PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-01 12:29:03 +00:00
Code Issues Projects Releases Wiki Activity
8,248 Commits 2 Branches 0 Tags
4bdd43f4660e67c4224e1d20d3b0e884a5dcfdbd
Commit Graph

8248 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
4bdd43f466 Remove some useless code. 2013-05-03 17:55:00 +00:00
david
40a73d19c1 Remove unimplemented feature payload-file 2013-05-03 17:54:58 +00:00
david
d90f9549a4 Remove unused/unimplemented host_timeout feature 2013-05-03 17:54:57 +00:00
david
a4240eaab5 Minor style fix 2013-05-03 17:54:55 +00:00
david
3c8eb9781a Remove unused method from NpingOps 2013-05-03 06:25:24 +00:00
david
436d222fff Fix bug: unset bits properly 2013-05-03 05:59:54 +00:00
dmiller
863a3779e6 New service probe and matchline for Minecraft servers 
Lots of good info here. Idea, regex, and debugging provided by Eric
Davisson on IRC.
 2013-05-02 18:55:59 +00:00
henri
e623d8c9f1 Replaced strtok_r() calls by strtok(). 
The latter is more portable and can replace strtok_r in our case.
 2013-05-02 17:32:15 +00:00
henri
6638f749d1 Added explicit pointer cast. 
Reported by Jaebum Shin.
 2013-05-02 16:51:46 +00:00
batrick
1720606226 Upgrade 5.2.1 to 5.2.2. 
Bugs fixed: http://www.lua.org/bugs.html
 2013-05-02 14:59:06 +00:00
henri
371be36f88 Declare variables before executing any statement to follow 
C standards.

Report and original patch by Gisle Vanem.
 2013-05-02 08:36:08 +00:00
henri
cce3012ac4 Removed designated structure initializers that break 
compilation with MSVC.

This was reported by Gisle Vanem.
 2013-05-02 08:27:20 +00:00
henri
f90d107b40 Added checks to avoid including netdb.h on platforms that don't provide it. 2013-05-01 15:15:57 +00:00
henri
9b629aaec9 Express fields as uintX_t to ensure portability. 2013-04-30 18:24:50 +00:00
henri
153d3e695c Reverted r30784. 
The socks4_data structure is not aligned. Sending sizeof(sock4) bytes
results in invalid requests.

Noticed and reported by David: http://seclists.org/nmap-dev/2013/q2/160
 2013-04-30 18:01:24 +00:00
paulino
fc472edbd1 Updates CHANGELOG to reflect latest changes in hostmap scripts and new script http-vuln-cve2013-0156. 2013-04-30 16:19:50 +00:00
henri
4685d44ff8 Removed a superfluous nsock_set_proxychain() statement. 
This call got duplicated during the merge and provoked
non-fatal nsock errors like:

NSOCK ERROR [0.0310s] nsp_set_proxychain(): Invalid call. Existing proxychain on this nsock_pool
 2013-04-30 07:12:03 +00:00
paulino
151657012d -Adds hostmap-ip2hosts.nse. This script lists domain names pointing to the same IP address. 2013-04-30 01:56:29 +00:00
paulino
fd5f8e5180 -updates markup to extract domains ( it was broken ) 
-adds xml structured output
-updates documentation and adds @xmloutput tag
 2013-04-30 01:53:32 +00:00
paulino
2e30c468f4 -Adds xml structured output support and the corresponding @xmloutput tag. 2013-04-30 01:24:10 +00:00
david
3b14d188cb Add a debug message when binding a socket. 2013-04-27 16:22:11 +00:00
david
67bc0819b4 Use get_localaddr_string in the connect bind log message. 
This includes the port number, not just the address.
 2013-04-27 16:22:09 +00:00
david
21077a93e1 Add get_localaddr_string. 2013-04-27 16:22:07 +00:00
david
d6d2a832db Factor out the guts of get_peeraddr_string. 2013-04-27 16:22:06 +00:00
david
f0b2e10664 Add service probe for Hazelcast from Pavel Kankovsky. 
http://seclists.org/nmap-dev/2013/q2/7
 2013-04-27 08:02:42 +00:00
paulino
fc431f8df5 -Adds an administration password reset vulnerability in Seagate BlackArmor 110, 220 and 440. 2013-04-26 23:59:28 +00:00
dmiller
93eee124c2 Fix usage of nmap.fetchfile in several scripts 
Discussion thread: http://seclists.org/nmap-dev/2013/q2/121

Existing behavior preserved and preferred, but absolute and local paths
should also work now. Notably, smb-psexec's locate_file function claimed
to check current directory but did not.
 2013-04-26 12:14:44 +00:00
dmiller
666de7b83f Clarify nmap.fetchfile only searches Nmap's paths 2013-04-26 12:14:42 +00:00
dmiller
a606766d88 Allow dns-brute.hostlist to be a relative path 2013-04-26 12:14:40 +00:00
david
8a8be1e9f9 Revision of telnet-brute by nnposter. 
http://seclists.org/nmap-dev/2013/q2/101

- Changed line termination from \r\0 to \r\n.

