PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-20 22:49:01 +00:00
Code Issues Projects Releases Wiki Activity
12,968 Commits 2 Branches 0 Tags
adc7f02503cd0224fb65a28bcc89ffd6c8de48d3
Commit Graph

2968 Commits

Author SHA1 Message Date
gyani
91d47ea237 Added @xmloutput. 2015-07-04 07:26:12 +00:00
gyani
79713b939d Added checks for client access policy and the script now uses SLAXML. 2015-07-04 07:26:04 +00:00
david
2e43cb2326 Let imap-capabilities.nse run for imaps (port 993) as well. 
$ ./nmap -Pn --script imap-capabilities imap.gmail.com -p imaps
PORT    STATE SERVICE
993/tcp open  imaps
|_imap-capabilities: all she XYZZY QUOTA X-GM-EXT-1 ID XLIST CHILDREN UNSELECT m1mb423345642pdn wrote SASL-IR IMAP4rev1 Thats NAMESPACE OK AUTH=PLAIN-CLIENTTOKEN AUTH=XOAUTH2 AUTH=PLAIN IDLE AUTH=XOAUTHA0001
 2015-06-28 15:50:54 +00:00
dmiller
2e74e48a2b Work around long handshake intolerance in ssl-enum-ciphers 
https://github.com/ssllabs/research/wiki/Long-Handshake-Intolerance
 2015-06-23 21:20:23 +00:00
gyani
0609a9c20f Fixed @xmloutput. 2015-06-23 21:15:27 +00:00
gyani
e738915a12 Added a few scripts i comitted to CHANGELOG. Updated http-put to add 
xmloutput and relax resposne status checks. Closes #150.
 2015-06-23 21:15:19 +00:00
gyani
39f75dddeb The script has the http-methods update as discussed in the Script 
Ideas page. Basically this tests all the options not listed under
the public or allow headers of the OPTIONS response.
 2015-06-20 08:13:09 +00:00
dmiller
a881712e6b Add valid TLS1.2 probe and move checks to rule in ssl-enum-ciphers (#168) 2015-06-19 12:02:31 +00:00
dmiller
06e6062dba Prevent ssl-enum-ciphers from running on detected-non-ssl services 2015-06-18 23:32:35 +00:00
dmiller
d93945ea5c Let ssl-enum-ciphers run on any port when selected by name (#168) 2015-06-18 21:27:39 +00:00
dmiller
ef4ebc98a3 Update smb-os-discovery to support CPE for Windows 8, 8.1, and 10 2015-06-15 12:17:21 +00:00
gyani
be7e57f80d Removed WhiteSpace 2015-06-14 05:55:58 +00:00
gyani
92af09d39c Added slaxml, hnap-info and modified script.db to show the same 2015-06-14 05:55:46 +00:00
gio
f893f2032b Fixes #122 SNMP library and scripts use creds library to handle community 2015-06-13 17:58:55 +00:00
gio
308c213099 NSE snmp manually rebase #122 provided patch 2015-06-13 17:58:49 +00:00
jiayi
b1bfaed3c2 Add tor-consensus-check script 2015-06-06 01:24:05 +00:00
jiayi
6bc2867b5a add tor-consensus-check 2015-06-05 15:50:51 +00:00
dmiller
4ead75cee7 Remove ahbl.org blacklists after site shutdown 2015-06-03 03:28:36 +00:00
gyani
0b0aa26b44 Fixed a few doc issues 2015-06-02 17:41:05 +00:00
gyani
2d2ed65244 Added http-webdav-scan 2015-06-02 17:15:28 +00:00
dmiller
324dc67541 Reduce vertical space from http-server-header 2015-06-01 22:37:53 +00:00
dmiller
3aa9018d16 Add omron-info NSE script from Stephen Hilt 2015-06-01 04:12:02 +00:00
dmiller
83f95ce401 Actually add http-vuln-misfortune-cookie script file 2015-05-31 18:34:22 +00:00
dmiller
976d5d2a40 Add http-vuln-misfortune-cookie script. Closes #77 2015-05-31 18:33:44 +00:00
dmiller
00064a1809 Whitespace/reindent cleanup in NSE. https://secwiki.org/w/Nmap/Code_Standards 2015-05-31 17:37:51 +00:00
dmiller
3d4fb07728 Add a couple unrequired libraries (NSE) 2015-05-31 17:37:45 +00:00
gio
a1eeaa8887 Fixes #130 snmp-brute.nse is IPversion agnostic now 2015-05-31 16:39:55 +00:00
dmiller
2f799b4be7 Script doc updates: wrong CVE, dead link 2015-05-29 03:53:23 +00:00
dmiller
3a2c434998 Check if Nmap's user agent is redirected in http-useragent-tester 2015-05-28 23:08:31 +00:00
dmiller
79f25ae304 Revert lpeg conversion of telnet-brute in favor of lua patterns 
Long and sordid history here (http://seclists.org/nmap-dev/2014/q3/62
and http://seclists.org/nmap-dev/2015/q1/61) and in the Github issue.
Lua patterns approach was chosen due to simplicity; we have several good
examples of LPEG patterns now, so it was not worth sacrificing accuracy
or clarity to use them here.

