2009 Commits

Author	SHA1	Message	Date
vinamra	aedd40ced5	Adds http-vuln-cve2017-1001000. Closes #775	2017-06-01 19:08:23 +00:00
paulino	c5d8dc32d5	Adds smb-vuln-ms17-010 to detect a critical remote code execution vulnerability affecting SMBv1 servers in Microsoft Windows systems.	2017-05-27 07:57:34 +00:00
paulino	b0228a212b	Updates smb.lua and msrpc.lua to support fully qualified path names as share names and updates match for OID. Modern Windows versions require FQPN and older version work the same. The level of information requested with the call NetShareGetInfo was reduced to support newer versions of Windows. This closes #266, closes #704, closes #238, and closes #883.	2017-05-27 07:28:44 +00:00
paulino	bdb0d89648	Adds version detection signatures for Apache HBase and Hadoop MapReduce	2017-05-09 19:52:28 +00:00
paulino	7bd54ab098	Adds http-vuln-cve2017-5689 to detect vulnerable Intel AMT enabled systems (INTEL-SA-00075). Closes #876	2017-05-07 01:33:57 +00:00
paulino	6274868dee	Renames memcached probe and adds a new match for Apache ZooKeeper	2017-05-05 00:03:31 +00:00
dmiller	95850d5ac3	New script vmware-version	2017-05-03 18:22:02 +00:00
dmiller	8649f07a7c	noshutdown handling was missing for connect mode	2017-05-03 03:56:41 +00:00
nnposter	d478199ada	Allows cookies to have unrecognized attributes (see RFC 6265, Section 5.2). Fixes #866	2017-04-29 14:36:46 +00:00
nnposter	0b36ba5cea	Allows unquoted cookie values to contain whitespace, as defined in RFC 6265. Fixes #844	2017-04-29 14:05:57 +00:00
dmiller	b3849c478c	New script arg vulns.short	2017-04-24 13:53:47 +00:00
dmiller	13d06eb738	Use creds username as SNMP community if no ':' indicates password. Fixes #862	2017-04-22 19:31:24 +00:00
nnposter	6d3eac9d3b	Puts together recent CHANGELOG entries related to http.lua	2017-04-19 19:18:21 +00:00
nnposter	920fc785b0	Adds a CHANGELOG entry for commits r36722-r35725	2017-04-19 19:03:40 +00:00
nnposter	e80976a13a	Provides a common function, url.get_default_port(), for obtaining ... the default port number for a given scheme. Fixes #781	2017-04-19 18:00:36 +00:00
nnposter	af6bbc35bb	Changes the port type returned from url.parse() to an actual integer, as ... opposed to a string that represents an integer. Fixes #833, fixes #817.	2017-04-19 17:02:32 +00:00
dmiller	214d527632	New script smb-double-pulsar-backdoor. Closes #854	2017-04-18 18:09:10 +00:00
dmiller	e2546efe02	Changelog entry for previous commit	2017-04-15 03:30:28 +00:00
nnposter	3952e2fd62	Fixes an issue that caused long integers to be expressed in scientific notation. Fixes #807	2017-04-09 13:33:31 +00:00
dmiller	cb50c3c74b	Make ncat -i not timeout while waiting for initial connection	2017-04-04 16:26:08 +00:00
nnposter	917c988baa	Adds a CHANGELOG entry for the previous commit.	2017-04-01 16:05:12 +00:00
dmiller	3dec043ead	Fix NSE hangs when service sends non-matching data to receive_buf	2017-03-29 20:41:59 +00:00
nnposter	af5f88dd00	Implements a new member, fragment, of the HTTP response body. It contains ... a partially received body (if any) when the overall request fails to complete.	2017-03-29 15:58:39 +00:00
nnposter	4bffd26c0b	Adds support for user-selectable HTTP method. Closes #759	2017-03-22 00:28:01 +00:00
nnposter	2e3b49728f	Normalizes tag ordering; fixes word wrapping	2017-03-21 13:56:20 +00:00
nnposter	b34eaabb3b	Allows the HTTP Set-Cookie parser to handle a trailing semicolon. Fixes #731	2017-03-21 13:46:30 +00:00
dmiller	a668a21b7a	Make Nsock handle all connect errors without fatal	2017-03-20 17:12:40 +00:00
dmiller	ac8b866d73	Fix Ncat SSL server. Closes #773 and potentially #197	2017-03-19 02:26:12 +00:00
dmiller	4629f6d836	Ncat supports DNS failover, including fallback to IPv4 from IPv6	2017-03-16 21:54:26 +00:00
dmiller	772bd8d824	Correct typos: receive, successfully, length	2017-03-15 02:23:09 +00:00
dmiller	84a824c2cf	New script broadcast-ospf2-discover. Closes #743	2017-03-14 00:15:22 +00:00
dmiller	3140dbe115	New script for Apache Struts RCE	2017-03-10 17:53:45 +00:00
dmiller	d68e4d7cab	Fix spelling of Vasiliy's name. Sorry!	2017-03-07 21:25:37 +00:00
dmiller	611a27fc64	New commands to extract info for redis-info by Vasily Kulikov	2017-03-07 21:24:32 +00:00
nnposter	d7c8bf912d	Adjusts data extraction patterns to match the updated Robtex layout. ... Original patch submitted by aDoN. Fixes #679, closes #681.	2017-03-05 16:52:25 +00:00
nnposter	99fa80851c	Preserves targetname for connections requested with option any_af. ... Relocates option any_af to comm.lua to make it more broadly available.	2017-03-05 15:41:46 +00:00
dmiller	0b93e8da2e	New script impress-remote-discover. Closes #713	2017-03-04 19:54:56 +00:00
nnposter	fe622e182d	Adds 8 new http-enum fingerprints for Hadoop infrastructure components. ... Originally submitted as NSE scripts by Thomas Debize. (Closes #620) Refactored as entries for http-fingerprints by Varunram Ganesh. (Closes #715)	2017-03-03 23:41:12 +00:00
dmiller	4b686da521	Credit contributor with name used previously	2017-03-02 22:32:40 +00:00
nnposter	2ee682ef1d	Fixes a CHANGELOG typo	2017-03-02 14:08:49 +00:00
nnposter	4bd51e9f3b	Adds a fingerprint for APC Management Card. Original version submitted by xelphene. Closes #629	2017-03-02 14:06:01 +00:00
dmiller	b30c304a2d	Fix string escape. Closes #716	2017-03-02 05:02:07 +00:00
dmiller	edcc648a39	New script cics-user-brute. Closes #671	2017-03-01 20:41:19 +00:00
dmiller	bed397a950	New script cics-info. See #671	2017-03-01 20:41:18 +00:00
dmiller	dd4f367036	New script http-cookie-flags. Closes #669	2017-03-01 04:12:39 +00:00
dmiller	f0e26cb709	More output from ike-version	2017-02-26 03:49:09 +00:00
nnposter	32d85005d9	Enables support for TLS SNI on the Windows platform. Fixes #700	2017-02-25 00:47:30 +00:00
dmiller	27785ce8e5	New script tls-ticketbleed. Closes #686	2017-02-09 21:30:14 +00:00
dmiller	eb0bb2506f	Let --ssl-ciphers be used with ncat client mode	2017-01-23 14:18:43 +00:00
dmiller	c5fd7a015d	New probe for JMON and match line for RSE. See #649	2017-01-20 17:10:41 +00:00