gyani
92af09d39c
Added slaxml, hnap-info and modified script.db to show the same
2015-06-14 05:55:46 +00:00
gio
f893f2032b
Fixes #122 SNMP library and scripts use creds library to handle community
2015-06-13 17:58:55 +00:00
gio
308c213099
NSE snmp manually rebase #122 provided patch
2015-06-13 17:58:49 +00:00
jiayi
b1bfaed3c2
Add tor-consensus-check script
2015-06-06 01:24:05 +00:00
jiayi
6bc2867b5a
add tor-consensus-check
2015-06-05 15:50:51 +00:00
dmiller
4ead75cee7
Remove ahbl.org blacklists after site shutdown
2015-06-03 03:28:36 +00:00
gyani
0b0aa26b44
Fixed a few doc issues
2015-06-02 17:41:05 +00:00
gyani
2d2ed65244
Added http-webdav-scan
2015-06-02 17:15:28 +00:00
dmiller
324dc67541
Reduce vertical space from http-server-header
2015-06-01 22:37:53 +00:00
dmiller
3aa9018d16
Add omron-info NSE script from Stephen Hilt
2015-06-01 04:12:02 +00:00
dmiller
83f95ce401
Actually add http-vuln-misfortune-cookie script file
2015-05-31 18:34:22 +00:00
dmiller
976d5d2a40
Add http-vuln-misfortune-cookie script. Closes #77
2015-05-31 18:33:44 +00:00
dmiller
00064a1809
Whitespace/reindent cleanup in NSE. https://secwiki.org/w/Nmap/Code_Standards
2015-05-31 17:37:51 +00:00
dmiller
3d4fb07728
Add a couple unrequired libraries (NSE)
2015-05-31 17:37:45 +00:00
gio
a1eeaa8887
Fixes #130 snmp-brute.nse is IPversion agnostic now
2015-05-31 16:39:55 +00:00
dmiller
2f799b4be7
Script doc updates: wrong CVE, dead link
2015-05-29 03:53:23 +00:00
dmiller
3a2c434998
Check if Nmap's user agent is redirected in http-useragent-tester
2015-05-28 23:08:31 +00:00
dmiller
79f25ae304
Revert lpeg conversion of telnet-brute in favor of lua patterns
...
Long and sordid history here (http://seclists.org/nmap-dev/2014/q3/62
and http://seclists.org/nmap-dev/2015/q1/61 ) and in the Github issue.
Lua patterns approach was chosen due to simplicity; we have several good
examples of LPEG patterns now, so it was not worth sacrificing accuracy
or clarity to use them here.
Fixes #35
2015-05-28 13:19:03 +00:00
paulino
97bbb0f4fa
Adds http-vuln-cve2015-1635 to detect Microsoft Windows systems vulnerable to MS15-034
2015-05-22 04:23:50 +00:00
gyani
48f9ac26b5
fixed doccumentation indentation
2015-05-21 15:54:23 +00:00
gyani
e60b65b016
fixed doccumentation
2015-05-21 15:42:58 +00:00
gyani
6a4c2ab7e5
A script to check RCE in Elastic Search
2015-05-21 10:02:56 +00:00
dmiller
9c04123ad5
Remove some http headers that http.lua sets already.
2015-05-19 19:11:18 +00:00
dmiller
cfac127194
Mark a service as tftp if tftp-enum says it is
2015-05-15 19:35:15 +00:00
dmiller
daf8c58a79
Fix snmp-brute output
2015-05-02 13:25:47 +00:00
henri
0877bf8e7f
afp-ls: prevent script from stopping when an error occurs
...
Patch by Pierre LALET <pierre.lalet@cea.fr >
2015-04-30 17:58:49 +00:00
henri
9dafb0fa05
smb-ls: do not report connection errors by default
...
