PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-22 23:49:03 +00:00
Code Issues Projects Releases Wiki Activity
10,291 Commits 2 Branches 0 Tags
af4b45947d4a5b07ef67a9968d4da25a2ec71448
Commit Graph

10291 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
jay
36f15bdfb9 Add some CHANGELOG entries for recent changes 2014-06-15 16:55:39 +00:00
jay
beb7aee9d0 Added new options --data <hex string> and --data-string <string> to send custom payloads in scan packet data. 2014-06-15 14:49:25 +00:00
dmiller
1e5295a99d Integrate 900 IPv4 OS submissions and 81 corrections 2014-06-13 04:20:51 +00:00
dmiller
8f6cd9ccc5 Restore STARTTLS support in ssl-ccs-injection 2014-06-12 12:28:08 +00:00
dmiller
b73a7254e0 NSEdoc for some sslcert.lua functions 2014-06-12 12:28:06 +00:00
fyodor
9020e77633 fix some XML syntax errors (some attempted closing tags were missing the slash they are supposed to start with) 2014-06-12 09:36:03 +00:00
fyodor
b50ac063f1 Remove a statement that our official RPMs don't link to OpenSSL, since they have for quite a while now 2014-06-12 09:25:14 +00:00
henri
240da6ede2 Attempt to connect to 0.0.0.1 to reliably trigger an error. 
0.0.0.1 seems to always fail with EINVAL, where 192.0.2.1 actually sends
a probe (and timeout.)
 2014-06-11 20:14:20 +00:00
henri
ccf6e15b90 Nsock early error reporting. 
Report finished (likely failed) events as early as possible. Because the
corresponding IODs can have no I/O activity, they wouldn't be flagged as active
by the I/O engines and the events could end up being delivered at shutdown only
(or never).

Reported by d33tah on http://seclists.org/nmap-dev/2014/q2/409
 2014-06-11 20:14:16 +00:00
paulino
34691d779d * Applies patch to Cacti fingerprint. 
* Adds Xplico (http://www.xplico.org/) fingerprint.
 2014-06-11 19:44:24 +00:00
dmiller
635495a018 Modify libpcap configure script to disable unused features 
bluetooth, usb, usb-can, and dbus sniffing. Dbus support caused a build
problem on CentOS 6.5. Would have preferred to pass these configurations
from our own configure script, but AC_CONFIG_SUBDIRS does not allow for
it.
 2014-06-11 18:19:25 +00:00
dmiller
144ce296d7 New todo task: have configure give better feedback 2014-06-11 14:25:57 +00:00
claudiu
2eaf0f83cc New script detecting CCS Injection vulnerability in OpenSSL 2014-06-11 13:43:28 +00:00
jay
f29a494d2b Modifying r32985 based on Henri Doreau's comment 
"For sequences, (strings, lists, tuples), use the fact that empty
sequences are false." PEP-0008 says[1].

[1] http://legacy.python.org/dev/peps/pep-0008/
 2014-06-10 09:15:20 +00:00
jay
2274fa2461 Updated some code in zenmap/zenmapGUI/DiffCompare.py and zenmap/zenmapGUI/ScanNmapOutputPage.py to work properly with the code from r32983 2014-06-10 08:21:57 +00:00
jay
5e948636cd Speedup Zenmap a little further by using cStringIO in zenmap/zenmapCore/NmapParser.py whenever possible (using StringIO as fallback). 2014-06-09 13:35:34 +00:00
jay
28ab4a621d Rewrote some code in zenmap/zenmapCore/NmapParser.py to speed up opening of scans. Large scans open in seconds instead of hours now. 2014-06-09 06:29:20 +00:00
dmiller
8c82e5e3fe New option --noscript turns off script scanning 
I often need something like this when creating and testing new service
probes. It's handier than modifying script.db every time to remove
the "version" category.
 2014-06-08 02:49:50 +00:00
dmiller
3a3c7243d1 Separate DONE tasks from todo/nmap.txt 2014-06-06 21:43:57 +00:00
jay
7d0215ca6c Set the following files to be ignored by SVN (they are generated when one runs ./configure) 
libpcap/pcap_get_tstamp_precision.3pcap
libpcap/pcap_set_tstamp_precision.3pcap
 2014-06-06 11:09:51 +00:00
jay
d8071c0352 Updated the included libpcap to 1.5.3 2014-06-06 10:43:17 +00:00
jay
5f27fb12a6 The change in the configure script done in r32919 would be overwritten next time someone ran autoconf. 
Changed configure.ac instead and ran autoconf 2.69 to regenerate configure.
 2014-06-06 07:10:18 +00:00
claude
319b6b560e Fixed a small error in the comments, probably a copy/paste error. 2014-06-05 19:51:50 +00:00
henri
a00aa0a460 New nsock regression test: TestConnectFailure. 
Trigger a ENETUNREACH error on connect() and check if properly reported.

