PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-10 09:49:05 +00:00
Code Issues Projects Releases Wiki Activity
10,291 Commits 2 Branches 0 Tags
af4b45947d4a5b07ef67a9968d4da25a2ec71448
Commit Graph

2406 Commits

Author SHA1 Message Date
dmiller
4b341c4311 Clarify vnc handshake/login process and correctly send chosen security type 2016-04-04 04:47:37 +00:00
dmiller
6c7655c24f Add Tight VNC auth type 2016-04-02 15:22:30 +00:00
dmiller
41de3b1d60 New script vnc-title 2016-04-01 22:29:40 +00:00
dmiller
3af66a0445 VNC revamp and extension 2016-04-01 22:29:39 +00:00
tomsellers
e2cfda9dc0 Change to smb-os-discovery to enable it to augment SMB version detection. Closes #348 2016-03-31 10:56:29 +00:00
dmiller
81bb435ad9 Add TLS auth support to vnc.lua and vnc-brute 2016-03-28 16:46:32 +00:00
paulino
9b53acb1c0 Fixes bad indexed global 2016-03-26 19:52:37 +00:00
dmiller
6a0c3e8219 Allow ascii values in cert fields (broke in r35714) 2016-03-25 14:02:02 +00:00
dmiller
b76257d14b fix a NSE bug when http-cross-domain-policy has no output. Closes #343 2016-03-21 22:04:42 +00:00
dmiller
7a430d154b Auto-detect UTF-16 fields in certificates and transcode to UTF-8 2016-03-19 20:44:32 +00:00
dmiller
663271f95d New shodan-api script for querying Shodan internet scan data 2016-03-16 05:47:58 +00:00
dmiller
c7892e365f Let http.lua functions optionally connect via any address family 
Sometimes (e.g. when using an external API), a script wants to connect
by name to a server and doesn't care whether IPv4 or IPv6 is used. By
passing the "any_af" option, the first resolved address of any address
family will be used, allowing external-category scripts which used to
fail with -6 to succeed.
 2016-03-16 05:07:59 +00:00
dmiller
4135ec518f Add rpcinfo to version category, see previous commit 2016-03-14 20:42:52 +00:00
dmiller
0bb036cda2 Allow rpcinfo.nse to set version info 
The rpcinfo script can now set version info just like rpc-grind. Since
this requires considerably less traffic than rpc-grind, I made rpc-grind
depend on rpcinfo so that it will avoid running if we can get the
version information this way instead.

