PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-05 22:19:03 +00:00
Code Issues Projects Releases Wiki Activity
8,625 Commits 2 Branches 0 Tags
541d49980b5987f4d72fe121936eebbbf1b44fd0
Commit Graph

8625 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
d33tah
541d49980b Whitespace. 2013-09-15 15:44:56 +00:00
d33tah
f595259310 Replace the current list of checks with a is_valid_path function. 2013-09-15 15:44:51 +00:00
henri
4fd3cc2f10 Allow NSE_TYPE_CONNECT_SSL to be canceled. 
This fixes a really bad bug that seems to have been there for a while. Canceling
a nsock connect SSL operation fails with fatal(). I have never seen it in real
life though.

Added a corresponding unit test.
 2013-09-15 10:52:07 +00:00
d33tah
8654d12050 Update the httpd.lua comment, the "list the directory contents" is irrelevant. 2013-09-12 18:35:42 +00:00
d33tah
2fde134f36 fflush stderr in all messages sent by Ncat. This makes 
it more comfortable to test Ncat under Cygwin, which
doesn't fflush even if the message contains \n.
(At least not in my ssh+screen+zsh combination).
 2013-09-12 14:23:24 +00:00
david
28599f1567 Revert r32301..r32306. 
Committed accidentally.
 2013-09-12 08:20:13 +00:00
david
08e38545a3 Add connect-mode recv() and send() support. 2013-09-12 08:12:25 +00:00
david
bc96871709 Add null.lua, a filter meant for testing supersocket. 2013-09-12 08:12:20 +00:00
david
39fa14d614 Add script loading facilities. 2013-09-12 08:12:16 +00:00
david
8d796f8981 Add ncat_main.c facilities for -L. Currently still with the ugly 
o.script name.
 2013-09-12 08:12:11 +00:00
david
ecd7a45ec2 Restore the dump_stack routine, it's really useful for debugging. 2013-09-12 08:12:07 +00:00
david
42ce2bc9cc Apply my refactoring changes from r31989. 2013-09-12 08:12:03 +00:00
d33tah
ccd0c02a4c Add a lacking space in the license comment. The command I used to do this is: 
for file in `grep "* including the terms and conditions of this license text as well.       \*" * -r --files-with-match `; do sed "s/\* including the terms and conditions of this license text as well.       \*/* including the terms and conditions of this license text as well.        */g" -i $file; done
 2013-09-11 19:06:20 +00:00
d33tah
a0bd430087 Fix path traversal. Dots are escaped by % in Lua, not by \. 2013-09-10 23:42:59 +00:00
d33tah
5083b40527 Make the script detect \r\n correctly. 2013-09-10 23:24:09 +00:00
fyodor
080015cd24 Add an item noted on dev list 2013-09-08 07:45:54 +00:00
sophron
c084e2fd8d [NSE] Updated script.db. 2013-09-06 21:08:00 +00:00
david
502339c92c Revert to r32212. 
My recent changes are causing problems when I try to integrate them into
the ncat-sa-take2 branch.
 2013-09-06 06:16:13 +00:00
david
4fdde97639 Factor out lua_call_traceback. 
This does a lua_pcall with the standard traceback error handler.
 2013-09-05 22:10:15 +00:00
david
3ada0d56c3 Don't use global o.cmdexec in lua_setup. 
Pass the name of the file to read as a parameter.
 2013-09-05 20:35:50 +00:00
david
a16dd65503 Get rid of static lua-exec state. 
Have lua_setup return the state it creates. Store the state created from
--lua-exec in the global options table. Use a temporary local for
--lua-exec-internal.
 2013-09-05 20:35:49 +00:00
david
7ab4da3581 Get rid of the global traceback index. 
Just push the traceback function before lua_pcall. The now has to be
less meticulously maintained between lua_setup and lua_run.
