PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-21 06:59:01 +00:00
Code Issues Projects Releases Wiki Activity
6,427 Commits 2 Branches 0 Tags
9ff8043d923184f46bba6ccceeb61b96528ef8a8
Commit Graph

1310 Commits

Author SHA1 Message Date
henri
9ff8043d92 Added privilege checks to the prerules to prevent scripts from failing at 
action() time when executed unprivileged.

Removed the check which was performed by broadcast-dhcp-discover.nse in its
action() function, so that users can force execution if desired.
 2012-01-13 14:23:55 +00:00
david
541091eed1 Put http-generator in default. 2012-01-12 19:45:13 +00:00
david
1a9700019f Add http-generator.nse by Michael Kohl. 2012-01-12 19:45:11 +00:00
patrik
92cb5a3def Fixed bug that would fail to calculate a PADI host unique value in the pppoe 
library under certain circumstances. Fixed bug that would fail to terminate
script properly if no response was received from pppoe server. [Patrik]
 2012-01-10 21:08:20 +00:00
patrik
956c9ffe53 o [NSE] Added the script broadcast-pppoe-discover that discovers PPPoE servers 
on the LAN using the PPPoE Discovery Protocol. [Patrik]
 2012-01-10 18:22:39 +00:00
patrik
0267b56a27 o [NSE] Added the script membase-brute that performs password brute force 
password guessing against the Membase TAP protocol. [Patrik]

o [NSE] Added the script membase-http-info that retrieves information from the
  Couchbase distributed key-value pair server. [Patrik]
 2012-01-10 18:19:21 +00:00
david
2532c413b5 o [NSE] Fixed a race condition in broadcast-dhcp-discover.nse that 
could cause responses to be missed on fast networks. It was noticed
  by Vasiliy Kulikov. [David]
 2012-01-10 03:25:19 +00:00
henri
c55253db44 Expanded documentation. 2012-01-09 16:06:12 +00:00
henri
ed2fc828ac Added IPv6 support to firewalk.nse. 2012-01-08 15:13:35 +00:00
fyodor
8268a7f0d4 very minor nsedoc improvements 2012-01-07 03:04:18 +00:00
patrik
74d5ff04ef o [NSE] Added the script http-vuln-cve2009-3960 that detects and exploits the 
CVE 2009-3960 XML injection vulnerability in Adobe products. [Hani
  Benhabiles]
 2012-01-02 19:48:42 +00:00
patrik
2269e76438 o [NSE] Added a natpmp library and the script nat-pmp-mapport that allows 
NAT mapping of external TCP and UDP ports to internal addresses. [Patrik]
 2012-01-02 11:41:21 +00:00
patrik
f5b14a2099 o [NSE] Added the script riak-http-info that lists version and statistics 
information from the Basho Riak distributed database. [Patrik]
 2012-01-02 11:37:38 +00:00
patrik
54983f8127 o [NSE] Added the script socks-auth-info that lists supported SOCKS 5 
authentication mechanisms. [Patrik]
 2012-01-02 11:34:27 +00:00
patrik
b4fcd5e5fa o [NSE] Added the script memcached-info that lists version and statistics 
information from the distributed memory object caching service memcached
  [Patrik]
 2012-01-02 11:30:18 +00:00
patrik
4118ee064b o [NSE] Added the script redis-info that lists version and statistic information 
gathered from the Redis network key-value store. [Patrik]

