PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-21 06:59:01 +00:00
Code Issues Projects Releases Wiki Activity
12,968 Commits 2 Branches 0 Tags
adc7f02503cd0224fb65a28bcc89ffd6c8de48d3
Commit Graph

12968 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dmiller
0acdeb5487 Fix output ordering for ssl-cert, including support for EC certs. 2020-01-16 19:12:59 +00:00
dmiller
17416feb5e New outlib library for output-related functions 2020-01-16 19:12:58 +00:00
dmiller
8f3364a441 Remove more vestiges of Windows raw socket quirks 2020-01-16 19:12:57 +00:00
dmiller
dd0ace6d4a Split string pool functions into separate file from osscan.cc 2020-01-16 19:12:57 +00:00
dmiller
69e310c7b8 Add LGTM.com badges to README.md 2020-01-15 05:18:27 +00:00
dmiller
9abdf68708 Remove declarations of undefined functions. 2020-01-15 05:18:26 +00:00
nnposter
c4ecf225dd Add script argument to force specific MAC address. See #1838 2020-01-15 01:20:36 +00:00
dmiller
d0dc55fc90 Inline broadcast_socket(), only used in one place. 
Also remove the check for the special socket value 501, which is a
vestige of a workaround leftover from when raw sockets mostly worked on
Windows. That code was removed in r2812 back in 2005.
 2020-01-14 05:38:29 +00:00
dmiller
b03c96c326 Change a FIXME to a TODO with documentation of related issues #180 and #1407 2020-01-14 03:39:25 +00:00
dmiller
7faec7f157 Inline getpcapinterfaces, used in only 1 location 2020-01-14 03:39:25 +00:00
dmiller
86f80305a1 Consolidate duplicate functions read_na_pcap and read_ns_reply_pcap. 2020-01-13 23:33:30 +00:00
dmiller
4ffeb09ad3 Use libnetutil's read_reply_pcap to deduplicate pcap reading logic. 2020-01-13 21:48:04 +00:00
dmiller
00cb4d22d9 Switch from pcap_next to pcap_next_ex to check for errors 
This change supports #1394. When the network goes down, Nmap ought to
stop instead of slowing to an infinite crawl.
 2020-01-13 17:14:45 +00:00
dmiller
dcf4aa9f78 Make string argument to nmap_hexdump a const to match nbase. 2020-01-13 17:14:44 +00:00
dmiller
30110f911e Add needed header checks, clean up unused ones. See #1887 2020-01-12 06:09:37 +00:00
dmiller
ae10c8a19d Abstract some things to move #includes out of headers. 2020-01-11 16:03:29 +00:00
dmiller
a2c75e0ef4 Abstract nsock logging function to avoid nsock.h inclusion in output.h 2020-01-11 16:03:28 +00:00
dmiller
6ed754b438 Add "hosthint" element to XML. 
This feature allows programs consuming XML output to know when a target
has been found to be "up" before all scan phases are completed. This is
helpful for allocating storage, communicating scan progress, or
estimating total scan duration. Closes #1858.
 2020-01-11 07:05:01 +00:00
dmiller
c978ba14ca Remove some unnecessary unsigned qualifiers (newstate is defined as int in most places) 2020-01-11 07:05:00 +00:00
nnposter
96e17c4f63 Prevent potential nil dereference. Fixes #1885 2020-01-11 03:15:34 +00:00
dmiller
81fc9943d3 New payloads for GTP. Closes #917 2020-01-10 05:32:09 +00:00
dmiller
f974b625d2 New, broader portrule for SSH scripts. Closes #1825 2020-01-10 05:32:08 +00:00
nnposter
922199296c Rectifies bug where RPC dump was always using program version 4 2020-01-09 22:51:02 +00:00
nnposter
c4f7153c22 RPC protocol parsing workaround for NetApp 5.0 
Dump response lists protocols with trailing null byte
 2020-01-09 22:36:35 +00:00
nnposter
b1d39d00d4 Skip TLS/SSL retries when SSL_OP_NO_SSLv2 is a no-op 
OpenSSL option SSL_OP_NO_SSLv2 was retired with version 1.1.0
When the initial SSL handshake fails, nmap performs several additional retries
with option SSL_OP_NO_SSLv2 enabled. Since the option is ignored since OpenSSL
version 1.1.0 then the retries are largely pointless and sometimes even DoS-ing
targets.
