PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-13 01:49:01 +00:00
Code Issues Projects Releases Wiki Activity
8,384 Commits 2 Branches 0 Tags
8a55f5c2c2a37a448d110e2fa1dd123eb09eaa4d
Commit Graph

8384 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
8a55f5c2c2 New Murmur probe by Marin Maržić. 
http://seclists.org/nmap-dev/2013/q2/413
 2013-07-01 09:07:00 +00:00
david
9ac1bffad2 Ignore down interfaces at route_dst time, not when building routing table. 
The previous code to ignore down interfaces didn't account for implicit
routes that come from interface addresses and netmasks. You can force
the use of a route using a down interface with -e.
 2013-07-01 02:06:09 +00:00
david
b415564df9 Sort routes first by netmask, then by metric. 
Metric is used to break ties between routes with the same size netmask.
 2013-06-30 17:38:15 +00:00
david
1d7e8b338c CHANGELOG for -i in listen mode. 
http://seclists.org/nmap-dev/2013/q2/403
 2013-06-30 06:08:47 +00:00
david
73d4b0f0a0 Ncat: Add tests for idle timeout in listen mode 
This patch adds tests for idle timeout in listen mode
for all supported protocols. It also modifies existing
test for idle time in connection mode to test the option
for all supported protocols.

Signed-off-by: Tomas Hozza <thozza@redhat.com>
 2013-06-30 06:08:45 +00:00
david
5c4207f009 Ncat: Implement idle timeout option for listen mode 
This patch implements "-i" (idle timeout) option for listen mode.

Signed-off-by: Tomas Hozza <thozza@redhat.com>
 2013-06-30 06:08:43 +00:00
david
af8c57a1b8 Don't use htons to unconditionally swap bytes. 
htons is a no-op on big-endian architectures. This affected idle scan IP
ID computations.

http://seclists.org/nmap-dev/2013/q2/529
 2013-06-30 02:22:13 +00:00
david
9e82bb6c4e Support chained certificate files with --ssl-cert. 
Use the recommended SSL_CTX_use_certificate_chain_file over
SSL_CTX_use_certificate_file.
https://www.openssl.org/docs/ssl/SSL_CTX_use_certificate.html#NOTES

Patch by Greg Bailey.
http://seclists.org/nmap-dev/2013/q2/399
 2013-06-29 22:33:56 +00:00
henri
1ebe659bd5 Prevent script from crashing when running against ::1. 
This case wasn't properly handled. Simply return nil.

It could also return 127.0.0.1 or 127.0.0.0/8 instead
of early exit though I doubt it makes that much sense
for user.
 2013-06-29 18:36:24 +00:00
henri
b45f3e89f5 Indentation fix. 2013-06-29 18:36:16 +00:00
dmiller
3b171708f2 Fix typo in nping man page: --md > --mf 
Reported in this RedHat bug:
https://bugzilla.redhat.com/show_bug.cgi?id=813739
 2013-06-28 15:45:25 +00:00
d33tah
85e52bf928 fix some typos in comments I found while reading Nbase's code 2013-06-28 15:37:20 +00:00
david
851676e407 Remove obsolete ncat.sln and nping.sln files. 2013-06-28 03:31:44 +00:00
david
c9d1ed782c 32 OS corrections. 2013-06-27 20:38:33 +00:00
david
9c7098876a 500 OS submissions. 2013-06-27 20:38:30 +00:00
dmiller
0a8463b77a Remove undefined NSEdoc tag @xml-output from hostmap-ip2hosts 2013-06-26 16:54:54 +00:00
david
35b1d3bb51 100 OS submissions. 2013-06-26 16:52:22 +00:00
david
5f5122103a 100 OS submissions. 2013-06-24 21:49:30 +00:00
henri
7f9f75f6b1 Updated ncat documentation so that it doesn't prevent users from using -v 
more than three times.

