PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-01 19:19:09 +00:00
Code Issues Projects Releases Wiki Activity
10,585 Commits 2 Branches 0 Tags
8779c1e376467d90f08cba71663d60e951a91bb6
Commit Graph

1459 Commits

Author SHA1 Message Date
dmiller
8779c1e376 Fix a crash in ssl-enum-ciphers when parsing unsupported cert types 2016-08-30 16:07:08 +00:00
dmiller
92f52de958 Remove trailing whitespace 2016-08-29 20:30:26 +00:00
dmiller
8c10485689 Fix MySQL version detection, greeting parsing. Fixes #529 2016-08-25 23:05:50 +00:00
tomsellers
6735a8dc95 [NSE]sslcert.lua - Fix two issues with LDAP. Closes #531 2016-08-25 22:28:33 +00:00
dmiller
fc948c437b Add warning for SWEET32 on CBC with block size <= 64 bits 2016-08-24 16:07:57 +00:00
nnposter
666cd648c3 Corrects the IKE attribute type for 2048-bit MODP group. Fixes #523 2016-08-23 01:18:07 +00:00
dmiller
2fb52b456e Add an error check to giop.lua 2016-08-22 16:26:41 +00:00
nnposter
020980bcba Adds a fingerprint for Dell iDRAC6 remote console to script http-default-accounts 2016-08-22 13:43:53 +00:00
nnposter
c23e8bae3e Adds a fingerprint for Lantronix ThinWeb Manager to script http-default-accounts 2016-08-22 13:41:01 +00:00
nnposter
76760b0c8d Adds a fingerprint for Motorola AP-7532 to script http-default-accounts 2016-08-22 13:35:18 +00:00
dmiller
bab09913a8 Add unittests for vnc auth password encryption 2016-08-20 04:40:47 +00:00
nnposter
47d84ec60f Tightens target_check in the fingerprint for BeEF 2016-08-20 02:15:02 +00:00
dmiller
d48bd6bc5d Avoid a crash trying to auth with VNC password >8 chars 2016-08-20 00:08:03 +00:00
dmiller
bd77d65e3b Avoid another unsigned vs signed integer overflow in packing 2016-08-20 00:08:02 +00:00
paulino
ae7fe28936 Adds JMX Invoker interface 2016-08-19 19:40:03 +00:00
nnposter
0303ef5b59 Adds a few trivial improvements to the http-default-accounts fingerprints 2016-08-19 19:14:51 +00:00
nnposter
c3ab8da378 Updates target_check in the fingerprint for Zebra printers to accommodate older versions 2016-08-19 19:07:44 +00:00
nnposter
034ba003ec Adds Aironet credentials to the fingerprint for Cisco IOS 2016-08-19 18:57:52 +00:00
nnposter
cc996985f8 Adds a more meaningful target_check to the fingerprint for Apache Axis2 2016-08-19 18:50:23 +00:00
nnposter
0aefe63c2b Generalizes the fingerprint for Adobe LiveCycle Management Console 2016-08-19 18:33:57 +00:00
nnposter
37a9142101 Updates the listed http-default-accounts fingerprints to take advantage of 
probe result sharing across fingerprints. (This feature has been implemented
in r36134 and described in issue 516.)

