PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-27 18:09:01 +00:00
Code Issues Projects Releases Wiki Activity
5,734 Commits 2 Branches 0 Tags
a878e43a3006fb65fb8a4f148ef8ed7cbde6ec77
Commit Graph

5734 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
f5fe8fb6e9 Use the proper length in get_srcaddr, not sizeof(sockaddr_in6). 
This was a bug in r24413. The size needs to vary with the address family
on some platforms including OS X. This was noticed by Chris Clements.
 2011-06-28 00:35:01 +00:00
djalal
b9237eac33 If sending the big body message fails, then just assume that this is 
a network error, we are sending more than 50MB, but check and count
the result of the final "<CRLF>.<CRLF>" message.
 2011-06-27 22:24:13 +00:00
patrik
55da9dc683 added the creds-summary.nse script [Patrik] 2011-06-27 21:21:15 +00:00
patrik
baa404b050 improved documentation and added sample code 
add getCredentials function
[Patrik]
 2011-06-27 21:00:11 +00:00
paulino
bb61584d82 Updated CHANGELOG - Added http-majordomo2-dir-traversal and new version of http-trace 2011-06-27 20:46:36 +00:00
paulino
f2bbb0f9e8 Adds to "vuln" category 2011-06-27 20:40:19 +00:00
paulino
5effe4c770 New version of http-trace. It addresses issues discussed: 
* http://seclists.org/nmap-dev/2010/q2/295
    * http://seclists.org/nmap-dev/2007/q3/327
    * http://seclists.org/nmap-dev/2007/q4/610

    Features:
* This version will always show you if TRACE is enabled (Current http-trace only shows headers that are different from the original response causing confusion in cases where TRACE is not reported as enabled because the host did not return any additional headers)
    * Supports redirects.
 2011-06-27 20:38:59 +00:00
paulino
4f60960b29 Adds http-majordomo2-dir-traversal to the repository. This script exploits a directory traversal vulnerability existing in Majordomo2 to retrieve remote files. 2011-06-27 20:22:25 +00:00
fyodor
67ea9053b3 Note a finished task 2011-06-27 20:08:07 +00:00
david
fd259a2422 Use getsockname to get source addresses. 
This was previously gotten by setting the source address to be the same
of the interface address of the matching route. However this can be
wrong; when making a normal socket connection the source address is
chosen differently. We create a SOCK_DGRAM socket, connect it, and read
the local address with getsockname.
 2011-06-27 18:05:39 +00:00
paulino
4445ed7ed1 UPDATED TODO 2011-06-27 04:39:54 +00:00
paulino
29ff392125 Added new entries under 'general' and 'cms' . Extracted from exploit-db archives so the new software added is known to be vulnerable. 2011-06-27 03:40:22 +00:00
paulino
c8bb5ac526 Added more fingerprints under 'general' 2011-06-26 21:43:25 +00:00
djalal
a1eb090664 Changed the script argument 'smtp-vuln-cve2010-4344.command' to 
'smtp-vuln-cve2010-4344.cmd' for consistency reasons.
 2011-06-26 19:01:09 +00:00
paulino
0c3728edd2 Added more fingerprints under 'cms' and 'general' 2011-06-25 23:24:14 +00:00
shinnok
8def3128b1 Attach revision numbers to completed tasks in my TODO. 2011-06-25 10:59:30 +00:00
shinnok
70bcce0855 Update CHANGELOG with two recent Zenmap fixes. 2011-06-25 10:49:53 +00:00
shinnok
03f052d8a8 Task correction in my TODO. 2011-06-25 10:44:49 +00:00
shinnok
9b20fd3555 Update my TODO file. 2011-06-25 10:34:57 +00:00
david
53f46fd746 Note that bin_ip and bin_ip_src work for IPv6 in scripting.xml. 2011-06-25 02:28:01 +00:00
david
b4cdf40769 Make host.bin_ip and host.bin_ip_src work with IPv6 addresses. 2011-06-25 00:51:52 +00:00
djalal
a33b7331fa Update my todo file. 2011-06-24 22:47:33 +00:00
david
90e4b58806 Add link to Colin's updater report. 2011-06-24 20:25:44 +00:00
djalal
0b7e0b7753 Added the smtp-vuln-cve2010-4344 CHANGELOG entry. 2011-06-24 15:41:59 +00:00
djalal
49774ecf10 o [NSE] Added smtp-vuln-cve2010-4344 script that will check and exploit 
two vulnerabilities in the Exim SMTP Server:
  o CVE-2010-4344: A heap overflow vulnerability.
  o CVE-2010-4345: A privileges escalation vulnerability.
