PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-06 22:49:02 +00:00
Code Issues Projects Releases Wiki Activity
12,186 Commits 2 Branches 0 Tags
832e8f41e2327d3540170397f4950879b4187a9f
Commit Graph

12186 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
nnposter
832e8f41e2 Improve robustness of PostgreSQL v3 response code. Fixes #2009 2020-06-27 21:51:45 +00:00
dmiller
f31f56aa27 Add credit for earlier report. Closes #1622. Closes #1641 2020-06-22 14:30:46 +00:00
dmiller
b2c9062f90 Handle uppercase PTR records. Fixes #2068 2020-06-21 15:45:22 +00:00
dmiller
29c6a53604 Replace some alternations with ranges 2020-06-19 18:36:06 +00:00
dmiller
a4366a4394 Process most commonly-submitted fingerprints and FreeBSD 2020-06-19 18:27:16 +00:00
dmiller
030a58a26e Replace 'master' with 'controller thread' in NSE script docs/comments 2020-06-18 17:14:48 +00:00
dmiller
233d3a3691 Remove fingerprints with too little detail that match too many observations 2020-06-18 16:57:07 +00:00
dmiller
ef93ae44c6 Add a changelog entry for a significant change in Nmap 7.80 2020-06-18 16:21:25 +00:00
dmiller
0d613e3b4b Allow --ssl with --proxy for ncat. Fixes #2065 2020-06-17 22:42:49 +00:00
nnposter
ae0babda4d Propagate unpwdb errors to script output. Fixes #2011 2020-06-15 03:01:35 +00:00
nnposter
6a9e383f9f Corrected brute.mode 2020-06-14 01:16:01 +00:00
nnposter
e761d3e355 IPP printer status is already converted to an integer 2020-06-13 22:54:24 +00:00
nnposter
838ec193e3 Do not assume IPP end-of-attributes-tag is followed by another tag 2020-06-13 22:47:15 +00:00
nnposter
7ff536c8a1 Fix for IPP request tostring(). Fixes #2063 2020-06-13 02:10:51 +00:00
nnposter
f5b4d98153 Faster implementation of fromhex() 
Over 40% faster and creates only a quarter of temporary Lua strings than
the legacy implementation
 2020-06-04 19:38:10 +00:00
nnposter
19ad95c926 Convert file from CR/LF to LF 2020-05-27 01:51:30 +00:00
dmiller
0e87182cbb Warn if parts of the port spec will be ignored. 2020-05-22 17:18:59 +00:00
nnposter
b9c8409022 Fix Oracle 10g password hashing function 
* Non-alphanumeric characters were not processed correctly
  The correct hash for BOB:LONG_MOT_DE_PASSE_OUI is EC8147ABB3373D53,
  not 3DB3AA445FB68342.
* The hash is case-insensitive
 2020-05-20 23:01:41 +00:00
nnposter
47ec607c6f Optimize DALC structure marshalling in TNS 
Avoids unnecessary splitting of the input string value
 2020-05-20 21:18:05 +00:00
dmiller
aa6245b53a New issue templates for Github Issues 2020-05-20 20:11:22 +00:00
nnposter
3019f0c9de Fix DALC structure unmarshalling in TNS. Fixes #2010 
The algorithm got broken in r37418 (4009f5fb17),
when string concatenation was replaced with table concatenation.
 2020-05-20 20:08:38 +00:00
dmiller
df1874cedd Reduce CPU usage of OS scan by 50% 
expr_match was wasting cycles implementing syntax not used or documented
elsewhere (boolean AND, "+" to mean non-zero), copying and allocating new
strings. Replacement reduces number of comparisons and performs parsing
in-place on the const input expression.
 2020-05-20 05:23:47 +00:00
nnposter
fb1406a51a Add new vhost entry. Closes #2041 2020-05-20 01:48:35 +00:00
nnposter
0d966d9fee True up the full virtual host probing list 
The last update to vhosts-default.lst (r32488, bb77ad2abc) should have covered vhosts-full.lst as well.

It should be reviewed whether the above-mentioned update added too much into
the default list, increasing its size five-fold. For performance reasons,
this list is apparently intended to cover only the most common names.
 2020-05-20 00:02:18 +00:00
nnposter
b64f17b1ad Already implemented in r29399 
See Github commit 1441aea655
 2020-05-19 23:26:10 +00:00
nnposter
eefc08e795 Add music/photo/video detection. Closes #2048 2020-05-19 22:51:29 +00:00
dmiller
875a51fb0f Be more parallel with ARP discovery 
Two essential changes:

1. (ab)Use the ratelimit detection feature to hold off sending retransmissions,
preferring to send new ARP probes. Late responses will still be recorded, but no
longer counted as drops. This also gives each target the longest amount of time
to respond.

