PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-07 14:06:33 +00:00
Code Issues Projects Releases Wiki Activity
12,116 Commits 2 Branches 0 Tags
8f3364a44168cd4a41837c443243e7feb69f1663
Commit Graph

1964 Commits

Author SHA1 Message Date
nnposter
96e17c4f63 Prevent potential nil dereference. Fixes #1885 2020-01-11 03:15:34 +00:00
dmiller
f974b625d2 New, broader portrule for SSH scripts. Closes #1825 2020-01-10 05:32:08 +00:00
nnposter
922199296c Rectifies bug where RPC dump was always using program version 4 2020-01-09 22:51:02 +00:00
nnposter
c4f7153c22 RPC protocol parsing workaround for NetApp 5.0 
Dump response lists protocols with trailing null byte
 2020-01-09 22:36:35 +00:00
dmiller
ab1deb5783 Permit ssl-cert script to run without OpenSSL (no parsing) 2020-01-08 17:39:52 +00:00
dmiller
a87b0ca133 Add version info for MS SQL 2017 and 2019 2020-01-06 18:39:54 +00:00
dmiller
81f0818d9e http-enum: Fingerprint for ArangoDB 2020-01-06 18:24:34 +00:00
dmiller
81ceee49c5 sslcert: Try tls.lua if Nsock's SSL routines fail to connect. 2020-01-06 18:24:33 +00:00
dmiller
b9d14a40ab Be more strict about what we parse as TLS record data 2020-01-06 18:24:32 +00:00
nnposter
6998bfca49 Refactors function smb.find_files() 
- Replaces its coroutine design to avoid sharing sockets across threads
    (Fixes #1837)
  - Corrects conversion of file attributes into bitmask
  - Removes side effect of modifying parameter "options" by populating
    member "srch_attrs"
  - Implements options.maxfiles to take advantage of script arg ls.maxfiles,
    reducing file requests that would be ultimately ignored anyway
  - Improves performace by supporting larger SMB block sizes
  - Implements rudimentary support for Trans2_Data by smb.send_transaction2()
  - Adds standard definitions for SMB file attributes
 2019-12-19 20:13:16 +00:00
nnposter
be3d719dd7 Correct a constant value typo 2019-12-15 20:45:54 +00:00
david
5cc813f394 Fix an off-by-one error in stun.lua. 
https://seclists.org/nmap-dev/2019/q4/8
 2019-12-13 23:12:45 +00:00
dmiller
a5a945347b Use keeppattern=true when using match.numbytes. Fixes #1855 2019-12-13 18:11:52 +00:00
nnposter
e7e7e9e8c7 Fingerprint for Tomcat Host Manager. Closes #1755 2019-12-03 02:28:41 +00:00
dmiller
42bb2feed8 Add 4433 (openssl s_server) to likely SSL ports 2019-11-18 18:31:39 +00:00
nnposter
6785355374 Add a comment about suspect code 2019-11-17 03:23:53 +00:00
nnposter
67fe6bb0fb MongoDB wire protocol is using signed int32. Fixes #1802 
Unlike the old bin library, Lua string.pack does not support silent conversions:
Negative integers cannot be "I" packed and 0xFFFFFFFF cannot be packed with "i4"
 2019-11-17 03:05:30 +00:00
nnposter
71034a0b09 String value in "elements" contains null bytes so "z" packing cannot be used. See #1802 2019-11-13 23:59:55 +00:00
nnposter
90f177843b Marginally cleaner variant of commit r37751 2019-11-13 23:39:02 +00:00
nnposter
08a6d8db4b Fix for two RTSP request assembly defects introduced in r37474: 
* Adds missing header-terminating empty line to the request string
* Rectifies a code crash when the header table is empty
Fixes #1781, closes #1796
 2019-11-06 22:15:32 +00:00
dmiller
edb130e908 Replace some print calls with proper debug functions. See #1774 2019-10-07 03:13:09 +00:00
dmiller
128c136d44 A couple code warnings in dicom.lua 2019-09-20 04:40:21 +00:00
dmiller
3c24eda4be Consolidate some error handling, standardize geoip coordinates, fix output bugs. Fixes #1744 2019-09-20 04:40:20 +00:00
nnposter
7ce92c68df Another instance of the same bug as in r37734 2019-09-08 01:47:11 +00:00
nnposter
845bed4c2b Avoid unintentional passing of insert position from string.unpack 
Fixes #1706
 2019-09-08 01:25:39 +00:00
nnposter
c491143358 Do not trust SMB challenge length field with Extended Security in use 
Some Samba servers fail to zero it out. See
https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb/d883d0a5-5a0a-4626-8e3e-87b0b66b79aa
Fixes #1707, closes #1476
 2019-09-08 00:40:27 +00:00
nnposter
d608b26eb5 Fix off-by-one bug 2019-09-07 22:50:33 +00:00
nnposter
3bb6062ede Use a more accurate variable name 2019-09-07 22:43:47 +00:00
nnposter
ce28753b89 Rectify error "bad argument #2 to 'format'" in SMB scripts 
Fixes #1713, closes #1714, closes #1480
 2019-09-06 04:13:07 +00:00
nnposter
59c53f07fd Prevent an error when optional argument "overrides" is not passed 
Prevent a potentially unexpected side-effect when the argument is passed.
 2019-09-05 21:56:54 +00:00
nnposter
90a2063c9d Only one dialect is returned by smb.negotiate_v1() 2019-09-05 21:28:44 +00:00
nnposter
ef2825b3bc Populate ID Authority with the correct value. See #1720 2019-09-01 03:53:04 +00:00
nnposter
729260e2d1 Account for a possibly nil argument 2019-09-01 03:09:49 +00:00
nnposter
e5c4f4886b Make sure that argument pos is always defined. See #1720 2019-09-01 02:57:34 +00:00
nnposter
be409657c2 Replace references to stdnse.strjoin with stringaux.strjoin. See #1720 2019-09-01 02:07:19 +00:00
paulino
0066c8eefa Removes protocol version from associate() as it is not used in that function 2019-08-05 20:00:00 +00:00
paulino
82c0361f10 Fixes nil access error. Checks for object before calling the function isReduce 2019-08-05 15:19:24 +00:00
paulino
4f5b659767 Adds new NSE library for DICOM and scripts dicom-ping and dicom-brute to discover and brute force DICOM servers 2019-08-05 06:30:36 +00:00
nnposter
f513575f5c Rectify an HTTP digest authentication crash. Fixes #1665 2019-08-05 00:14:10 +00:00
nnposter
5f5c8b32f6 Add support for gzip-encoded, yet empty body. Closes #1662 2019-07-20 23:37:32 +00:00
dmiller
b445faab35 New oops.lua library 
Loosely inspired by Rustlang's std::Result type:
https://doc.rust-lang.org/beta/std/result/index.html

