PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-29 19:09:01 +00:00
Code Issues Projects Releases Wiki Activity
9,701 Commits 2 Branches 0 Tags
7ebabd4dbecf3e83e8ea8bebb73edb5d22b70883
Commit Graph

9701 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
fyodor
7ebabd4dbe Just broaden the Linux version supported by this fingerprint slightly 2015-04-16 06:04:30 +00:00
paulino
fba4bc85c6 Make the library vulns use HTTPS by default when generating CVE links. 2015-04-15 20:29:47 +00:00
dmiller
052fc14e02 Process IPv4 OS corrections 2015-04-15 12:53:36 +00:00
dmiller
54543b303c Clean up some documentation regarding http redirects 2015-04-10 12:56:05 +00:00
dmiller
fcd93e141f Use http.lua's default redirect follower for http-generator.nse 2015-04-10 03:42:46 +00:00
dmiller
2e55f5d3b8 Allow redirect_ok to be a number of redirects to follow (http.lua) 2015-04-10 03:42:44 +00:00
dmiller
6b26490496 Simplify error statement regarding IPv6-incompatible features (note OS detection is now supported!) 2015-04-09 15:55:45 +00:00
dmiller
b87d343443 Fix X509 cert date parsing for dates after 2049. 
Reported by Teppo Turtiainen: http://seclists.org/nmap-dev/2015/q2/29

GeneralizedTime strings are 15 bytes (14 chars of date + 'Z'), not 14.
 2015-04-09 13:07:34 +00:00
dmiller
bc9a8452e0 Last 180 fingerprint submissions from February 2015 2015-04-09 02:56:06 +00:00
paulino
d76dd6b5b8 Fixes typo in author's name 2015-04-08 20:04:58 +00:00
paulino
5d35530075 Adds http-crossdomainxml 2015-04-08 15:58:20 +00:00
dmiller
215cebeec4 Enforce dependencies for test progs in ncat/Makefile, fixes build breakage with -j 2015-04-08 13:53:41 +00:00
dmiller
e114af114a CHANGELOG entry for IPv6 Hop limit feature 2015-04-07 21:31:08 +00:00
dmiller
4a491e35d8 Check address family before loading OS fingerprints 
In addition to silencing an unnecessary fatal error when nmap-os-db is
not found but user has requested -6, this should make start times a bit
more efficient, since only 1 or the other database is loaded. Patch by
Alexandru Geana

Fixes #97
 2015-04-07 21:31:06 +00:00
dmiller
d17ec63ba5 IPv6 hop limit feature for OS detection, patch by Alexandru Geana 2015-04-07 17:12:55 +00:00
jah
3c3d3bc55a Fix thread.info in Script:new_thread and new_worker 
in nse_main - the pattern to capture the script thread ID did not
match on Windows.  See http://seclists.org/nmap-dev/2015/q1/205 .
 2015-04-06 16:26:48 +00:00
dmiller
986f87be39 Remove call to deprecated BN_CTX_init http://seclists.org/nmap-dev/2015/q2/9 2015-04-06 12:27:17 +00:00
dmiller
be9793fe45 Remove accidental non-standard alternative token 'or' 2015-04-06 00:28:35 +00:00
fyodor
df26fa850c Remove --log-errors from Nmap quickref (help screen) because it has been the default behavior for a while and so does nothing 2015-04-04 01:43:08 +00:00
dmiller
8ac2c5e496 SSL/TLS port adjustments for version scan 
Increased rarity of TLSSessionReq from 2 to 7, since SSLSessionReq
should catch most things.

Moved some obvious SSL ports (989-995) to sslports directives.