o [NSE] Added the script redis-brute that performs brute force password
  guessing against the Redis network key-value store. [Patrik]
 2012-01-02 11:27:06 +00:00
patrik
3491fdc1fa o [NSE] Added the script http-proxy-brute that performs brute force password 
guessing against HTTP proxy servers. [Patrik]
 2012-01-02 11:21:57 +00:00
patrik
0ee55f4651 o [NSE] Added the script socks-brute that performs brute force password 
guessing against SOCKS 5 servers. [Patrik]
 2012-01-02 11:15:34 +00:00
patrik
cac7c27dcb o [NSE] Added the script vmauthd-brute that performs brute force password 
guessing against the VMware authentication daemon. [Patrik]
 2012-01-02 11:12:46 +00:00
fyodor
0b44371ec5 fix typo 2012-01-02 02:52:22 +00:00
fyodor
32850d5f66 switched capitalization from BitCoin to Bitcoin as the latter seems to be more standard 2012-01-02 02:51:48 +00:00
fyodor
a338f78baa typo fix 2012-01-02 02:49:42 +00:00
fyodor
78033599ed Update the script descriptions/nsedoc a bit 2012-01-01 22:21:08 +00:00
david
acaade017b Sort duplicates output in ssh-hostkey.nse. 2011-12-30 04:05:36 +00:00
patrik
4e7db06f0c o [NSE] Added script broadcast-wpad-discover which detects proxy servers on the 
network by using the Web Proxy Auto Discover Protocol (WPAD). [Patrik]
 2011-12-29 14:43:37 +00:00
patrik
96024e8668 Added missing license text to telnet-encryption 2011-12-29 11:49:29 +00:00
fyodor
d13ae6cf25 Minor updates to description text 2011-12-29 10:54:55 +00:00
fyodor
85345bb162 Update the documentation to note that krb5 available for many Linux distributions is also vulnerable 2011-12-29 10:54:47 +00:00
patrik
01da8be17a Updated the broadcast-dhcp-discover script to work with the changes in the 
dhcp library [Patrik]
 2011-12-29 08:59:19 +00:00
patrik
02c59d1292 o [NSE] Added local port to BPF filter in snmp-brute to fix bug that would 
prevent multiple scripts from receiving the correct responses. The bug was
  discovered by Brendan Bird. [Patrik]
 2011-12-29 08:49:38 +00:00
patrik
1b5518cc63 Updated the script categories for dhcp-discover [Patrik] 2011-12-29 08:19:58 +00:00
patrik
9ff471d906 o [NSE] Removed DoS code from dhcp-discover and placed it into the discover and 
safe categories. Added support for adding options to DHCP requests in the
  dhcp library. [Patrik]
 2011-12-29 08:07:26 +00:00
patrik
a4e6a82b00 Cleaned up code and removed interface from functions dhcp_send and 
make_request as it was not used. Added WPAD action. [Patrik]
 2011-12-28 21:17:31 +00:00
patrik
9b2fcfe0b1 Fixed undeclared local variable in broadcast-dhcp-discover [Patrik] 2011-12-28 17:02:10 +00:00
fyodor
6827d787b4 In my tests, doubling the timeout only increased the number of properly detected telnet servers from 669 to 679. That is only an increase of ~1.5%, so I'm dialing it back down to 7.5s 2011-12-28 01:52:54 +00:00
fyodor
ea33a885a3 increase the timeout from 5s to 10s because many servers seem to respond slowly 2011-12-28 01:18:25 +00:00
fyodor
93c0ae4f44 Add new telnet-encryption script 2011-12-28 00:57:48 +00:00
fyodor
12019c6773 combine two @output sections into one 2011-12-27 21:05:57 +00:00
patrik
fa5f2ebb3c Tried to work-around a nsedoc bug with multiple outputs [Patrik] 2011-12-27 21:03:11 +00:00
patrik
5c816cb2a2 Added a second @output example containing a list of supported services 
[Patrik]
 2011-12-27 20:57:44 +00:00
patrik
4ad62b1cdf Fixed a bug that would prevent listing services unless an IP was specified as 
argument [Patrik]
 2011-12-27 20:55:19 +00:00
patrik
07e0426629 o [NSE] Changed the dhcp-discover script to use the DHCPINFORM request to query 
dhcp servers instead of DHCPDISCOVER. Cleaned up some code in the DHCP
  library. [Patrik]
 2011-12-27 18:48:34 +00:00
patrik
b085ba0283 Fixed a bug that would prevent the script from running through the hostrule 
as it would fail to validate the IP. [Patrik]
 2011-12-26 19:52:44 +00:00
patrik
ecd9a38210 Corrected sample output in dns-blacklist [Patrik] 2011-12-26 14:31:36 +00:00
patrik
bb7d5a526f o [NSE] Added script dns-blacklist that performs DNSBL checks of given or 
scanned IP addresses against multiple DNSBL services. [Patrik]
 2011-12-26 14:22:25 +00:00
patrik
ff9d0eabab o [NSE] Applied patch to snmp-brute that solves problems with handling errors 
that occur when parsing files with community lists. [Duarte Silva]
 2011-12-25 22:51:56 +00:00
patrik
67338201c1 o [NSE] Fixed a bug with an undeclared variable in snmp-ios-config.nse [Patrik] 2011-12-25 19:38:08 +00:00
david
8080f1dd41 Exclude ::1 from being an IPv4-compatible address (0.0.0.1) in address-info. 
It said:
|_address-info: IPv4-compatible; IPv4 address: 0.0.0.1
which is not right.
 2011-12-23 21:14:53 +00:00
patrik
5d0db9c7fc o [NSE] Applied patch to add additional version information to Mongodb scripts 
[Martin Swende]
 2011-12-20 18:54:03 +00:00
patrik
d3797510ee o [NSE] Added path argument to the http-auth script and changed so that script 
output was returned using stdnse.format_output [Duarte Silva, Patrik]
 2011-12-19 18:39:18 +00:00