21:05:57 +00:00
fyodor
2ff08a24a1 Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized 2011-09-11 20:50:56 +00:00
fyodor
a5d81c3b35 Improve some NSEDoc descriptions 2011-09-11 20:44:07 +00:00
fyodor
bff90f3d55 minor updates to the nsedoc descriptions for some scripts 2011-09-11 18:26:37 +00:00
tomsellers
24c8c06f1b Added support to nmap-service-probes for Microsoft SQL 2008 R2 RTM and SP1. 
Added softmatch line for Microsoft SQL 2008 R2.

Added specificity to CPE data on Microsoft SQL Server matchlines.
Removed auto flag on the os cpe lines for MS SQL Server
 2011-09-11 16:18:06 +00:00
tomsellers
03e49171dd Added ms-sql-brute.brute-windows-accounts to script documentation. Adjusted existing documentation to improve rendered result on NSEDOC web page. 2011-09-11 14:14:08 +00:00
tomsellers
22a029c21b Updating CHANGELOG info on recent changes. 2011-09-11 12:49:54 +00:00
tomsellers
035ae9e9b1 Updated account status text in brute force password discovery scripts in an effort to make the reporting more consistent across all scripts. This will have an impact on any code that parses these values. 
In the case of a few of these scripts the only thing that was updated was the example text as the scripts relied on the creds library which handles the strings internally.
 2011-09-11 12:13:13 +00:00
tomsellers
1c92c03401 Add a few scripts to the "broadcast" script category based on traffic behavior. 2011-09-11 11:58:18 +00:00
tomsellers
2c8d24b557 Added error handling to catch and gracefully handle error when script was called via category instead of explicitly. The error was due to the backorifice-brute.ports script arg not being specified and the script trying to concat the value (nil). 2011-09-11 11:49:28 +00:00
henri
2c47d52262 Fixed/Added CPEs for Cisco products 2011-09-10 08:40:27 +00:00
henri
67505e22fb Report more precise CPE for the distribution/OS if possible 2011-09-10 08:23:00 +00:00
david
f0dc4ebd99 Something I just thought of: NSE should have access to CPE results. 2011-09-10 01:27:07 +00:00
tomsellers
ee676fab14 Added support for specifying a UPN suffix to be appended to usernames when brute forcing Microsoft Active Directory accounts. This should provide more reliable tests against domains that have been heavily organized into OUs or have child domains with a single UPN suffix. The UPN suffix can guessed or found via a null LDAP bind by ldap-rootdse.nse. 2011-09-09 23:57:21 +00:00
david
04069e6166 Merge r26341:26417 from /nmap-exp/david/nmap-cpe. 
This adds CPE output support.
 2011-09-09 23:24:14 +00:00
batrick
c4d6d12be7 \x is not a valid escape sequence... 2011-09-09 19:08:13 +00:00
david
bf51635ae3 Name typo. 2011-09-09 08:51:50 +00:00
david
5574f50bf4 Free TOps_AVs and TWin_AVs between OS rounds. 
This was leaking a small amount of memory when OS detection was repeated
on a host.
 2011-09-09 08:24:47 +00:00
fyodor
1697e714fe Add some new infrastructure tasks we're working on 2011-09-08 23:32:20 +00:00
david
fd7f625ea8 Fix a matchline backreference. 2011-09-08 20:17:12 +00:00
david
a1f3a6429d Fix matchline typo. 2011-09-08 20:12:52 +00:00
david
063dca724d Fix a service match backreference. 2011-09-08 19:46:11 +00:00
david
4d0a8a27b1 Show a visible error when targets-ipv6-* are run without an interface. 2011-09-08 16:11:21 +00:00
david
4937b2e063 Use strcasecmp, not strcasestr, in hostcmp. 
hostcmp is documented to determine whether "a and b are considered the
same hostnames." But what it's really doing is testing whether a
contains b. This isn't even symmetric, so I think it's wrong.
 2011-09-07 21:10:47 +00:00
fyodor
8b88d901a9 Remove 3 vuln scripts from default category as discussed at http://seclists.org/nmap-dev/2011/q3/732 2011-09-07 20:40:51 +00:00
david
b1e75e504c Expand a scanme fingerprint. 2011-09-06 20:49:29 +00:00
david
539525c21a Fix some OS "Class" versions that were overly specific. 2011-09-06 18:25:37 +00:00
tomsellers
3dec74248f Add support for saving search results to a CSV file via a new script argument 'ldap.savesearch'. 2011-09-05 22:50:27 +00:00
tomsellers
c193cadac7 Fix a typo 2011-09-05 22:44:08 +00:00
tomsellers
f6dc7a160d ldap.lua - added support for saving search results to CSV. 
Also added support for decoding certain time formats found in Microsoft AD such as lastLogon,pwdLastSet, etc
 2011-09-05 22:39:03 +00:00
david
7ad3893ad1 NSEDoc fixes in oracle-brute. 2011-09-05 17:00:48 +00:00
patrik
ae75aa7fd3 o [NSE] Added new default credential list for Oracle and modified the 
oracle-brute script to make use of it. [Patrik]
 2011-09-05 08:13:34 +00:00
patrik
4e9265b883 fixed a bug that would prevent the library from authenticating against 
Oracle 10.2.0.1.0 XE [Patrik]
 2011-09-05 07:52:30 +00:00
henri
f2ff9bb728 Added xmpp-info.nse as a replacement for xmpp.nse (script from Vasily Kulikov). 2011-09-04 19:18:22 +00:00