 2013-09-05 20:35:48 +00:00
david
c38367b8c8 Remove obsolete comment. 2013-09-05 20:35:46 +00:00
sophron
27f241e20f [NSE] Added http-devframework (along with its fingerprints file) that tries to find out the technology behind the target website. 2013-09-05 19:31:40 +00:00
d33tah
ca3ceecbf3 Fix echo.lua bug related to how io.stdin:read(n) works. 2013-09-04 15:40:51 +00:00
d33tah
fad24ba53e Fix a typo. 2013-09-04 15:40:47 +00:00
d33tah
143a8acc8a Don't consider "\r" an end of line. 2013-09-04 15:40:41 +00:00
d33tah
4b07187873 Make conditional.lua use read_line too. 2013-09-04 14:33:39 +00:00
d33tah
e718536eaf Send 414 if the first line is longer than 8096 bytes. 2013-09-04 14:25:53 +00:00
d33tah
6f472f154c Replace io.stdin:read("*line") with a custom read_line function. 2013-09-04 14:04:55 +00:00
d33tah
bbadf79933 Copy httpd.lua from lua-exec-examples branch. 2013-09-03 18:44:46 +00:00
d33tah
ad2b15b88f Make ncat-test.pl work on both Windows and *nix without modification; 
feel free to revert it if you believe it needs some discussion first.
(I find it useful when working from both VM and Linux on a shared
directory)
 2013-09-03 01:01:38 +00:00
dmiller
989ae60dd2 Update traceroute-geolocation for new geoplugin.net API 2013-09-02 11:36:24 +00:00
david
f6c83d2a37 Performance improvement in telnet-brute. 
By nnposter.
http://seclists.org/nmap-dev/2013/q3/413
 2013-08-30 16:04:19 +00:00
d33tah
695be03e60 Fix a copy-paste mistake in Ncat test suite. 2013-08-30 10:23:22 +00:00
d33tah
d68d608d7d Fix coding style of all scripts with Lunadry. 2013-08-29 13:34:23 +00:00
d33tah
02b7b0ac8e Mention the HTTP server in --lua-exec section. 2013-08-29 12:26:28 +00:00
d33tah
520e1a4fc5 Add some more --lua-exec documentation. 2013-08-29 12:18:14 +00:00
d33tah
fde17a7db5 Mention the SSH built-in proxy. 2013-08-26 17:26:20 +00:00
d33tah
fe202d25f2 Add <command> tags to the Ncat Users' Guide. 2013-08-26 17:20:14 +00:00
d33tah
8c063aad3c Add a section on HTTP servers to Ncat Users' Guide. 2013-08-26 15:53:37 +00:00
fyodor
b490777101 Add the source code for the Ncat Guide (http://nmap.org/ncat/guide/index.html) to the Ncat docs directory 2013-08-24 06:08:21 +00:00
sophron
441f840ba9 [NSE] Updated script.db 2013-08-23 02:38:20 +00:00
sophron
f7a0989391 [NSE] Added http-csrf.nse that detects Cross Site Request Forgeries (CSRF) vulnerabilities in HTML forms. 2013-08-23 02:08:09 +00:00
sophron
2283671742 [NSE] cccam-version.nse makes use of the new 'formulas' library. 2013-08-23 02:03:46 +00:00
sophron
bb23a89965 [NSE] Added a new library, formulas.lua, that holds some formula functions. 2013-08-23 01:58:15 +00:00
sophron
1586dc3163 [NSE] Added http-feed.nse that crawls through the website and returns any rss or atom feeds. 2013-08-23 01:53:34 +00:00
sophron
ba35d3b087 [NSE] Added http-errors.nse that crawls through the website and returns any HTTP error pages. 2013-08-23 01:48:21 +00:00
david
699142c299 nmap-service-probes typo. 2013-08-21 22:20:07 +00:00
d33tah
4993befdb4 Fix a typo in nsock documentation. 2013-08-21 20:06:38 +00:00