PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-10 09:49:05 +00:00
Code Issues Projects Releases Wiki Activity
9,974 Commits 2 Branches 0 Tags
54bd372ccfc970f6aa93b577e8583d75e5a2df49
Commit Graph

2309 Commits

Author SHA1 Message Date
dmiller
10fdd80035 avoid string reallocation in innermost loop of http-slowloris 2015-09-20 12:11:32 +00:00
dmiller
b9946229cf Fix a format string with missing argument 2015-09-18 12:40:33 +00:00
dmiller
9840973b60 Fix format string argument mismatches 
Cases where the format string does not contain any placeholders, but
values are given anyway. Cases where string.format is used without any
placeholders or arguments.
 2015-09-18 12:40:32 +00:00
dmiller
e2bbf289d4 Display EC curve name in ssl-enum-ciphers 
Closes #173. See http://seclists.org/nmap-dev/2015/q3/254
 2015-09-17 13:00:23 +00:00
dmiller
dbdd0485be Add knx-gateway-info and knx-gateway-discover scripts from Niklaus Schiess 2015-09-15 15:10:37 +00:00
dmiller
d8fa762407 Fix http-useragent-tester, which did not test user agents 
Spotted by Raúl Fuentes, http-useragent-tester was only sending one
query, but reporting status for all user agents. This was because the
http.get call was not using the bypass_cache option, so the first
(cached) response was used for all subsequent tests.
 2015-09-10 17:27:22 +00:00
paulino
f89e1968f9 Patch to fix detection of S7-1200 Model PLCs by Stephen Hilt 2015-09-10 02:32:42 +00:00
dmiller
ff0f32bb67 Tighten pattern match to avoid \r in output 2015-09-04 14:23:14 +00:00
dmiller
b5cc57fbcc Add http-ls.nse. See #106 2015-09-04 12:52:10 +00:00
dmiller
893f0c32f9 Update afp-ls, nfs-ls, smb-ls to use ls.lua. See #106 2015-09-04 12:52:08 +00:00
dmiller
7852fa3c18 Remove many ERROR outputs from non-debug NSE output 2015-08-27 20:43:55 +00:00
gio
0044e8bad1 http-form-fuzzer: Use functions from nselib instead of reinventing 2015-08-18 16:25:17 +00:00
gio
3ca8599de3 Made maxlen and minlen form specific 2015-08-18 16:25:15 +00:00
gio
27563803f7 http-form-fuzzer assign {max,min}len_global in action function so they are host specific 2015-08-18 16:25:14 +00:00
gio
dd0c38778a http-form-fuzzer decrease max length if server report error 413 or 414 2015-08-18 16:25:12 +00:00
gyani
ac5094aa5d Added script xmlrpc-methods. This script perfoms introspection of 
xmlrpc instances by using the system.listmethods and
system.methodhelp method.
 2015-08-17 19:03:34 +00:00
gyani
6c10bd10e9 The script now outputs a table of elements(methods) when used 
with -oX and shows the output in oneline on the commandline.
 2015-08-17 14:31:03 +00:00
gyani
7819471a54 Removed http-email-harest and made changes to CHANGELOG and script.db 
to show the same.

The new http-grep comitted earlier does what http-email-harvest does
by default(no patterns given).
 2015-08-14 12:38:03 +00:00
gyani
f9196dbb2a Modified scripts/script.db to show the http-fetch changes. 
Added information about http-fetch to the CHANGELOG.
 2015-08-14 12:34:18 +00:00
gyani
88381c2e68 The http-fetch script is used to fetch files from a server. 
You can fetch all files, fetch particular fiels or fetch
files that match a specific pattern.
 2015-08-14 12:34:09 +00:00
gyani
8766678793 Fixed NSEDoc and a comment. Earlier version had some comments from 
the version that checked for LOGO.png instead of LICENSE.txt.