- Changed response to the telnet server ECHO "will" / "will not" from
  outright "do not" to an agreement with whatever the server proposes
  to make the script work with some daemons.

- Removed use of receive_lines(), which was causing either time-outs or
  unnecessary connection tear-downs due to waiting on a line
  termination. This change improved the script success rate and/or
  performance (5x in some cases).

- Exposed the connection time-out value as a configurable parameter
  (telnet-brute.timeout). It defaults to 5s.

- Improved handling of connection errors, which were occassionally
  causing credential combinations to be skipped.

- Updated the logged-in status detection logic to make the script work
  with some daemons.

- Avoided overlapping connections to make the script work with daemons
  that allow only one connection at a time.

- Replaced a locally defined routine with stdnse.string_or_blank() for
  printing out credentials. Changed printing of tested credentials in
  the debug output to be consistent with script results.

- Script will now report if it senses password-only authentication.

- Implemented detailed debug messages (e.g. "Sending password") at
  debug level 3 (configurable).

- Expanded the script documentation.
 2013-04-26 05:23:12 +00:00
paulino
70dfe708e9 Adds http-vuln-cve2013-0156.nse: Detects Ruby on Rails servers vulnerable to object injection, remote 
command executions and denial of service attacks. (CVE-2013-0156)
 2013-04-25 03:15:33 +00:00
david
aa76963dcd Check for an address family mismatch after parsign NetBlocks. 
This caused a segfault in reverse DNS resolution when the v4hostip of an
IPv6 target was accessed:
./nmap -sL 2001:500:88:200::10
 2013-04-22 21:56:09 +00:00
david
4e70079eb2 Assert that we are dealing with IPv4 targets in reverse DNS. 2013-04-22 21:56:08 +00:00
henri
2b093d6ada ChangeLog for nsock proxy support. 2013-04-22 19:37:09 +00:00
henri
a687f70af3 Removed our copy of mkstr, which has been moved to nbase. 2013-04-22 19:37:03 +00:00
henri
b867fa4721 Fixed ID type in format string. 2013-04-22 19:36:55 +00:00
henri
c8f7d4b7ac Refactored the proxy object model to enforce speration between operations and data. 2013-04-22 19:36:47 +00:00
henri
03ff0651c7 Made proxy handlers return errors to caller when unable to handle proxy replies. 
Errors are returned internally as -1 * <errno code>.
 2013-04-22 19:36:38 +00:00
henri
eda720a389 Style fixes 2013-04-22 19:36:30 +00:00
henri
1780d0a655 Refactored HTTP proxy code to highlight execution flow. 2013-04-22 19:36:22 +00:00
henri
8a260bc209 Refactored code to highlight execution flow. 2013-04-22 19:36:15 +00:00
henri
7c1f9aa780 Removed a kinda brutal assert(0); 
Don't abort when a socks4 proxy returns an invalid message,
just ignore it instead.
 2013-04-22 19:36:07 +00:00
henri
157922dfe0 Replaced proxy_chain->specstr by node->nodestr. 
The global proxy chain specification string wasn't
used anywhere, and I'd need a string to represent
each node of the chain.
 2013-04-22 19:35:59 +00:00
henri
5cf3780a93 Added a nsock log message to nsock_connect_internal. 
Explicitely indicates that a connection is about to be
redirected through the proxy chain.
 2013-04-22 19:35:50 +00:00
henri
1b45bfef14 Made NSE use proxychains too. 2013-04-22 19:35:42 +00:00
henri
1455bf0624 Declare local constant string as array instead of pointer to 
follow coding best practices. Also made string static.
 2013-04-22 19:35:30 +00:00
henri
5be3de1477 Minor style fixes. 2013-04-22 19:35:22 +00:00
henri
9d8c84b17f Replaced hardcoded value by a sizeof() call. 2013-04-22 19:35:14 +00:00
henri
b54590c344 Don't artificially increase timeouts to establish proxy 
connections. It's now up to the caller to adjust timeout
values accordingly.
 2013-04-22 19:35:07 +00:00
henri
a729e0047c Reworked expression for readability. 2013-04-22 19:34:58 +00:00