This ought to be easy to use to replace uses of
`stdnse.format_output(false, ...)`
 2019-06-28 20:44:19 +00:00
dmiller
2f7f6c7b6a Remove unused requires 2019-06-27 19:13:41 +00:00
dmiller
5ab1270cbc Don't print trailing '=' in ssh hostkey fingerprints (sha256) 2019-06-26 03:22:24 +00:00
dmiller
9aebe62edb Add support for SHA256 hostkey fingerprints. Closes #1644 2019-06-26 03:22:24 +00:00
tomsellers
19c756aedf Add NSE script rdp-ntlm-info. Closes #1633 2019-06-14 12:08:28 +00:00
tomsellers
a4f3c85eb9 Add TLS support to rdp-enum-encryption Closes #1614 2019-06-04 19:38:28 +00:00
nnposter
43b9461e5c Remove unused variables from http.lua 2019-06-03 00:21:59 +00:00
tomsellers
95f9e2cf91 Address rdp protocol parsing issues in rdp.lua and rdp-enum-ciphers.nse Closes #1611 2019-05-28 23:01:21 +00:00
nnposter
6cffee9e5d Add CARBANAK certificate thumbprint. Closes #1609 2019-05-26 02:03:00 +00:00
dmiller
302f5d5bd6 http.lua tests using gzip will fail unless zlib is available. 2019-05-24 18:28:49 +00:00