PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-07 13:11:28 +00:00
Code Issues Projects Releases Wiki Activity
10,243 Commits 2 Branches 0 Tags
663271f95d34087dcad792107f325eb2cb959d26
Commit Graph

513 Commits

Author SHA1 Message Date
paulino
1cc4d246b9 Adds mikrotik-routeros-brute.nse. This script performs brute force password auditing against the Mikrotik RouterOS API. 2014-07-30 03:48:03 +00:00
dmiller
415e2671ab New NSE script for SCADA/ICS, bacnet-info 2014-05-28 13:54:05 +00:00
patrik
c950dcb154 Squashed commit of the following: 
commit a78b6142449b71ccd1cd7061b5363f6882b2e00b
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:19:22 2014 -0400

    fix indentation

commit 5e61eba30f98343fb172687bd377acae6cb9e242
Merge: d446fa7 9696dd5
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:50 2014 -0400

    Merge branch 'master' into anyconnect

commit d446fa76181d97287604b48719dd3f714987b775
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:09 2014 -0400

    Update CHANGELOG

commit 1590b8a8598bfd06c767c31312dc56c8e306c556
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:13:27 2014 -0400

    update script.db

commit 93eb927e21d3e3702da36668628b70c42f14f0db
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:09:51 2014 -0400

    update anyconnect library to better capture version
    add missing libraries http-cisco-anyconnect.nse
    add new scripts to detect vulnerabilities cve2014-2126 through 2129

commit 92fecad07d340e60abbe502a4541d6e4f71af224
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sat May 24 09:09:14 2014 -0400

    initial commit
 2014-05-26 01:28:38 +00:00
dmiller
ed22166b3f Add enip-info NSE script for EtherNet/IP 
A contribution from the folks at Digital Bond
(http://www.digitalbond.com/), part of their Redpoint Project
(https://github.com/digitalbond/Redpoint/).
 2014-05-22 18:25:09 +00:00
robert
3beb66bfaa Updated script.db to include new and renamed scripts. 2014-05-04 15:49:21 +00:00
tomsellers
4e572fadb2 Change http-default-accounts.nse from safe to intrusive as it attempts to login to the target. 2014-04-27 12:33:10 +00:00
fyodor
2fb139161f Update categories of dns-update from discovery and safe to vuln and intrusive 2014-04-19 07:50:38 +00:00
patrik
20eb77d6d2 o [NSE] Add ssl-heartbleed script to detect the Heartbleed bug in OpenSSL 
CVE-2014-0160 [Patrik Karlsson]
 2014-04-09 01:49:29 +00:00
dmiller
a95788c783 [NSE] New script http-ntlm-info from Justin Cacak 
http://seclists.org/nmap-dev/2014/q1/129
 2014-02-07 18:24:17 +00:00
dmiller
2ea4934bbf Add unittest.nse to 'safe' category 2014-01-21 22:17:13 +00:00
dmiller
b61d378d3a Update script.db 2014-01-16 19:09:13 +00:00
fyodor
0dafd86d22 Add AllSeeingEye (a protocol for querying status of certain games) script and service probe 2013-12-01 22:09:16 +00:00
fyodor
e6a0762764 o [NSE] Add freelancer-info to gather information about the Freelancer 
game server. Also added a related version detection probe and UDP
  protocol payload for detecting the service. [Marin Maržić]
 2013-11-20 04:31:31 +00:00
fyodor
e1932c2916 Regenerate script.db 2013-11-20 04:04:59 +00:00
dmiller
3e54536dab Add http-server-header as a last-ditch means to get httpd version 
See http://seclists.org/nmap-dev/2013/q3/599 for justification.
 2013-11-08 21:19:36 +00:00
paulino
3340ac27ef Adds http-iis-short-name-brute.nse. The script detects Microsoft IIS servers vulnerable to a filename disclosure and denial of service vulnerability. 2013-10-31 04:04:45 +00:00
dmiller
af8874d66f New script weblogic-t3-info 
http://seclists.org/nmap-dev/2013/q4/74
 2013-10-30 15:10:00 +00:00
dmiller
82e6745fe5 Update script.db for rfc868-time 2013-10-23 17:48:37 +00:00
patrik
e97a5b9d5a Add http-dlink-backdoor script that detects DLink routers with firmware 
backdoor allowing admin access over HTTP interface.
 2013-10-17 23:41:12 +00:00
sophron
c084e2fd8d [NSE] Updated script.db. 2013-09-06 21:08:00 +00:00
sophron
441f840ba9 [NSE] Updated script.db 2013-08-23 02:38:20 +00:00
sophron
623991eb82 Updated script.db. 2013-08-10 20:07:29 +00:00
david
4773f745d8 Add qconn-exec script by Brendan Coles. 
http://seclists.org/nmap-dev/2013/q3/153
 2013-08-09 03:23:40 +00:00
fyodor
b01fd55cb6 Change version number to 6.41SVN and regenerate auto-generated files such as man page, script.db, etc. 2013-07-29 06:00:07 +00:00
paulino
c5b1fe6cf2 -Adds NSE script to exploit APSA13-01 in Adobe Coldfusion. 2013-07-15 16:40:09 +00:00
david
4af2a3c24e Add teamspeak2-version script by Marin Maržić. 
http://seclists.org/nmap-dev/2013/q2/413.
 2013-07-01 09:07:13 +00:00
dmiller
18bbf3e714 Update script.db for new http scripts 2013-06-18 18:14:32 +00:00
david
8be62726e5 Add http-phpmyadmin-dir-traversal by Alexey Meshcheryakov. 
http://seclists.org/nmap-dev/2013/q1/372
 2013-05-31 19:59:30 +00:00
paulino
ea4c589f54 - Adds http-coldfusion-subzero.nse. This exploit grabs the credentials file, version and install path of vulnerable Coldfusion 9 and 10. 2013-05-10 04:52:02 +00:00
paulino
151657012d -Adds hostmap-ip2hosts.nse. This script lists domain names pointing to the same IP address. 2013-04-30 01:56:29 +00:00
paulino
70dfe708e9 Adds http-vuln-cve2013-0156.nse: Detects Ruby on Rails servers vulnerable to object injection, remote 
command executions and denial of service attacks. (CVE-2013-0156)
 2013-04-25 03:15:33 +00:00
david
f43f163ec2 Remove http-robtex-reverse-ip script because it pretty much does the same thing as our newer hostmap-robtex 
Originally committed by fyodor but recommitted by david after recovery
from backup.
 2013-04-12 17:29:24 +00:00
kris
5c9a2b54ce Update script.db 2013-03-28 22:26:31 +00:00
dmiller
fd2130bae1 Update categories for jdwp-exec and jdwp-inject 
Categories for both: exploit, intrusive

