PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-21 06:59:01 +00:00
Code Issues Projects Releases Wiki Activity
10,291 Commits 2 Branches 0 Tags
af4b45947d4a5b07ef67a9968d4da25a2ec71448
Commit Graph

10291 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dmiller
6954522440 More service fingerprint cleanup 
Use i// template for things which used parentheses in the v// template.
Fix one instance of "Python BaseHTTPServer" to "BaseHTTPServer" (CPE will
reflect Python when it is auto-generated)
 2015-01-27 17:18:43 +00:00
dmiller
2555da212a Service fingerprint cleanup 
GoAhead WebServer normalization. Was reported variously as "GoAhead-Webs",
"GoAhead httpd", or by device name it was embedded in.
 2015-01-27 14:48:37 +00:00
dmiller
4bcafef56c Service fingerprint cleanup 
More specific o// templates for Windows (NT and CE, particularly), and
appropriate CPE adjustments.
 2015-01-27 14:40:55 +00:00
dmiller
db20fc3053 Service fingerprints cleanup 
* Busybox => BusyBox
* i/Windows/ => o/Windows/ etc.
* o/OS X/ => o/Mac OS X/
 2015-01-27 14:30:26 +00:00
dmiller
17a5e77e0a Add ARP_HRD_IEEE80211_PRISM identifier 2015-01-27 02:31:11 +00:00
david
b56c734530 The Golang implementation of Tor has a name and a github now. 2015-01-24 22:57:59 +00:00
dmiller
179e42a9c6 Update http-slowloris-check 
Summary of changes:
* Clarified LIKELY_VULN status, since actual DoS may not be possible
  (false positive)
* Made worker threads closures to simplify/fix testing multiple servers
  at once.
* Added debug statements at script exit locations to clarify status when
  script terminates early.
* Added CVE reference.
 2015-01-23 15:37:09 +00:00
dmiller
e94f22e0a3 Final few odd service fingerprint submissions from the last batch 2015-01-23 04:39:44 +00:00
dmiller
137d2e3e94 The \z escape is Lua5.2 only, and NSEdoc portal uses 5.1, so this hack didn't work 2015-01-19 04:12:57 +00:00
dmiller
0952bed032 Merge final changes to support VS2013 build 
Changes:

* Fix a collision of the name PS_NONE with a different constant in shlobj.h
* Update solution and project files for VS2013
* Update the NSIS installer to reference the VC 2013 redistributable
 2015-01-17 04:35:01 +00:00
paulino
563498f473 Adds http-shellshock.nse to detect web applications vulnerable to shellshock 2015-01-17 03:01:58 +00:00
dmiller
fb6e1f013c Fix some nsedoc issues with http-default-accounts 2015-01-15 19:50:13 +00:00
david
bfd1d61a5b Add a new service probe for Tor. 
http://seclists.org/nmap-dev/2015/q1/39
 2015-01-15 06:04:20 +00:00
dmiller
9ffafe5334 Display empty server header as <empty> (#37) 2015-01-15 05:36:25 +00:00
dmiller
87fa397492 Let http-server-header handle an empty Server header 
Patch by nnposter. Fixes #37
 2015-01-15 05:36:23 +00:00
dmiller
7b0c3432e6 Update nmap.rc 2015-01-14 04:57:00 +00:00
dmiller
1f33c29db7 Update ncat.usage.txt 2015-01-14 04:56:59 +00:00
dmiller
48c29e99b3 Force nmap.rc to be rebuilt when nmap.h changes 
The make rule for nmap.rc depended only on nmap.rc.in, which doesn't
change regularly. Since the rule itself adds version info based on
nmap.h, it makes sense to list this as one of its dependencies.

Fixes #45
 2015-01-14 04:56:56 +00:00
dmiller
40ca4cb396 Document --ssl-ciphers. Fixes #20 2015-01-11 23:38:00 +00:00
david
6c41e00a5f Link directly to the Team Cymru IP-to-ASN page. 2015-01-09 02:42:47 +00:00
fyodor
21949f4ee1 Note that -T4 sets the min-rtt-timeout to 100ms 2015-01-06 09:41:39 +00:00
dmiller
dbdf46a6b5 Nearly done with service fingerprint submissions 2015-01-04 02:28:03 +00:00
tomsellers
66981b2f72 MySQL match lines 
- Edited info sections for consistency
- Changed regex based on MySQL packet spec to improve efficiency
- reorganized section
 2015-01-02 01:15:38 +00:00
dmiller
ee4b2dfe5d A TODO note for ssl-enum-ciphers 
We recently became dependent on OpenSSL for some of ssl-enum-ciphers's
functionality (parsing certificates). We should have a decent fallback
(e.g. don't parse the certificate, issue a warning, and use a dummy
score).