Added a few SSL ports to the existing SSL* probes.
 2015-04-02 18:44:36 +00:00
dmiller
f93cab84eb Add TLS-compatible version probe for services (like MS RDP) that silently drop SSLv3 handshakes 2015-04-02 04:40:27 +00:00
dmiller
dab7b10ebe Add 3389 as an SSL port; Enhanced RDP Security requires TLS 2015-04-02 04:40:26 +00:00
dmiller
311c2c3065 Fix a crash due to ICMP type 3 code 2 received during service scan 2015-04-01 19:52:52 +00:00
dmiller
ab5b346352 Obey TLSv1.2 RFC regarding anonymous signature type 2015-03-25 19:35:20 +00:00
dmiller
170a45f21d Fix a typo in a debug message 2015-03-25 14:30:18 +00:00
dmiller
04fee3d14c Move TLSv1.2 signature_algorithms extension defaults into tls.lua 2015-03-25 02:29:25 +00:00
dmiller
ed86473b0c Send supported signature algorithms for TLSv1.2 2015-03-24 23:22:19 +00:00
dmiller
6d178c39bf Process 100 more IPv4 fingerprints (Windows done) 2015-03-24 14:57:13 +00:00
dmiller
6f08d4b81f Process 650 more IPv4 fingerprints (Linux done) 2015-03-24 03:54:10 +00:00
dmiller
660c408de9 Another 300 os fingerprint submissions 2015-03-23 21:54:49 +00:00
dmiller
3e19878190 Add service fingerprint for Gearman (Andrew Horton) 2015-03-23 19:37:12 +00:00
dmiller
95437a1468 Fix a crash in isTCPwrapped. Closes #89 2015-03-23 12:35:39 +00:00
fyodor
56c9f847f4 Regenerate nmap-services to correct a typo 2015-03-21 01:08:41 +00:00
dmiller
b200984fe7 Note a done task: Bug tracker is http://issues.nmap.org/ 2015-03-20 19:24:27 +00:00
dmiller
115f35ffca Process another 150 OS fingerprints 2015-03-20 14:10:43 +00:00
dmiller
279ba9b9b0 Process 550 new IPv4 OS fingerprints, incl OS X 10.10 2015-03-19 04:20:26 +00:00
dmiller
c0628fd141 Report IPv4 and IPv6 addresses resolved for each host 
Previously, we would only request IPv4 addresses by default, or only
IPv6 when scanning with -6. Now, we'll request both (by not passing an
address family in the hints to getaddrinfo) and report them all in the
"Other addresses" line. This should encourage more users to scan with
-6. Additionally, it allows us to catch and report attempts to scan
IPv6-only hosts via IPv4, where previously we would just say "Failed to
resolve"

Closes #76
 2015-03-11 04:14:26 +00:00
dmiller
fbbb64a190 Silence warnings: 'Makefile.in seems to ignore the --datarootdir setting' 2015-03-11 04:14:24 +00:00
dmiller
67be9e3ef9 Mark some Make targets as .PHONY 2015-03-10 13:16:58 +00:00
dmiller
270d1418fe Update OS X build info for minimum 10.8 (Mountain Lion) 2015-03-10 04:26:24 +00:00
dmiller
1cd6c40bf9 Keep phony targets out of the prereqs for ncat itself, otherwise it is built every time 2015-03-10 03:52:44 +00:00
dmiller
596675939d Let nmap-update be built alone (make build-nmap-update) 2015-03-10 03:52:42 +00:00
dmiller
cf6639e2b8 Separate libapr and libsvn LIBS variables in nmap-update Makefile 2015-03-07 05:37:42 +00:00
dmiller
f934e350a8 Keep -lssl and friends out of LIBS for Ncat, allows overriding with static libs 2015-03-07 05:37:40 +00:00
dmiller
564f654747 Fix leftovers from the whois => whois-ip name change 2015-03-07 04:24:31 +00:00
dmiller
55c3348fae Use tls.client_hello defaults for some scripts 2015-03-06 20:00:00 +00:00
dmiller
1fd4b3edd8 Use some sane defaults in tls.client_hello 2015-03-06 19:59:59 +00:00
dmiller
40945dc702 Send SSLv3 as record version in ClientHello for compatibility 2015-03-06 19:59:57 +00:00
dmiller
ee1156eb51 Fix a NULL pointer dereference in libdnet-stripped 
Reported and diagnosed by Gisle Vanem.

Fixes #70
 2015-03-05 22:09:49 +00:00
dmiller
e8f34f61a3 Statically link OpenSSL on OS X 
Using the macports version, which is up-to-date, instead of the outdated
version included in the 10.5 SDK. As we update the minimum supported
version of OS X, that would improve, but not by much: 10.9 is still on
0.9.8y
 2015-03-05 14:17:45 +00:00