Fixes #35
 2015-05-28 13:19:03 +00:00
paulino
97bbb0f4fa Adds http-vuln-cve2015-1635 to detect Microsoft Windows systems vulnerable to MS15-034 2015-05-22 04:23:50 +00:00
gyani
48f9ac26b5 fixed doccumentation indentation 2015-05-21 15:54:23 +00:00
gyani
e60b65b016 fixed doccumentation 2015-05-21 15:42:58 +00:00
gyani
6a4c2ab7e5 A script to check RCE in Elastic Search 2015-05-21 10:02:56 +00:00
dmiller
9c04123ad5 Remove some http headers that http.lua sets already. 2015-05-19 19:11:18 +00:00
dmiller
cfac127194 Mark a service as tftp if tftp-enum says it is 2015-05-15 19:35:15 +00:00
dmiller
daf8c58a79 Fix snmp-brute output 2015-05-02 13:25:47 +00:00
henri
0877bf8e7f afp-ls: prevent script from stopping when an error occurs 
Patch by Pierre LALET <pierre.lalet@cea.fr>
 2015-04-30 17:58:49 +00:00
henri
9dafb0fa05 smb-ls: do not report connection errors by default 
Patch by Pierre LALET <pierre.lalet@cea.fr>
 2015-04-30 17:58:34 +00:00
henri
4d0e7c9000 Script smb-ls can now use results from smb-enum-shares 
- smb-ls parameter `path` is now optional (defaults to '\').

  - smb-ls parameter `maxdepth` now defaults to 1 (no recursion)
    instead of 0 (infinite recursion).

  - smb-ls has a new `shares` parameter to specify a comma-separated
    list of shares to browse.

  - smb-enum-shares adds found shares to an array in the host
    registry, and smb-ls uses this array when no `share` or `shares`
    parameter have been specified.

Patch by Pierre LALET <pierre.lalet@cea.fr>
 2015-04-30 17:58:19 +00:00
dmiller
2b2411e2ec Allow http-server-header to softmatch http even without a server header 2015-04-28 13:18:19 +00:00
paulino
4a95d8f9b2 Removes duplicate credential structure in favor of NSE library creds. Patch submitted by nnposter fixes #58 2015-04-16 18:51:45 +00:00
dmiller
54543b303c Clean up some documentation regarding http redirects 2015-04-10 12:56:05 +00:00
dmiller
fcd93e141f Use http.lua's default redirect follower for http-generator.nse 2015-04-10 03:42:46 +00:00
paulino
d76dd6b5b8 Fixes typo in author's name 2015-04-08 20:04:58 +00:00
paulino
5d35530075 Adds http-crossdomainxml 2015-04-08 15:58:20 +00:00
dmiller
04fee3d14c Move TLSv1.2 signature_algorithms extension defaults into tls.lua 2015-03-25 02:29:25 +00:00
dmiller
ed86473b0c Send supported signature algorithms for TLSv1.2 2015-03-24 23:22:19 +00:00
dmiller
564f654747 Fix leftovers from the whois => whois-ip name change 2015-03-07 04:24:31 +00:00
dmiller
55c3348fae Use tls.client_hello defaults for some scripts 2015-03-06 20:00:00 +00:00