 2011-06-24 15:37:53 +00:00
gorjan
fc2f88e2ed Added the nmap.get_ttl() which returns the TTL (time to live) specified with the --ttl option; 
Added the nmap.get_payload_length() function which returns the value specified with the --data-length option
 2011-06-24 01:03:23 +00:00
shinnok
3240e10bb0 Fix MSVC compiler noreturn related warnings and add extra 
safety asserts to the functions that do not return on all
control paths.
 2011-06-23 23:59:52 +00:00
shinnok
e06012af5a Type conversion safety fixes that remove compiler warnings too. 2011-06-23 20:48:06 +00:00
shinnok
2c164c0a20 Changed "Slow comprehensive scan" profile script selection to include 
all scripts in default category as well as all scripts that are both
in discovery and safe categories.
 2011-06-23 20:36:51 +00:00
shinnok
923e026a9d Update my TODO file after meeting with David. 2011-06-23 19:46:06 +00:00
patrik
af03ca03a2 Removed prerule from script [Patrik] 2011-06-23 11:28:14 +00:00
shinnok
68bdff3e54 Minor cosmetic fix. 2011-06-23 11:14:42 +00:00
fyodor
b189bc31ec slightly enhance a couple sip softmatches by allowing parenthesis in the Server header value. Patch sent by Rainer Giedat 2011-06-23 06:19:48 +00:00
djalal
7c2b6d11cb o [NSE] Added the SMTP RCPT and DATA commands with their codes. 2011-06-22 22:04:14 +00:00
shinnok
9562171e86 Remove unreferenced local variable. 2011-06-22 18:35:56 +00:00
shinnok
ab71991279 Do not base nsock's project new configuration for Ncat Static on 
the existing ReleaseNoPcap since it seems to not do what it's meant
to do.
Add a new one called "Static" based on Release with the proper changes
just like for nbase and ncat.
 2011-06-22 17:26:58 +00:00
shinnok
7f406aa9d4 Add a build configuration to the MS Visual Studio Nmap solution 
that builds only Ncat Portable (statically linked).
 2011-06-22 15:48:52 +00:00
shinnok
a0c4a40bd1 Fix task description in my TODO. 2011-06-22 10:57:15 +00:00
shinnok
f0403ec17e Added a couple of finished tasks. 2011-06-22 10:55:51 +00:00
shinnok
84387cd8f0 Update my TODO file. 2011-06-22 09:42:09 +00:00
david
24fcb630e0 Move some script ideas to SecWiki. 2011-06-22 07:36:47 +00:00
paulino
f33e078d39 Adds entry about new fingerprints in http-fingerprints 2011-06-22 03:44:52 +00:00
paulino
baba2fe7c5 Adds fingerprint data for the following routers: 
-Huawei HG530
-Thomson 585v8
-2WIRE 1701HG
 2011-06-22 03:39:17 +00:00
patrik
67bac23e97 Added MS error code to error messages returned from the script [Patrik] 2011-06-21 22:52:40 +00:00
djalal
c57de44417 A small fix to the NSEDoc. 2011-06-21 20:24:57 +00:00
david
62c177b84b List formatting for get_interface_info NSEDoc. 2011-06-21 18:21:03 +00:00
david
873f2dbb64 Fix broken comment in nmap.luadoc. 
Preventing get_interface from appearing in documentation.
 2011-06-21 18:16:39 +00:00
colin
dc4e67dffc Fixed broken --exclude in nmap. 
--exclude 1.2.3.4,5.6.7.8 now works.
 2011-06-21 18:05:25 +00:00
david
5f99b2ad9e Remove addrset_init from load_exclude_{file,string}. 
That's the responsibility of calling code; also, these should
accumulate.
 2011-06-21 16:16:19 +00:00
gorjan
3b273eaf81 Update the changelog for the ip-geolocation-* scripts 2011-06-21 12:17:30 +00:00