PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-15 09:56:33 +00:00
Code Issues Projects Releases Wiki Activity
5,306 Commits 2 Branches 0 Tags
5ac0a954f05a4a9c331e1c2df553fa7c00a25533
Commit Graph

1091 Commits

Author SHA1 Message Date
djalal
75ea87125c Add CHANGELOG entry for the new smtp-check-vulns script. 2011-05-15 16:00:44 +00:00
david
ff7e265138 o Stopped linking against libnl when not necessary (when linking 
dynamically with libpcap). Patch by Kevin Locke.
 2011-05-13 21:59:09 +00:00
patrik
079195122d o [NSE] Applied patch from Daniel Miller that fixes a bug in http-form-brute 
reported by Josh Greenwood. The script would break if autodetection of
  either brute form fields would fail.

  http://seclists.org/nmap-dev/2011/q2/524
 2011-05-11 13:04:20 +00:00
patrik
e8c5640dda o [NSE] Added a SIP library and two new scripts sip-brute.nse and 
sip-user-enum.nse providing brute and user enumeration support for the SIP
  protocol. [Patrik]
 2011-05-09 18:00:52 +00:00
henri
f6e9e30be0 o [NSE] Added xmpp.nse, which collects XMPP server information [Vasiliy Kulikov] 2011-05-07 21:14:21 +00:00
djalal
9e60e88eca o [NSE] Added broadcast-avahi-dos.nse, which tries to detect if the 
hosts in the local network that are running Avahi are vulnerable to
  the NULL UDP packet denial of service (CVE-2011-1002).
 2011-05-02 23:38:18 +00:00
david
26c7f91883 CHANGELOG: 
o [Zenmap] Fixed an error that could cause a crash ("TypeError: an
  integer is required") if a sort column in the ports table was unset.
  [David]
 2011-05-02 21:24:34 +00:00
henri
7e2a85cab9 Added the http-wp-plugins script by Ange Gutek. 2011-04-29 07:43:41 +00:00
david
79ae90e80f Add nmaprun information to Ndiff output. 
Patch by Daniel Miller.
 2011-04-29 03:56:03 +00:00
david
f1a9fdd165 Add a GKrellM service probe from Toni Ruotto. 2011-04-28 02:40:11 +00:00
djalal
e91c3505be o [NSE] Removed the nmap.get_interface_link function, which was 
deprecated by the new nmap.get_interface_info function.
 2011-04-22 22:47:28 +00:00
djalal
6a50deb96e Added a CHANGELOG entry for the nfs-ls bug that was ignoring Mount v1. 2011-04-22 22:32:03 +00:00
david
fef214063a Add omp2-brute and omp2-enum-targets from Henri Doreau. 2011-04-20 23:44:16 +00:00
david
5726c875e9 Add backorifice-info.nse. 2011-04-20 07:45:10 +00:00
david
dd22e26f43 Add a BackOrifice service probe from Gorjan Petrovski. 2011-04-19 02:25:10 +00:00
david
f00142f439 o Added a service probe for Zend Java Bridge, which is vulnerable if 
exposed to an untrusted network. It was contributed by Michael
  Schierl.
 2011-04-18 19:32:11 +00:00
patrik
bbbccd4e01 o [NSE] Added the afp-ls script that lists files accessible on remote 
AFP Volumes. [Patrik]
 2011-04-05 08:31:34 +00:00
david
aa3a9baac8 Add the targets-sniffer script by Nick Nikolaou. 2011-04-05 06:11:59 +00:00
david
c36cf833e6 Add the nmap.get_interface and nmap.get_interface_info functions by 
Djalal Harouni.
 2011-04-05 06:11:58 +00:00
david
d0ea18119c Add epmd-info script from Toni Ruottu. 2011-04-04 18:28:33 +00:00
david
f522332a89 Add http-affiliate-id.nse, originally from Hani Benhabiles, then patched 
by Daniel Miller.
 2011-03-31 20:32:50 +00:00
david
7453ec34d0 Change o.TimeSinceStartMS returning milliseconds to o.TimeSinceStart 
returning floating-point seconds. Everywhere o.TimeSinceStartMS was
called, the return value was being divided by 1000.0, which had the same
effect but would overflow when the difference exceeded about 25 days
(2^31 milliseconds). This patch is by Daniel Miller.
 2011-03-28 20:34:32 +00:00
david
0fb893af03 CHANGELOG typo, thanks Djala. 2011-03-27 22:21:24 +00:00
david
9449ead98e Oops, I got confused in my inbox and put Toni's name in place of Henri's 
for the ssh-hostkey postrule. Sorry Henri!
 2011-03-27 22:05:28 +00:00
david
2b898d61f7 o [NSE] ssh-hostkey now additionally has a postrule that prints hosts 
that have the same hostkey. [Toni Ruottu]
 2011-03-27 22:04:13 +00:00
david
0805e9d62e Add dns-nsec-enum to CHANGELOG. 2011-03-27 05:10:44 +00:00
david
e1e50c819d CHANGELOG: 
o Nmap no longer searches for data files (like nmap-services) in the
  current directory as a last resort. This is to reduce the chance of
  accessing an unexpected file in case the system-installed data files
  are not found. The main reason for searching the current directory
  was to support running ./nmap from a source directory. This is now
  supported by searching the directory containing the Nmap executable
  for data files. On non-Windows platforms, the executable directory
  followed by "../share/nmap" is also searched. Thanks to Solar
  Designed for implementation advice. [David]
 2011-03-26 06:48:36 +00:00
david
017bdb9f51 Regenerate (and manually merge) nmap-rpc from the master file at 
http://www.iana.org/assignments/rpc-program-numbers/rpc-program-numbers.xml.
Daniel Miller submitted this originally; I adapted his program to
generate this version of the file.
 2011-03-24 02:57:02 +00:00
david
47557a108b o [NSE] Added ssl-known-key.nse, which checks SSL certificates against a 
list of certificates with known keys that have been extracted from
  firmware files. [Mak Kolybabi]
 2011-03-22 19:44:40 +00:00
david
ce23a35715 o [Ndiff] The Nmap banner (with the version number and date of the scan) 
is not printed unless there were other differences. This makes Nidff
  produce no output when there wre no differences other than the version
  number and date. Dr. Jesus contributed an initial patch. [David]
 2011-03-22 18:59:02 +00:00
david
e48a60248d o [Zenmap] Fixed a bug in the option parser: -sN (null scan) was 
interpreted as -sn (no port scan). This was reported by
  shitaneddine. [David]
 2011-03-20 08:37:39 +00:00
patrik
b62cebc7b3 o [NSE] Fixed a problem in oracle-brute that would fail due to connection 
exhaustion. Fixed some debugging messages in the brute library [Patrik]
 2011-03-19 08:26:33 +00:00
david
5aa0e137b3 o [Ndiff] Fixed the Mac OS X packages to use the correct path for 
Python: /usr/bin/python instead of /opt/local/bin/python. The bug
  was reported by Wellington Castello. [David]
 2011-03-15 22:09:10 +00:00
david
a3ec901899 Add nping-brute.nse from Toni Ruottu. 2011-03-13 02:02:27 +00:00
david
6b0cb73b81 Document removal of -sR in CHANGELOG. 2011-03-12 18:20:13 +00:00
david
7408acbb60 Add dns-brute.nse to CHANGELOG. 2011-03-05 21:16:15 +00:00
patrik
58edddaedb o [NSE] Merged the ms-sql branch with several improvements and changes to the 
ms-sql scripts and library:
  - Improved version detection
  - Improved server discovery
  - Add support for named pipes
  - Add support for integrated authentication
  - Add support for connecting to instances by name or port
  - Improved script and library stability
  - Improved script and library documentation
 [Patrik Karlsson, Chris Woodbury]
 2011-02-26 22:41:10 +00:00
patrik
d6bbc6da8f o [NSE] Added probe for Apple iPhoto (DPAP) and the dpap-brute script that 
performs password guessing against a shared iPhoto library. [Patrik]
 2011-02-26 16:24:54 +00:00
david
c4cda67b99 Show which libraries are the ones included with Nmap and which are from 
the system by prefixing "nmap-" to the former in -V output. Patch by
Ambarisha B.

