PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-22 23:49:03 +00:00
Code Issues Projects Releases Wiki Activity
5,148 Commits 2 Branches 0 Tags
5a32f584d452efdce23d5ebbf80b958d01b51a94
Commit Graph

5148 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
87ee8343f3 Provide a new nsock_setup_udp function to create a UDP socket without connecting it. Provide an NSE interface to the function. Add broadcast.nse, a script that receives UDP broadcasts with an unconnected socket. 2010-10-01 06:26:22 +00:00
bmenrigh
df99409651 The dominoconsole match is too general and can match things that it 
shouldn't.  Also, because of the use of ([...]*), captures can be too
long to fill into the template.  This change forces hostname and
domain name to be non-empty.  This match should be made more specific
but without example content any changes would involve guessing.
 2010-09-30 23:14:57 +00:00
fyodor
c182e7291f Add a task for adding CPE to OS detection. It isn't urgent, but something we're probably going to want to do at some point, assuming CPE retains its current momentum 2010-09-30 22:37:19 +00:00
djalal
9c132cd72f Remove unused variable. 2010-09-30 19:00:25 +00:00
fyodor
0739717ca7 some improvements sent in by Fei Yang 2010-09-30 18:10:08 +00:00
david
60636135a2 Fix whitespace in dns-zone-transfer.nse. 2010-09-30 17:05:12 +00:00
david
e7fc9c4c5f Change " \n" to just "\n" where appropriate in NSE. Leading newlines are 
no longer removed from script output.
 2010-09-30 05:03:39 +00:00
david
fe55182068 Remove the stripping of newlines from the beginning of script output. 2010-09-30 05:03:03 +00:00
david
9d57567b62 Format script output without using sctring replacement. This fixes the case when the last legitimate occurrence of "| " in the output would get replaced with "|_". 2010-09-29 23:14:12 +00:00
david
3927d53e00 Simplify get_script_args and remove the deprecation warning. 2010-09-29 19:29:09 +00:00
david
ae9c5d6922 Use args of the form dns-zone-transfer.domain instead of dnszonetransfer.domain 
in dns-zone-transfer.nse. Keep the old forms as undocumented aliases.
 2010-09-29 18:57:07 +00:00
david
82ec5be065 Assume that any user-provided liblua is recent enough when cross-compiling. 
That this was a problem was reported by Nuno Gonçalves.
 2010-09-29 16:09:26 +00:00
david
3032368934 Update to the latest config.guess and config.sub from 
http://git.savannah.gnu.org/gitweb/?p=config.git;a=tree.
 2010-09-29 04:31:24 +00:00
kris
ede2a10048 remove a stale comment 2010-09-29 02:07:41 +00:00
david
da5a9ecc52 Fix some whitespace. 2010-09-28 22:30:48 +00:00
david
7dcd478487 Put nat-pmp-info.nse in the "default" category. Let the portrule match 
the service "nat-pmp". Set the service name "nat-pmp" on success.
 2010-09-28 22:30:18 +00:00
fyodor
654ba6d0e7 Changes from chat w/David 2010-09-28 21:32:52 +00:00
patrik
0ef84cf443 o [NSE] Added nat-pmp-info script that uses the nat-pmp service to 
discover the external IP address of a router. [Patrik]
 2010-09-28 19:43:06 +00:00
david
31389d88ce Add a new payload for udp/5351, NAT-PMP external address request. 2010-09-28 19:34:46 +00:00
david
72750b1f2a Fix link for hostmap script. 2010-09-28 19:33:09 +00:00
david
956688774a Add the ability to send UDP probes to firewalk.nse. Patch by Henri Doreau. 2010-09-28 03:25:22 +00:00
kris
f4286b0c80 Adding prerule support to snmp-interfaces.nse and the ability to add the 
target host's interface addresses to Nmap's scanning queue.
 2010-09-28 02:33:52 +00:00
kris
29e6257541 Add the resolveall prerule script which takes a table of hosts and adds the 
resolved addresses to Nmap's target queue.
 2010-09-28 02:04:20 +00:00
bmenrigh
5ead386c07 Added a bunch of Apple and Netatalk AFP service matches. There are a 
few mystery variations in bytes that don't match up with the
descriptions in the submissions or what users have told me they are
running.  I've done my best to get the OS X versions correct.
Corrections may be required to loosen the strict versioning in this
commit.
 2010-09-27 22:00:10 +00:00
david
d98e9b9225 Add tests with query strings and null bytes to http-passwd.nse. This patch is 
from Ange Gutek.
 2010-09-27 18:58:38 +00:00
david
602a40c2b0 Fix a syntax error caused by reordering array entries. 2010-09-27 18:56:23 +00:00
david
53bd35c9cd Increase the debug level required to print out the http.lua cache size. 2010-09-27 18:51:04 +00:00
david
cd5f41fc91 Add some more payloads to http-passwd.nse (with comments explaining which 
servers they affect). Fix a pattern. Patch by Ange Gutek.