Some Drupal instances returns 200 for all  GET Requests, hence
the check for the identification string was necessary.
 2015-08-14 11:31:36 +00:00
gyani
afac209b6f Change script.db and CHANGELOG to reflect the http-drupal-enum 
changes.
 2015-08-13 12:05:44 +00:00
gyani
7116f9eaac Fixed the documentation. @usage has the default usage now. 2015-08-13 11:59:56 +00:00
gyani
ba873c28c0 http-drupal-enum replaces http-drupal-modules. 
The script now supports drupal theme listing as well.
Updated drupal-modules.lst and added drupal-themes.lst.
 2015-08-13 11:58:44 +00:00
gyani
1de1b10c89 Ganglia info now uses dispatch tables and SLAXML to parse the XML response. 2015-08-08 11:25:27 +00:00
dmiller
9fbad88213 Avoid blank output in tls-nextprotoneg when server doesn't offer any protocols 2015-08-06 21:10:35 +00:00
gyani
725ace524f The script would earlier return wrong output because the parsing of xml 
depended on the order of the elements(date occuring before author).
I changed that and now the xml is parsed without regard to order.
 2015-08-05 19:57:06 +00:00
gyani
97e4e55f31 Would crash when an http service returned no response status. Fixed 
that.
 2015-08-01 21:08:22 +00:00
gyani
868cd1f28b Added http-svn-* to CHANGELOG and script.db. 
Reordered the categories in http-svn-enum to be in alphabetical
order.
 2015-07-25 10:10:07 +00:00
gyani
4b2cbfd495 This script tries to enumerate users of a Subversion repository by 
going through recent commit logs.
 2015-07-25 09:56:07 +00:00
gyani
3cb0dac9fa This script requests information from a Subversion repository. 
The output is similar to svn info url.
 2015-07-25 09:55:37 +00:00
dmiller
3b47403fe7 NSEdoc for nikto-db-path copied from http-fingerprints so it will show up on web. 2015-07-24 13:34:56 +00:00
gyani
e919d7fa94 Fixed the @output section, wrong script name. 2015-07-18 11:21:50 +00:00
dmiller
339f0ffd7d Fix NSEdoc: wrap lines, fix bulleted lists 2015-07-11 04:01:05 +00:00
gyani
a59056e29e Fixed a spelling mistake. 2015-07-10 17:06:28 +00:00
dmiller
ba9473543b Mixed line endings cleanup for ssl-cert.nse 2015-07-05 21:59:04 +00:00
dmiller
078be5d8d8 Whitespace cleanup for tor-consensus-checker.nse 2015-07-05 21:59:03 +00:00
gyani
3f1a71fbec http-brute now uses the new http.lua to support NTLM authentication. 
This script also acts as a showcase script for the new NTLM authentication
added.
 2015-07-04 08:19:26 +00:00
gyani
8d9f304fbd It now supports builtin patterns like email, ssn, ip, credit card numbers. 
Also multiple patterns can be searched at a time.
 2015-07-04 07:39:45 +00:00
gyani
29f57ea556 Gracefully handles case of openssl being missing. Cipherscores 
of those ciphers that require openssl are marked unkown.
Closes #115.
 2015-07-04 07:34:14 +00:00
gyani
a5bb16df1d Modified script.db to show renaming of http-crossdomainxml to 
http-cross-domain-policy.
 2015-07-04 07:29:38 +00:00
gyani
91d47ea237 Added @xmloutput. 2015-07-04 07:26:12 +00:00
gyani
79713b939d Added checks for client access policy and the script now uses SLAXML. 2015-07-04 07:26:04 +00:00
david
2e43cb2326 Let imap-capabilities.nse run for imaps (port 993) as well. 
$ ./nmap -Pn --script imap-capabilities imap.gmail.com -p imaps
PORT    STATE SERVICE
993/tcp open  imaps
|_imap-capabilities: all she XYZZY QUOTA X-GM-EXT-1 ID XLIST CHILDREN UNSELECT m1mb423345642pdn wrote SASL-IR IMAP4rev1 Thats NAMESPACE OK AUTH=PLAIN-CLIENTTOKEN AUTH=XOAUTH2 AUTH=PLAIN IDLE AUTH=XOAUTHA0001
 2015-06-28 15:50:54 +00:00
dmiller
2e74e48a2b Work around long handshake intolerance in ssl-enum-ciphers 
https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
 2015-06-23 21:20:23 +00:00
gyani
0609a9c20f Fixed @xmloutput. 2015-06-23 21:15:27 +00:00
gyani
e738915a12 Added a few scripts i comitted to CHANGELOG. Updated http-put to add 
xmloutput and relax resposne status checks. Closes #150.
 2015-06-23 21:15:19 +00:00
gyani
39f75dddeb The script has the http-methods update as discussed in the Script 
Ideas page. Basically this tests all the options not listed under
the public or allow headers of the OPTIONS response.
 2015-06-20 08:13:09 +00:00
dmiller
a881712e6b Add valid TLS1.2 probe and move checks to rule in ssl-enum-ciphers (#168) 2015-06-19 12:02:31 +00:00
dmiller
06e6062dba Prevent ssl-enum-ciphers from running on detected-non-ssl services 2015-06-18 23:32:35 +00:00