PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-10 09:49:05 +00:00
Code Issues Projects Releases Wiki Activity
5,491 Commits 2 Branches 0 Tags
67bac23e970fbcdd7943af17af9eb1f4afac3f13
Commit Graph

1014 Commits

Author SHA1 Message Date
patrik
67bac23e97 Added MS error code to error messages returned from the script [Patrik] 2011-06-21 22:52:40 +00:00
david
3b202e4597 Use java-rmi for the the Java RMI service name. Suggested by martin 
Swende.
 2011-06-21 00:03:16 +00:00
henri
a8f9bd8d35 trailing whitespace 2011-06-20 21:09:42 +00:00
henri
b2d1ac7580 Avoid bloating the registry by using variables to transfer information from 
the hostrule to the action function.
 2011-06-20 21:06:14 +00:00
gorjan
21ece8d864 Update script database for the ip-geolocation scripts 2011-06-20 12:56:34 +00:00
gorjan
f832a41301 IP based geolocation using the IPInfoDB web service 2011-06-20 01:45:35 +00:00
gorjan
6fad986e3a IP based geolocation using the Geoplugin web service 2011-06-20 01:44:10 +00:00
gorjan
9920668943 IP based geolocation using the Geobytes web service 2011-06-20 01:43:44 +00:00
gorjan
2e45420bed IP based geolocation using the Quova web service 2011-06-20 01:43:17 +00:00
gorjan
a616334868 IP based geolocation using a Maxmind database 2011-06-20 01:42:21 +00:00
patrik
5558837091 o [NSE] Added two new scripts broadcast-netbios-master-browser and smb-mbenum: 
- broadcast-netbios-master-browser attempts to discover master browsers in
    the broadcast domain
  - smb-mbenum lists servers registered with the master browser
  [Patrik]
 2011-06-19 18:47:19 +00:00
patrik
f4bf440b14 o [NSE] Added credential storage library (creds.lua) and modified the brute 
library and scripts to make use of it. [Patrik]
 2011-06-19 17:18:29 +00:00
patrik
0a3bf95897 o [NSE] Added a MySQL audit script and a rulebase that supports auditing a 
subset of the MySQL CIS 1.0.2 Benchmark. [Patrik]
 2011-06-17 06:12:01 +00:00
patrik
1d7b0c0d98 o [NSE] Added ipv6 support to the wsdd, dnssd and upnp libraries. Applied 
patch from Dan Miller that fixes errors in processing and sorting ipv6
  addresses in scripts using these libraries. [Daniel Miller, Patrik]
 2011-06-16 05:29:42 +00:00
david
010c8200e8 Standardize on the name rmiregistry for port 1099/tcp. 
This is the name used in nmap-services. It affects nmap-service-probes
and rmi-dumpregistry.nse. The inconsistency was noted by Gabriel
Lawrence.
 2011-06-15 19:14:46 +00:00
patrik
cf873707cd o [NSE] Added minimal Service Location Protocol (SLP) library and the script 
broadcast-novell-locate that detects servers running eDirectory. [Patrik]
 2011-06-15 06:23:30 +00:00
batrick
dc9a35bc9d New system for silent require errors. Use the new function 
stdnse.silent_require. The Lua require function is back in its usual spot
(_G.require).
 2011-06-13 23:38:35 +00:00
djalal
caadf952e3 o [NSE] Updated the SMTP scripts to use the new SMTP Lua library. 2011-06-13 13:19:26 +00:00
patrik
5f00edd310 Re-worked the http-form-brute script, the changes include: 
- autodetecting form fields is now a bit more robust
- only the password field is mandatory
- HTTP re-directs are followed in case they're detected
- the detection of incorrect login attempts has been changed and supports
  two new arguments (onsucces, onfailure)
[Patrik]
 2011-06-12 18:52:51 +00:00
fyodor
9f04bd554b regen the script.db (there was no entry for mac-geolocation) 2011-06-08 06:06:07 +00:00
colin
76056816a1 Bugfix for favicon 2011-06-03 19:59:08 +00:00
henri
c04e5a4eb1 Minor typo fixes 2011-06-03 09:24:51 +00:00
gorjan