Also changed rpcinfo to only run on port 111, not on "rpcbind" service
since that's what -sV labels any detected RPC service.
 2016-03-14 20:42:51 +00:00
dmiller
5843cd95a4 Add rusers script 2016-03-14 16:03:47 +00:00
dmiller
5729d3844e Only run http-apache-server-status on Apache or unknown http servers. Add version info. 2016-03-14 03:41:38 +00:00
dmiller
2ec6eb5110 Only report unique VHosts in http-apache-server-status. Too much output otherwise. 2016-03-14 03:41:37 +00:00
dmiller
a4b81f39b6 Add http-apache-server-status. Closes #322 2016-03-14 03:41:36 +00:00
dmiller
7271efe963 Restore '%' deleted when http-vuln-cve2013-7091 was renamed. Closes #332 2016-03-13 20:29:11 +00:00
dmiller
b6778204cd Fix http-brute, munged by me in r35584. Closes #317 2016-03-12 20:45:53 +00:00
dmiller
b39e055e32 Fix crash when field doesn't exist. Closes #306 2016-03-03 17:15:12 +00:00
dmiller
5b5524d4ba Change names of SSLv2 ciphersuites to match draft specification. Closes #314. 2016-03-03 04:58:24 +00:00
tomsellers
318accba6e NSE add STARTTLS to sslv2 improving detection of SSLv2 and DROWN oracles. Closes #320 2016-03-03 02:06:05 +00:00
dmiller
abb827a759 Let http-title fetch different url via script-args 2016-02-21 14:28:09 +00:00
dmiller
ab79e7ad88 Fix a mistake in merging #36: append items instead of nesting lists 2016-02-17 13:26:29 +00:00
dmiller
0be412e50e Add XML output to http-rfi-spider (nnposter). See #36 2016-02-14 14:42:19 +00:00
dmiller
4da5cfebc7 Avoid blank output from broadcast-dhcp-discover 2016-02-11 23:50:48 +00:00
gyani
cf326ea74f Corrected a spelling. Had misspelt JSON as J0SON. 2016-02-10 20:07:35 +00:00
jah
3da6feda13 Treat stale, unwritable files as unreadable. 2016-02-07 15:28:26 +00:00
jah
a40fe5413c Handle file io error messages on Windows 
which prepends the file path to the error string.
 2016-02-07 15:11:24 +00:00
jah
a9e7f696b9 Improve handling of locally cached assignment data 
so that whois-ip will not make HTTP requests to iana.org unless it is
permitted to write the remote resources to a local file and to
subsequently read from the local file.
 2016-02-07 14:10:09 +00:00
jah
a50e8cfa21 Seperate addr family check for assignment file use 
A problem encountered while obtaining or locally caching a remote IANA
assignment file for one address family will not prevent the use of an
assignment file corresponding to a different address family.
 2016-02-07 14:08:44 +00:00
jah
b7e597ed8f Various non-functional improvements 
such as white space corrections, removal of redundant function arguments
and cetera.
 2016-02-07 14:07:57 +00:00
dmiller
10bddaf1cf Update http-php-version based on scan data 2016-02-05 22:53:43 +00:00
dmiller
3dec95dcf8 Fix host header for http-brute; nsedoc and refactoring 2016-01-19 15:44:20 +00:00
dmiller
26510fe8a7 Remove hardcoded IP from ftp-bounce 
Instead of hard-coding the many-years-invalid IP address of
scanme.nmap.org, look it up via DNS. Even better, you can override the
host used for this purpose, in case you don't want to tip your hand.
 2016-01-15 20:19:55 +00:00
dmiller
4da091f1f0 Update http-robtex-shared-ns 2016-01-15 05:55:16 +00:00
dmiller
709fcfbefa Fix http-robtex-reverse-ip and make it a bit more resilient 2016-01-15 05:55:15 +00:00
dmiller
4f91604e75 Fix some incorrect formatting in @output sections 2016-01-08 19:34:05 +00:00
dmiller
cdb5e5b9d8 New script: ms-sql-ntlm-info 2016-01-08 19:34:04 +00:00
dmiller
1accb103d1 New script: nntp-ntlm-info 2016-01-08 16:17:12 +00:00
dmiller
5a1e018803 New script: pop3-ntlm-info 2016-01-08 16:06:37 +00:00
dmiller
82be9b48ee New script: telnet-ntlm-info 2016-01-08 15:54:53 +00:00
dmiller
1f74fc2550 New script: smtp-ntlm-info 2016-01-08 15:29:54 +00:00
dmiller
70798c2468 New script: imap-ntlm-info 2016-01-08 03:08:26 +00:00
dmiller
2702b4d030 Let http-ntlm-info use smbauth functions for generating and parsing NTLM blobs 2016-01-08 02:57:24 +00:00
dmiller
e43e6fc278 Fix a crash on dns.query failure in dns-client-subnet-scan. Fixes #93 2016-01-07 05:45:48 +00:00
dmiller
b2d67c470f http-vuln-cve2013-6786 RomPager XSS script 2016-01-06 20:47:07 +00:00
dmiller
226a05af31 Replace some deprecated print_verbose with verbose1 calls 2016-01-04 16:48:08 +00:00
dmiller
1a205842fd Reformat ordered lists in NSEdoc 2016-01-02 05:08:05 +00:00