 2010-09-27 18:10:46 +00:00
djalal
4baeee0dfc Whitespace formatting and some code cleaning. 2010-09-27 13:19:25 +00:00
david
52d1590c84 Add the script argument http-brute.method. This is so you can do 
http-brute.method=POST instead of having GET hardcoded in the script.
 2010-09-27 01:23:37 +00:00
david
92362b2d24 Move special request body handling out of http.post and into http.generic_request. 2010-09-27 01:21:45 +00:00
david
9f79aad78f Pass the driver_options whenever constructing a driver in brute.lua. This could 
be required, for example, when running the check method.
 2010-09-27 01:20:52 +00:00
tomsellers
c974a51d07 Single line update to correct spelling error in service field. 
shoutcase => shoutcast
 2010-09-26 19:27:45 +00:00
tomsellers
04e0b3b4f6 Two modifications to APC PowerChute detection. One is to comment 
out a false positive that is likely java-rmi.  The other is to 
add an additional version to a version label.
 2010-09-26 15:51:00 +00:00
tomsellers
6b75d40ae7 Fixed a few spelling errors and 1 consistency issue in the 
device labels in nmap-service-probes
 2010-09-26 13:15:45 +00:00
djalal
769db9823a o Added the debug level to some print_debug() functions that were missing this argument. 
o Create the mutex in the RpcInfo() function before the connect call, to prevent some rare race conditions that can cause one of the running rpc and nfs scripts to fail. This mutex is used to cache the portmapper program list in the registry, to reduce the number of connections and RPC DUMP procedure calls.
o whitespace formatting.
 2010-09-26 12:55:05 +00:00
djalal
85030874ea Fix a bug that prevents Nmap to compile on systems that lacks OpenSSL. This patch was contributed by Patrik Karlsson. 2010-09-26 10:43:32 +00:00
tomsellers
594e2dcacc Add 3 http service detection fingerprints: 
Rapidsite/Apa (customized Apache http)
 IBM HTTP Server using mod_jk
 RG4000 Access Control Gateway (limited info)

 The first two had existing fingerprints that were
 were similar but that matched version information 
 that was not always present or had a different 
 modules (PHP vs mod_jk).  - Tom
 2010-09-26 04:13:21 +00:00
tomsellers
70c9266359 Small change to restore whitespace in nmap-service-probes. 2010-09-25 14:03:54 +00:00
tomsellers
c4b3f17dcd 3 service version changes: 
2 for BMC/Marimba
  1 for a CANON HTTP service
 2010-09-24 23:39:08 +00:00
david
bdddee6330 Fix another nmap-os-db inconsistency reported by Xavier Sudre. 2010-09-24 19:49:03 +00:00
ron
9ae7fb6a5d Added the REQUEST_TARGET flag to the extended authentication packet. I have no clue what that flag does, and I can't find any documentation, but Nmap completely fails against Windows 7 unless it's set. 2010-09-24 03:42:38 +00:00
ron
f71008bcd3 Fixed a spelling mistake in a variable name in msrpc.lua 2010-09-24 03:38:11 +00:00
ron
a477d142f1 Updated stdnse.get_script_args() function to take arrays in addition to strings. If an array is passed, currently, the first name is considered 'valid' and the others are considered 'deprecated'. This behaviour is still under discussion. 2010-09-24 02:52:00 +00:00
ron
cfd0aaeabc Fixed a bug where a ternary operator meant to prevent a nil pointer exception was outside of a math.floor() call, making it totally worthless. I moved the math.floor() outside the operation, fixing it. 2010-09-24 01:33:01 +00:00
ron
11ad4fafd5 Fixed a nil-pointer exception caused by certain printers and OS X machines. An array in the result was set to nil instead of 0-length, which was unexpected. 2010-09-24 01:22:36 +00:00
ron
2035b82dfd Fixed a really tricky bug that I spent all evening chasing. Normally, during login, every account in the list (by default, guest and anonymous) are attempted. Unless something fails badly, anonymous will work. Unfortunately, if something DOES fail badly, after the first script runs this list is empty. That means if something bad is happening, and two or more scripts are running, every script after the first will have an empty list of accounts to use, and it would fail mysteriously. This patch checks the return value from the get_next_account() function properly to see if we've run out of accounts and report that to the user rather than an ugly stacktrace. 2010-09-24 00:47:43 +00:00
ron
3bc39efc4b Lots of little bugfixes throughout several smb scripts, mostly related to bad use of global variables 2010-09-24 00:31:12 +00:00
david
d9b0bbf6f8 A couple more nmap-os-db canonicalizations. 2010-09-23 22:10:32 +00:00
david
7f62c3ba78 Credit Xavier Sudre with some recent bugfixes. 2010-09-23 22:07:52 +00:00