c53b07e451 snmp-interfaces patch for interaction with mac-geolocation through nmap.registry[host.ip][mac-geolocation] 2011-05-31 00:13:12 +00:00
gorjan
50cf271bba Cleaning up some residue Skyhook code. 2011-05-30 14:35:43 +00:00
david
f5f63ff734 Fix <code> tags in mac-geolocation.nse. 2011-05-29 21:56:08 +00:00
paulino
6d1aa1a449 Fixes false positive line when CakePHP is not present. 2011-05-29 17:25:12 +00:00
gorjan
0a72a5f5ac Adding the mac-geolocation script. Geolocation info lookup based on a WiFi's BSSID (MAC) address. 2011-05-29 09:51:43 +00:00
gorjan
0cd6ee2010 Separator "," in backorifice-brute.nse instead of ";" 2011-05-28 17:55:44 +00:00
patrik
873cf47611 o [NSE] Added the Netware Core Protocol (NCP) library and the scripts 
ncp-serverinfo and ncp-enum-users. [Patrik]
 2011-05-28 09:01:31 +00:00
patrik
8b78ccf469 o [NSE] Added ldap-novell-getpass, a script that provides support for 
retrieving Universal Passwords in plain-text from Novell eDirectory.
[Patrik]
 2011-05-28 08:48:26 +00:00
gorjan
ba533d84a7 NSEDoc update for backorifice-brute to present variables as monospaced 2011-05-24 15:24:29 +00:00
batrick
5a68e5f04a Set the math.randomseed value in nse_main.lua on behalf of scripts. 
Since Lua uses the C rand and srand functions, which have a static
seed for the entire program, we don't want scripts doing this themselves.
 2011-05-23 21:43:46 +00:00
paulino
1e0e438b09 Added http-cakephp-version.nse - NSE script for fingerprinting versions of CakePHP applications. 2011-05-20 09:25:22 +00:00
gorjan
1d13bf169b Remove the Summary comment from NSEDoc and Scripts Page 2011-05-19 19:28:30 +00:00
djalal
be338214a0 Update the script name 2011-05-19 18:32:20 +00:00
djalal
edda382a77 Add the smtp-vuln-cve2011-1720 script to the script.db file. 2011-05-19 18:31:34 +00:00
djalal
a3ff996c54 Rename the smtp-check-vulns script to smtp-vuln-cve2011-1720. 2011-05-19 18:19:56 +00:00
fyodor
20e03044bf Reran nmap --script-updatedb to catch new categories of smtp-check-vulns script 2011-05-17 17:43:35 +00:00
djalal
17414d4cb4 Remove the 'dos' and 'exploit' categories. 2011-05-17 16:27:36 +00:00
gorjan
5ac0a954f0 NSEDoc fix of snmp-brute. 2011-05-16 18:48:34 +00:00
henri
0706dc1b98 Removed trailing semicolons to keep style consistent 2011-05-16 08:44:29 +00:00
djalal
c1ba251135 o [NSE] Added smtp-check-vulns, which currently checks for the Postfix 
SMTP server Cyrus SASL authentication memory corruption (CVE-2011-1720).
 2011-05-15 15:57:10 +00:00
djalal
31310f43bc Add the backorifice-brute script entry to the script.db file 2011-05-14 13:12:18 +00:00
gorjan
b98ef466b3 Adding the backorifice-brute script 2011-05-12 22:40:54 +00:00
batrick
bd64492fe9 maxn is deprecated 2011-05-11 15:13:46 +00:00
batrick
321e0d34e0 use # length operator instead of string.len (canonicalize) 
Used this perl command:

$ # perl -pi -e 's/string\.len\((.*?)\)/#\1/g' *.nse
 2011-05-11 15:12:47 +00:00
batrick
dc909f7d77 removed usage of deprecated table.getn 2011-05-11 14:41:06 +00:00
henri
1cd183014d Use stdnse.format_output() instead of comma-separated values, to produce 
readable output regardless of the number of discovered plugins
 2011-05-11 14:28:46 +00:00
patrik
079195122d o [NSE] Applied patch from Daniel Miller that fixes a bug in http-form-brute 
reported by Josh Greenwood. The script would break if autodetection of
  either brute form fields would fail.

  http://seclists.org/nmap-dev/2011/q2/524
 2011-05-11 13:04:20 +00:00
patrik
e8c5640dda o [NSE] Added a SIP library and two new scripts sip-brute.nse and 
sip-user-enum.nse providing brute and user enumeration support for the SIP
  protocol. [Patrik]
 2011-05-09 18:00:52 +00:00