[ci skip] This tells Travis to skip the CI build when this commit is
pushed, useful for documentation changes that don't affect the build.
 2015-01-01 21:09:05 +00:00
dmiller
d1e429f42b Don't crash when an NSE library (e.g. sasl) calls stdnse.debug during require 2015-01-01 21:09:03 +00:00
dmiller
2f02fa2935 Fix build when building without OpenSSL (since r33781) 2015-01-01 21:09:02 +00:00
tomsellers
10822d1633 More script updates to change Metasploit Redmine 
references to valid Github URLs
 2015-01-01 15:13:13 +00:00
tomsellers
d2622c0396 Fix reference in rmi-vuln-classloader.nse to point to Metasploit 
Github repo as Metasploit Redmine is deprecated and requires
auth.
 2015-01-01 14:59:35 +00:00
tomsellers
1371a3303e Rework of PostgreSQL version detection - 
Added detection for PostgreSQL 9.4 via line number match
Added windows platform detection
Reworked language specific sections for regex consistency and priority
Generated German softmatch from a more specific probe
Broadened French softmatch
Created language neutral universal softmatches for windows and non-windows platforms
 2015-01-01 14:45:36 +00:00
dmiller
fc99bed706 Don't use unnecessary parens with __declspec 
Reported by nnposter, this broke on VS2010. Pretty sure this was just a
simple mistake in the first place. Fixes #33
 2015-01-01 13:39:47 +00:00
tomsellers
cda110fc55 Remove an incorrect version match labeled as ovm-manager (Oracle VM Manager). This was actually java rmi and used the same bytes as the java-rmi softmatch below it. 2015-01-01 12:12:16 +00:00
dmiller
fdf90c768c Travis: our language is C++ (i.e. we need the CXX env variable set) 2014-12-31 05:12:39 +00:00
dmiller
04ac366666 Fix nsock tests using wrong type (clang complains) 2014-12-31 04:30:58 +00:00
dmiller
f6865b15ed Travis: use faster container builds, and add make check 2014-12-31 04:30:56 +00:00
dmiller
7dacfcefa4 Prevent redeclaration of PCAP_NETMASK_UNKNOWN when using included libpcap 2014-12-30 22:38:32 +00:00
dmiller
8753e731f6 Reorder distclean targets to avoid errors with ./configure && make distclean 2014-12-30 22:38:30 +00:00
dmiller
dcff4ea4ea Add .travis.yml file to test Travis CI 
Testing in progress, expect more changes soon.

Closes #32
 2014-12-30 17:21:42 +00:00
dmiller
4b9a96dd31 Integrate more service fingerprints 2014-12-29 04:05:25 +00:00
dmiller
fe07fca8b4 Update changelog regarding translations 2014-12-23 14:21:26 +00:00
dmiller
8b487166ca Add ifndef guards to prevent double-inclusion of headers 2014-12-23 13:48:22 +00:00
dmiller
c95d656bfc Generate zh.mo 2014-12-23 13:48:19 +00:00
dmiller
2421ec8933 New Chinese translation of Zenmap 
http://seclists.org/nmap-dev/2014/q4/314
 2014-12-23 13:48:17 +00:00
david
934de74bb0 Check string bounds looking for terminating ']'. 
It was possible to trigger an out-of-bounds read by giving a port
specification with '[' but not ']'.
 2014-12-20 19:12:09 +00:00
tomsellers
742444b87d Fix a typo in the regex that was truncating the version string. 2014-12-20 01:34:26 +00:00
tomsellers
d5af9560c3 Add the full ntpd version string, for example v4.2.4p4@1.1520-o, to the 
port's version attributes if the remote service provides it. Also capture
OS info as well as it can provide exact kernel versions in some cases.
 2014-12-20 01:14:34 +00:00
paulino
f819655677 Adds fingerprint to detect the administration console of Oracle WebLogic Servers 2014-12-19 00:21:15 +00:00
dmiller
ae58ed62eb Another chunk of service submissions 2014-12-18 05:22:02 +00:00
dmiller
9857aa6ac2 Service fingerprint lengths are in hex, not decimal 2014-12-18 03:29:20 +00:00
dmiller
425e407eb3 Use decoding instead of pattern match for protocol checking 2014-12-18 03:23:46 +00:00
dmiller
711f6d97c9 New script, snmp-info for querying snmpv3 services 2014-12-18 00:22:48 +00:00