- Cacti
- Cisco IOS
- Cisco WAP200
- Cisco WAP55AG
- ASUS RT-N10U
- Motorola RF Switch
- Nortel VPN Router
- F5 BIG-IP
- Zebra Printer
- RICOH Web Image Monitor
- Lantronix SLC
 2016-08-19 18:06:10 +00:00
dmiller
8f3bbf33a5 Avoid crash in rpc.lua due to packing nmap.clock (a float) as integer 2016-08-19 17:37:30 +00:00
dmiller
265e32dbd6 Avoid a couple potential format string problems 2016-08-18 23:53:45 +00:00
dmiller
cad7183a18 Fix another floating-point print bug: http://seclists.org/nmap-dev/2016/q3/191 2016-08-17 20:31:42 +00:00
nnposter
7d9994597e Updates auth realm extraction pattern to accommodate extraneous spaces in the HTTP response header 2016-08-16 02:00:17 +00:00
nnposter
2804d04d36 Fixes Xplico fingerprint to account for non-default base path 2016-08-15 15:56:54 +00:00
dmiller
2e191df64d Handle out-of-order parameters to http digest auth 2016-08-12 23:44:43 +00:00
dmiller
e31c4fe64e New unittest function to test key-value tables 2016-08-12 23:44:42 +00:00
dmiller
bb9d03269c Fix bin.pack('H') to allow whitespace, force crash on non-hex chars 2016-07-28 18:51:40 +00:00
dmiller
5b7a07b6c9 Add clock-skew script, datetime library 2016-07-21 17:05:25 +00:00
dmiller
963011520f Fix bugs where pos return value of bin.unpack was ignored 2016-07-21 17:05:24 +00:00
dmiller
75e6c2f64a Add mean, stddev, and median to formulas.lua 2016-07-21 17:05:21 +00:00
dmiller
5483beef88 Support floats and negative intervals in format_time 2016-07-21 17:05:20 +00:00
batrick
62c4985536 Reduce debugging further. 
This is still too verbose for some use cases.
 2016-07-16 17:24:19 +00:00
dmiller
28c06ce28b Fix up some NSEdoc in asn1.lua 2016-07-13 17:51:10 +00:00
batrick
1b5f633e2a Reduce verbosity and improve bin wrapper debugging. 2016-07-13 01:46:27 +00:00
dmiller
a8abc95712 Note some default values for unpwdb args 2016-07-12 13:52:17 +00:00
dmiller
0ac0d8f505 Fix globals, whitespace 2016-07-08 04:36:31 +00:00
dmiller
187d9190c0 Add missing nsedoc tags, needed because stdnse.module not used 2016-07-07 22:12:13 +00:00
dmiller
8c346ba3b4 Encrypted SSLv2 messages have no message type 2016-07-07 16:35:38 +00:00
dmiller
529a1fb4bd Fix index returned by sslv2.read_record, handle errors and encrypted records 2016-07-07 16:35:37 +00:00
dmiller
17040f4cf1 Move core of sslv2.nse into sslv2.lua so other scripts can use it. Cache results in registry. 2016-07-07 16:35:37 +00:00
dmiller
d6fbe8b2ca Refactor some code from sslv2.nse into sslv2.lua 2016-07-07 16:35:36 +00:00
batrick
7f5ec526fe Merge branch 'nse-lua53' 
Lua 5.3 adds several awesome features of particular interest to nmap including
bitwise operators and integers, a utf8 library, and standard binary pack/unpack
functions.

In addition to adding Lua 5.3, this branch changes:

o Complete removal of the NSE bit library (in C), It has been replaced with
  a new Lua library wrapping Lua 5.3's bit-wise operators.

o Complete removal of the NSE bin library (in C). It has been replaced with a
  new Lua library wrapping Lua 5.3's string.pack|unpack functions.

o The bin.pack "B" format specifier (which has never worked correctly) is
  unimplemented.  All scripts/libraries which use it have been updated. Most
  usage of this option was to allow string based bit-wise operations which are no
  longer necessary now that Lua 5.3 provides integers and bit-wise operators.

o The base32/base64 libraries have been reimplemented using Lua 5.3's new
  bitwise operators. (This library was the main user of the bin.pack "B" format
  specifier.)

o A new "bits" library has been added for common bit hacks. Currently only has
  a reverse function.

Thanks to David Fifield, Daniel Miller, Jacek Wielemborek, and  Paulino
Calderon for testing this branch.
 2016-07-02 17:02:27 +00:00
dmiller
bd99365851 Change rpc's GetAdditionalBytes to error on a short read without an extra timeout 2016-06-28 02:19:44 +00:00
dmiller
ce1daa8135 Fix a reference to an unset global 'unpack' 2016-06-18 17:29:42 +00:00
dmiller
cb4b46bd53 Canonicalize authors as tables instead of comma-separated strings 2016-06-09 22:46:42 +00:00
dmiller
39018e3e91 Check for RSA exponent of 1, resulting in F score 2016-06-09 04:36:09 +00:00
dmiller
c8e8cf8f43 Return RSA exponent from parsed SSL certificates, as a bignum 2016-06-09 04:36:07 +00:00
abhishek
c7852c6ec0 Adds Pong response, closes #383 2016-05-24 19:23:20 +00:00