Closes #1873, fixes #1488, closes #1489
 2020-01-09 21:16:08 +00:00
dmiller
1e743aeaef Process more service fingerprints: TLSv1.3, SSH, etc. 2020-01-09 21:14:27 +00:00
dmiller
d63d6a8c97 Update TLS-ALPN ids from IANA. Closes #1849 2020-01-09 17:59:17 +00:00
dmiller
52e3939e85 New UDP payload for Beckhoff TwinCAT ADS, prevents DoS 
Closes #1862. Note that the service name will be added to our
comprehensive services database and will appear when nmap-services is
next generated from that source.
 2020-01-09 17:59:16 +00:00
dmiller
be82864637 Fix a typo: OS class should not be the exact version 2020-01-09 15:31:19 +00:00
dmiller
ab1deb5783 Permit ssl-cert script to run without OpenSSL (no parsing) 2020-01-08 17:39:52 +00:00
dmiller
cdf5c21951 Ensure consistent ordering of XML output in ssl-cert.nse 2020-01-08 17:39:51 +00:00
dmiller
a87b0ca133 Add version info for MS SQL 2017 and 2019 2020-01-06 18:39:54 +00:00
dmiller
81f0818d9e http-enum: Fingerprint for ArangoDB 2020-01-06 18:24:34 +00:00
dmiller
81ceee49c5 sslcert: Try tls.lua if Nsock's SSL routines fail to connect. 2020-01-06 18:24:33 +00:00
dmiller
b9d14a40ab Be more strict about what we parse as TLS record data 2020-01-06 18:24:32 +00:00
dmiller
d3b888bf4f Update postgresql service match lines 2020-01-04 23:18:00 +00:00
dmiller
a16c392f2d Process some service fingerprint submissions. 
Related: #1639
 2020-01-04 22:52:20 +00:00
dmiller
f8846c2c39 Add a tostring metamethod for bignum objects. See #1876 2020-01-03 16:54:59 +00:00
nnposter
0f3a8a7e0d * Cryptographic numbers should be output as such, 
not as userdata pointers to opaque data structures. Fixes #1876
 2020-01-02 23:31:16 +00:00
dmiller
a66c287b06 Loop over client FDs, avoiding unused ones 
As the FIXME comment had said, looping over every integer up to maxfd is
inefficient, especially if FDs are not continuous. This change has the
added benefit of skipping a call to get_fdinfo(), which also loops over
all the client FDs looking for a particular value. Unlikely to be a huge
performance gain, but the code is cleaner. #1834 - FIXME comment.
 2020-01-02 16:04:30 +00:00
dmiller
2f91473a06 Remove FIXME comment: newstrlen *is* checked. 
I added this a long time ago, and decided to check it. In fact,
newstrlen is used to calculate newstrend, and each section of the
template is checked to ensure it does not go past newstrend, so the
intent is met and the length is not exceeded. I still think it could be
written more clearly, but it's good for now. #1834
 2020-01-02 16:04:29 +00:00
dmiller
ea8917ca1d Remove a script that exists elsewhere in updated format. 2020-01-01 23:04:53 +00:00
dmiller
ef52628bbc Remove unused variable. #1834 2020-01-01 23:04:52 +00:00
dmiller
e01ddaf1e8 Avoid retrying iod_read if we already got ENOTSOCK. 2019-12-30 16:14:10 +00:00
dmiller
c7932d2fc6 Don't break out of loop on just any error, since loop condition expects to test for EINTR. #1834 2019-12-30 16:14:09 +00:00
dmiller
f3f3a8367e Don't check for char greater than CHAR_MAX. #1834 2019-12-30 16:14:09 +00:00
dmiller
c89035b6dd Avoid 'import *' where __all__ not defined. #1834 2019-12-30 15:54:34 +00:00
dmiller
2abcac9925 Don't bother maintaining compat with Python 2.5. #1834 2019-12-30 06:57:04 +00:00
dmiller
d75e255113 Avoid handling BaseException, so SysExit and KeyboardInterrupt are propagated. #1834 2019-12-30 06:46:36 +00:00
dmiller
74708c3e3a Hash Port objects by port spec, fixing breakage 2019-12-30 06:46:35 +00:00