1652 Commits

Author	SHA1	Message	Date
dmiller	8d04c3b850	Avoid a crash if ldap decode fails in sslcert. See #888	2017-06-01 17:45:07 +00:00
paulino	ba992765b3	Closes smb connection properly.	2017-05-29 19:48:35 +00:00
paulino	850ae6ef52	Instead of requesting less information, let's try access level 2 first then fallback to 1 if necessary.	2017-05-29 19:47:26 +00:00
paulino	b0228a212b	Updates smb.lua and msrpc.lua to support fully qualified path names as share names and updates match for OID. Modern Windows versions require FQPN and older version work the same. The level of information requested with the call NetShareGetInfo was reduced to support newer versions of Windows. This closes #266, closes #704, closes #238, and closes #883.	2017-05-27 07:28:44 +00:00
paulino	7f2b6d2eb4	Adds signature for various xmeye/cheap chinese made ip cams. Closes #873	2017-05-11 06:32:39 +00:00
dmiller	49ba383eee	Avoid crash if AuthMethod key is not set in iscsi handshake. Fixes #631	2017-04-30 13:18:06 +00:00
nnposter	d478199ada	Allows cookies to have unrecognized attributes (see RFC 6265, Section 5.2). Fixes #866	2017-04-29 14:36:46 +00:00
nnposter	0b36ba5cea	Allows unquoted cookie values to contain whitespace, as defined in RFC 6265. Fixes #844	2017-04-29 14:05:57 +00:00
dmiller	5953b817ac	A couple tests for http.lua; see #844	2017-04-27 17:28:46 +00:00
nnposter	c324237cf0	Converts the login check from a negative test to a positive one (Apache Axis2)	2017-04-25 23:06:38 +00:00
nnposter	2a07563f1d	Simplifies a match pattern	2017-04-25 21:41:43 +00:00
dmiller	b3849c478c	New script arg vulns.short	2017-04-24 13:53:47 +00:00
dmiller	13d06eb738	Use creds username as SNMP community if no ':' indicates password. Fixes #862	2017-04-22 19:31:24 +00:00
nnposter	b9aac1d6ba	Cleans up inline documentation for the default HTTP redirect behavior. Fixes #831	2017-04-19 18:42:51 +00:00
nnposter	cfa57758ad	Changes the redirect rule to return false in case of a missing path. This ... change aligns the code with the corresponding comment. Fixes #830	2017-04-19 18:39:20 +00:00
nnposter	ab96f9c2e7	Corrects a default HTTP redirect rule for hostname/domain matching. Fixes #829	2017-04-19 18:35:31 +00:00
nnposter	17c37b7e8d	Corrects a default HTTP redirect rule: ... A redirect should not be carried out if credentials are embedded in the URL. Fixes #826	2017-04-19 18:30:13 +00:00
nnposter	e80976a13a	Provides a common function, url.get_default_port(), for obtaining ... the default port number for a given scheme. Fixes #781	2017-04-19 18:00:36 +00:00
nnposter	af6bbc35bb	Changes the port type returned from url.parse() to an actual integer, as ... opposed to a string that represents an integer. Fixes #833, fixes #817.	2017-04-19 17:02:32 +00:00
nnposter	3a6deb0075	Removes trailing ".0" from clock artifacts	2017-04-14 01:41:26 +00:00
nnposter	12a89bfa7a	Improves a few matching patterns	2017-04-09 15:27:55 +00:00
nnposter	558b70645b	Converts the login check from a negative test to a positive one	2017-04-09 15:10:56 +00:00
nnposter	b80141d69e	Updates two fingerprints to use the JSON library	2017-04-09 14:57:51 +00:00
nnposter	665ee2ad66	Corrects a fingerprint category for ExtraHop	2017-04-09 14:31:22 +00:00
nnposter	5ef8d01a7f	Simplifies a few logical expressions	2017-04-09 14:25:08 +00:00
nnposter	3952e2fd62	Fixes an issue that caused long integers to be expressed in scientific notation. Fixes #807	2017-04-09 13:33:31 +00:00
dmiller	44a315b548	Fix a unit test in asn1.lua	2017-04-04 16:26:09 +00:00
nnposter	e4d923f076	Allows the port to be a simple number	2017-04-01 22:33:37 +00:00
nnposter	3a9b4d93af	Allows the port to be a simple number	2017-04-01 22:05:36 +00:00
nnposter	5636767c85	Fixes hard-to-read code indentation	2017-04-01 21:11:47 +00:00
nnposter	11a8c315ed	Includes port information in the Host header for non-standard ports. Fixes #766	2017-04-01 14:33:54 +00:00
nnposter	1bdbc2a680	Improves parsing of the HTTP status line. Fixes #772	2017-04-01 14:25:36 +00:00
dmiller	ffda9402f9	Correctly handle ASN.1 booleans (was opposite) and add unit tests.	2017-04-01 02:00:40 +00:00
dmiller	d55b11ca31	Localize unittest.identical helper function, avoiding crash and speeding it up	2017-04-01 02:00:39 +00:00
dmiller	50bd248c2d	Add test ID numbers in lieu of (missing) descriptions for CoAP unit tests	2017-04-01 02:00:38 +00:00
nnposter	2bc67aa4d1	Standardizes coding of header-based conditions	2017-03-30 04:03:32 +00:00
nnposter	3e8bbcb49c	Standardizes variable naming for HTTP responses	2017-03-30 04:02:02 +00:00
nnposter	50bfc7c5bb	Cleans up another triviality	2017-03-30 01:13:36 +00:00
nnposter	a7b8d0df4f	Cleans up a few fingerprint trivialities	2017-03-30 01:04:00 +00:00
nnposter	512e620899	Abstracts out code for testing cookie values	2017-03-30 00:37:16 +00:00
nnposter	afc310c0c9	Cleans up XML request build-up by externalizing XML encoding and allowing for white-space indentation	2017-03-30 00:06:03 +00:00
dmiller	7e6146d4c5	Convert snmp.lua from bin to string packing	2017-03-29 21:12:42 +00:00
dmiller	877136858f	Tag decoder stub for Report-PDU	2017-03-29 20:58:37 +00:00
dmiller	783e0fb05c	Replace bit.lua with bitwise ops in asn1.lua	2017-03-29 20:58:36 +00:00
dmiller	b75446db64	Note bitwise operator replacements for most of bit.lua	2017-03-29 20:58:36 +00:00
dmiller	4cef14a873	Switch to string packing instead of bin packing and return order for asn1-related libs	2017-03-29 20:42:01 +00:00
dmiller	3dec043ead	Fix NSE hangs when service sends non-matching data to receive_buf	2017-03-29 20:41:59 +00:00
dmiller	85e10c6b2b	Use byte values instead of hex strings for ASN.1 types, avoiding upper/lower case mixups	2017-03-29 20:41:57 +00:00
dmiller	49231a2782	Fix decoding of OID sequences caused by Lua 5.3 integer/number handling	2017-03-29 17:10:40 +00:00
nnposter	af5f88dd00	Implements a new member, fragment, of the HTTP response body. It contains ... a partially received body (if any) when the overall request fails to complete.	2017-03-29 15:58:39 +00:00