Patch by Pierre LALET <pierre.lalet@cea.fr >
2015-04-30 17:58:34 +00:00
henri
4d0e7c9000
Script smb-ls can now use results from smb-enum-shares
...
- smb-ls parameter `path` is now optional (defaults to '\').
- smb-ls parameter `maxdepth` now defaults to 1 (no recursion)
instead of 0 (infinite recursion).
- smb-ls has a new `shares` parameter to specify a comma-separated
list of shares to browse.
- smb-enum-shares adds found shares to an array in the host
registry, and smb-ls uses this array when no `share` or `shares`
parameter have been specified.
Patch by Pierre LALET <pierre.lalet@cea.fr >
2015-04-30 17:58:19 +00:00
dmiller
2b2411e2ec
Allow http-server-header to softmatch http even without a server header
2015-04-28 13:18:19 +00:00
paulino
4a95d8f9b2
Removes duplicate credential structure in favor of NSE library creds. Patch submitted by nnposter fixes #58
2015-04-16 18:51:45 +00:00
dmiller
54543b303c
Clean up some documentation regarding http redirects
2015-04-10 12:56:05 +00:00
dmiller
fcd93e141f
Use http.lua's default redirect follower for http-generator.nse
2015-04-10 03:42:46 +00:00
paulino
d76dd6b5b8
Fixes typo in author's name
2015-04-08 20:04:58 +00:00
paulino
5d35530075
Adds http-crossdomainxml
2015-04-08 15:58:20 +00:00
dmiller
04fee3d14c
Move TLSv1.2 signature_algorithms extension defaults into tls.lua
2015-03-25 02:29:25 +00:00
dmiller
ed86473b0c
Send supported signature algorithms for TLSv1.2
2015-03-24 23:22:19 +00:00
dmiller
564f654747
Fix leftovers from the whois => whois-ip name change
2015-03-07 04:24:31 +00:00
dmiller
55c3348fae
Use tls.client_hello defaults for some scripts
2015-03-06 20:00:00 +00:00
dmiller
2e57f72bb0
Restrict http-cisco-anyconnect to https. Closes #62
2015-03-03 17:52:09 +00:00
dmiller
e2bfa97920
Replace instances of bin.pack('A', x), which is equivalent to tostring(x), and a no-op on strings
2015-03-03 04:48:18 +00:00
dmiller
4d106cbe23
Remove unneeded requires
2015-02-28 12:43:59 +00:00
dmiller
41c4b9fbc8
Fix issues with afp-serverinfo using non-standard format library
2015-02-27 20:00:59 +00:00
dmiller
0e74dd7a35
Replace some string.char and bin.pack calls with literals
2015-02-27 19:42:56 +00:00
dmiller
204d37e4d7
Replace packet.toip* and ip*tobin with ipOps.ip_to_str and str_to_ip
2015-02-27 19:42:46 +00:00
dmiller
10dce0382c
Clean up string concatenations
...
Building a string with var = var .. "something" has miserable time
complexities. This commit cleans up a lot of that in scripts, focusing
on packing of data with bin.pack and concatenations within loops.
Additionally, a few instances were replaced with string.rep
2015-02-25 19:58:42 +00:00
dmiller
ddb3905b20
Avoid excessive string concatenations
...
psl_tree now takes an accumulator argument. It adds lines to the result
table instead of concatenating them together in a string. Then psl_print
concats all the lines together.
2015-02-25 19:58:35 +00:00
dmiller
afd025c191
Lua 5.2 allows null chars in patterns, so this hack is unnecessary
2015-02-25 19:58:33 +00:00
dmiller
db717c7543
Standardize random string generation on stdnse.generate_random_string
2015-02-25 05:06:08 +00:00
dmiller
f6733b2d89
Replace msrpc.random_crap with stdnse.generate_random_string
2015-02-25 05:06:05 +00:00
dmiller
3ee9fee2e2
XML structured output for afp-serverinfo.nse
2015-02-25 03:34:33 +00:00