2. Send timing pings much more frequently. Since we're not sending any
retransmissions until timeout + ratelimit, we wouldn't otherwise have any data
on drops in order to speed up or slow down.

Results are faster ARP scans with fewer missed targets. See #92.
 2020-05-15 18:18:18 +00:00
dmiller
bfef89e943 Also fudge received times for NS scan 2020-05-15 17:49:49 +00:00
dmiller
4fcc04cce5 Avoid printing null timestamp if scan was skipped. Fixes nmap/nmap#1725 2020-05-14 18:11:41 +00:00
dmiller
069af655eb ARP: Look for an earlier probe if response seems too fast. See #92 2020-05-11 17:20:11 +00:00
dmiller
a41e8c8e58 Update copyright language for Windows. 2020-05-11 17:18:27 +00:00
nnposter
351eea1986 PROTOCOL_IDS is a table. Fixes #1999, closes #2005 2020-04-14 18:11:23 +00:00
dmiller
5b6645e09d Copy link header from beginning of frame, not beginning of IP header. 2020-04-06 21:39:58 +00:00
nnposter
38023d1346 Update fingerprint to cover EPC3928AD. Fixes #1984 (no pun intended) 2020-04-01 18:35:08 +00:00
tomsellers
900e1c55f1 Added service fingerprinting for MySQL 8.x, Microsoft SQL Server 2019, 
MariaDB, and Crate.io CrateDB. Updated PostreSQL coverage and added
specific detection of recent versions running in Docker. Closes PR#1963
 2020-03-31 12:17:33 +00:00
paulino
0af31da502 Adds Atlassian products submitted by Mark Adams. Closes PR #1649 2020-03-22 03:20:40 +00:00
paulino
571340dcdd Fixes nested table in ArangoDB signature breaking the database 2020-03-22 02:45:29 +00:00
dmiller
f83de100b3 Avoid integer overflow in nping elapsedRuntime. Fixes #1961 2020-03-11 21:24:56 +00:00
nnposter
4097f39090 Do not treat HTTP 400 as login success. Closes #1942 2020-03-04 20:58:49 +00:00
nnposter
97a891b3e9 Updated BACnet vendor list. Closes #1936 2020-03-01 16:31:34 +00:00
nnposter
44d7dbc517 Streamline Luhn checksum code 
Removes various floating-point hazards. Fixes #1931, closes #1932
 2020-03-01 03:50:42 +00:00
nnposter
80f4733c32 Correct RPC reserved port range is 512-1023 
Some RPC services are strict about this and reject calls when the source port
is outside this range, causing nmap RPC calls to fail 50% of the time.
 2020-02-29 22:29:51 +00:00
dmiller
6753d2efdd Report actual number of hosts being resolved. Fixes #1918 2020-02-20 16:35:22 +00:00
dmiller
aaea7ab4e9 Allow a socket created/connected in one thread to be used in another. See #1233 2020-02-18 19:41:29 +00:00
dmiller
36018c07d7 Fix a copy-paste error 2020-02-18 19:39:03 +00:00
dmiller
ad2eb47aa7 Disable Robtex NSE scripts due to API changes. 2020-02-18 19:21:46 +00:00
dmiller
2f0e104f02 Allow numeric-string port numbers as arguments to http.lua funcs 2020-02-18 18:29:57 +00:00
dmiller
e4b3f018ff Fix tor-consensus-checker, several issues. 
* Update list of directory servers from current Tor source
* Since consensus is agreed on by all directories, stop after retrieving the first one.
* Use numeric port number, not string. http.lua to be updated later to allow strings, too.
* Do not use http.lua's cache for this big document, since we're caching it ourselves.
* Permit sizes up to 3 MiB, since consensus is larger than default 2 MiB limit.
 2020-02-18 18:28:54 +00:00
dmiller
4a38853631 Don't let UDP decoding bugs kill broadcast-listener main thread 2020-02-18 17:37:57 +00:00
dmiller
5d281d0e6e Avoid infinite runtime in snmp-brute due to 'Invalid reuse of a socket' killing send thread. 2020-02-18 17:02:39 +00:00