The current rules are:
  -v      --> verbose mode
  -vv...  --> debug mode

Debug can be higher than two (use debug>=6 for full nsock logs for instance).
 2013-06-24 21:06:19 +00:00
batrick
bd387f6826 With debugging, NSE prints out the script-args string and the pretty printed 
final script-args table. The rationale is, unfortunately shells interpret
quotes differently and so it can be hard to tell exactly what NSE ends up
seeing/producing. [Some discussion in #nmap on Freenode resulted in this
addition.]
 2013-06-23 02:40:28 +00:00
paulino
fb610761b1 Adds nil check to fix warning the running against hosts with no auth. 2013-06-22 14:46:14 +00:00
sophron
27576cfb34 [NSE] This image is essential for http-fileupload-exploiter.nse. 2013-06-22 13:37:01 +00:00
david
ec3536d31a Remove executable mode. 2013-06-21 23:13:51 +00:00
david
7ab5fce301 150 OS submissions. 2013-06-21 20:52:58 +00:00
david
9f70e54a89 100 OS submissions. 2013-06-21 03:55:41 +00:00
david
80d29c4019 100 OS submissions. 2013-06-21 03:04:01 +00:00
david
e7f22c5aed Actually show the error message from ReceivePacket failure. 2013-06-19 23:53:37 +00:00
david
d1eae0196a Tabs to spaces. 2013-06-19 15:19:09 +00:00
dmiller
18bbf3e714 Update script.db for new http scripts 2013-06-18 18:14:32 +00:00
david
83c8e1a9d0 Retab ssl-cert.nse. 2013-06-18 03:58:47 +00:00
david
1a6b5448d0 Show debug info for every match. 
Based on a patch by Jesper Kückelhahn.
http://seclists.org/nmap-dev/2013/q2/347
 2013-06-18 03:44:53 +00:00
david
e73585590e Add additional constants in ike.lua. 
Based on a patch by Jesper Kückelhahn.
http://seclists.org/nmap-dev/2013/q2/347
 2013-06-18 03:44:48 +00:00
david
b5abe59cf9 Use a mutex for ike.lua's bind to udp/500. 
Based on a patch by Jesper Kückelhahn.
http://seclists.org/nmap-dev/2013/q2/347
 2013-06-18 03:44:43 +00:00
david
13fd6d1107 Capitalize constant table names in ike.lua. 
Based on a patch by Jesper Kückelhahn.
http://seclists.org/nmap-dev/2013/q2/347
 2013-06-18 03:44:38 +00:00
david
af5f103b5f Whitespace in ike.lua. 2013-06-18 03:44:32 +00:00
sophron
1614b7f594 [NSE] Added http-comments-displayer that extract HTML comments from HTTP responses. 2013-06-18 00:48:01 +00:00
sophron
9b4368e253 [NSE] Added http-fileupload-exploiter that exploits insecure file upload forms in web applications using various techniques. 2013-06-18 00:42:59 +00:00
david
42f3bcfdea fixing one typo in original ncat_core.c (atleast=>at least) 
Originally by d33tah in r30940 in /nmap-exp/d33tag/ncat-lua.
 2013-06-18 00:26:21 +00:00
david
8cc4ae518c 100 OS submissions. 2013-06-17 22:54:34 +00:00
henri
c12b2e4370 Fixed indentation. 2013-06-17 19:23:41 +00:00
henri
4f36ba9798 Stop parsing TCP options after reaching EOL in libnetutil. Bug reported 
by Gustavo Moreira.
 2013-06-17 18:19:24 +00:00
david
244e3234cc 150 OS submissions. 2013-06-17 17:47:50 +00:00
henri
f26be606aa Updated my nsock roadmap/todolist 2013-06-15 20:52:03 +00:00
henri
9bfe6e46cc Display the test name before running it. 
This makes it easier to identify a test that hangs.
 2013-06-15 12:33:31 +00:00
henri
a493296c54 Code cleanup. 
Made get_peeraddr_string() return "peer unspecified" if peerlen <= 0.
This saves a handful duplicate lines that did the check externally.
 2013-06-15 12:33:27 +00:00
david
6238087e9b Compare string contents, not pointer values. 
This bug was introduced in r30334. We want to compare the contents of
the strings, not their addresses. This bug caused host script results to
be printed in arbitrary, perhaps not even well-defined, order.
 2013-06-14 17:26:43 +00:00
david
7684b43072 Formatting. 2013-06-13 15:22:17 +00:00
david
8c7e0881ec Remove misleading comments. 
There is more than just sorting going on here; it's also whether some
output is written.
 2013-06-13 15:22:13 +00:00
david
dcca84eb0d Fix weird double variable declaration. 
It seemed to run fine even with this.
 2013-06-13 15:22:09 +00:00
d33tah
e9c6e5b925 revert the previous commit, git-svn pushed it to the wrong directory. 2013-06-13 15:10:07 +00:00