Hard-code the included/non-included libraries in nmap_winconfig.h:
 2011-02-24 21:06:59 +00:00
david
61543b681e Fix to http.validate_options from Sebastian Prengel: The cookies table 
was being iterated over incorrectly.

Also from Sebastian: add "expires" to the list of handled keys in
validate_options.
 2011-02-24 20:16:06 +00:00
david
19352635ed Add to CHANGELOG: 
o [NSE] Added quake3-master-getservers, which gets a list of live
  Quake 3 servers from a master server. (It also works for many
  similar games.) [Toni Ruottu]
 2011-02-22 21:55:28 +00:00
david
60cd2ef9cf Turn the 6481/udp probe from servicetags.nse into a UDP payload. 2011-02-22 04:32:59 +00:00
david
6f0af76f08 Add to CHANGELOG: 
o [NSE] Added servicetags.nse, which queries the Sun Service Tags
  agent and gets system information. [Matthew Flanagan]
 2011-02-22 04:32:58 +00:00
david
12ae6a8930 Add to CHANGELOG: 
o [NSE] Enhanced firewalk.nse to automatically find the gateways at
  which probes are dropped. [Henri Doreau]
 2011-02-22 02:51:11 +00:00
tomsellers
4c13add811 2011-02-19 00:08:10 +00:00
djalal
0a9764709f Use the correct script name in the usage example of the smtp-enum-users. Reported by Jamuse, who also contributed the patch. 2011-02-17 18:41:51 +00:00
david
bf99fb231b Check that the argument to freeaddrinfo is not NULL. The behavior may be 
unspecified and causes a segmentation fault on Android Bionic libc.
Vlatko fixed the bug in his Android binaries and it was first reported
by @alexismm2.
 2011-02-15 08:19:58 +00:00
david
cdea9d6e15 Do an fs_enc on the unicode file name before handing it to write_to_png 
in the topology viewer. pycairo 1.8.10 and earlier have a bug where a
unicode string results in an exception. Alex Kah found the error.
 2011-02-13 03:29:16 +00:00
david
cb0a5e1476 Merge CHANGELOG changes from /nmap-releases/5.51. 2011-02-12 04:08:14 +00:00
david
4c358b171a Back-merge r22229:22234 from /nmap-releases/5.51. 
------------------------------------------------------------------------
  r22234 | david | 2011-02-11 14:33:33 -0800 (Fri, 11 Feb 2011) | 4 lines
  
  Add an openssl guard around the require of tns in oracle-brute and
  oracle-enum-users. The tns library makes a call to
  openssl.rand_pseudo_bytes at its top level.
  
  ------------------------------------------------------------------------
  r22232 | david | 2011-02-11 14:28:18 -0800 (Fri, 11 Feb 2011) | 4 lines
  
  Put an openssl guard around the importing of ssh2 in
  ssh2-enum-algos.nse. Otherwise it fail in --script-updatedb when
  configured --without-openssl.
  
  ------------------------------------------------------------------------
  r22230 | david | 2011-02-11 13:38:49 -0800 (Fri, 11 Feb 2011) | 3 lines
  
  Allow whitespace at the end of the go_to_host pattern. On Windows,
  there's a '\r' at the end of the string, so the pattern didn't match.
 2011-02-11 23:09:04 +00:00