per http://seclists.org/nmap-dev/2013/q1/105
 2013-01-25 21:23:02 +00:00
david
b1ad58d68d Add ventrilo-info script from Marin Maržić. 
http://seclists.org/nmap-dev/2012/q4/478
 2013-01-16 00:29:05 +00:00
aca
d8dc00e0ed Merged mysql-enum from my dev branch 2012-12-17 15:59:35 +00:00
batrick
5edca6f97b Undo previous commits as http-slowloris-check.nse doesn't do a DOS attack like http-slowloris.nse. 
See http://seclists.org/nmap-dev/2012/q4/465
 2012-12-16 01:58:59 +00:00
batrick
02369ec7d9 update script.db for r30412 2012-12-16 00:23:22 +00:00
david
eef7155ee1 Add murmur-version script from Marin Maržić. 
http://seclists.org/nmap-dev/2012/q4/408
 2012-12-11 05:34:01 +00:00
david
54ad2eaede Add snmp-hh3c-logins by Kurt Grutzmacher. 
http://seclists.org/nmap-dev/2012/q4/155
 2012-11-08 07:37:48 +00:00
david
f8b8cd6b91 script-updatedb. 2012-10-18 03:18:08 +00:00
henri
dfd3bf835d Changed "auth" to "brute" category for imap-brute.nse and citrix-brute-xml.nse for consistency. 2012-09-21 11:46:23 +00:00
david
8f39b485a0 Add cassandra scripts from Vlatko Kosturjak. 2012-09-20 06:30:48 +00:00
david
00cc96ba95 Add ipv6-ra-flood script by Adam Števko. 
http://seclists.org/nmap-dev/2012/q2/250
https://bitbucket.org/xenol/nse-scripts/raw/6d3ad48e6251/ipv6-ra-flood.nse
 2012-09-20 00:50:05 +00:00
paulino
ed65dd66d3 Removes the script from the "safe" category. 2012-09-07 23:44:58 +00:00
paulino
d7234e2582 Renames http-method-tamper to http-vuln-cve2010-0738 and adds the new version of http-method-tamper. 
The new version improves the detection mechanism to cover PHP environments with .htaccess files and adds spidering to locate password protected resources automatically.
 2012-09-07 23:42:39 +00:00
aca
c13d7c719a Added msrpc-enum script and msrpc lua changes 2012-08-31 10:00:54 +00:00
aca
fd32aec639 Merged http-slowloris-check 2012-08-24 09:19:30 +00:00
kroosec
b1990f2b33 Added rpc-grind.nse 2012-08-17 18:44:35 +00:00
kroosec
d25a2420e4 Added broadcast-pim-discovery.nse script. 2012-08-15 10:24:31 +00:00