As of now the test fails, the error isn't delivered.
 2014-06-05 19:44:00 +00:00
dmiller
51279d6b01 Fix compilation on Mac OS X (and probably other *BSD) 
http://seclists.org/nmap-dev/2014/q2/404

Introduced in r32873, which failed to include signal.h for sigaction and
friends. Doesn't break Linux because sys/wait.h is included. POSIX
(http://pubs.opengroup.org/onlinepubs/007904975/basedefs/sys/wait.h.html)
says "Inclusion of the <sys/wait.h> header *may* also make visible all
symbols from <signal.h> and <sys/resource.h>." (emphasis mine.)
 2014-06-05 02:35:06 +00:00
jay
381bf2fd23 Correct a bug in the code for NmapOutputViewer.go_to_host that was put in revision 32936. 
The following steps caused the bug with the r32936 code:
    1. Start a scan (say Quick Scan for simplicity) for a certain target (say A)
    2. Wait for scan to complete
    3. Start a scan for a different target (say B).
    4. Wait for scan to complete
    5. Click on host A in the Hosts list on the left (while scan B is still visible on the right)
    6. BOOM!
 2014-06-04 11:41:29 +00:00
dmiller
f51de3bc0e Make NmapOutputViewer.go_to_host more efficient 
Instead of loading the entire output into a new string with
gtk.TextBuffer.get_text, we use the gtk.TextIter.forward_search method.
This works because we don't need to use regular expressions to find a
static string.
 2014-06-03 17:22:20 +00:00
d33tah
b7aca7a2d1 Mark nsock/tests/Makefile as ignored. 2014-06-01 21:00:00 +00:00
jay
b6a994ea40 Correct the Target MAC Address in Nmap's ARP discovery to conform to what IP stacks in currently popular operating systems use. 2014-05-31 11:03:44 +00:00
jay
b0303ac883 Add randomizer to configure script so that a random ASCII art from docs/leet-nmap-ascii-art*.txt is printed 2014-05-31 10:34:11 +00:00
fyodor
818522f6c2 add a task to review a static analysis report that was sent to us 2014-05-30 20:20:08 +00:00
dmiller
1abaadbf87 Note some completed or reassigned tasks 2014-05-30 12:53:45 +00:00
patrik
0b0109d4af commit 7dae4affc23f9fd70e916bc461e45eafe4bcf99a 
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Thu May 29 21:33:18 2014 -0400

    fix to detect non ASA devices and unsupported versions
 2014-05-30 01:46:59 +00:00
batrick
c6fc780a29 remove extraneous arguments 2014-05-29 13:30:21 +00:00
devin
5e6c9d5f78 NSE enhanced output patch 2014-05-29 03:22:59 +00:00
dmiller
415e2671ab New NSE script for SCADA/ICS, bacnet-info 2014-05-28 13:54:05 +00:00
devin
53ca0c01dd Added checks to prevent scripts from indexing a nill value when 
scanning localhost.
 2014-05-28 02:29:31 +00:00
patrik
c950dcb154 Squashed commit of the following: 
commit a78b6142449b71ccd1cd7061b5363f6882b2e00b
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:19:22 2014 -0400

    fix indentation

commit 5e61eba30f98343fb172687bd377acae6cb9e242
Merge: d446fa7 9696dd5
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:50 2014 -0400

    Merge branch 'master' into anyconnect

commit d446fa76181d97287604b48719dd3f714987b775
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:09 2014 -0400

    Update CHANGELOG

commit 1590b8a8598bfd06c767c31312dc56c8e306c556
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:13:27 2014 -0400

    update script.db

commit 93eb927e21d3e3702da36668628b70c42f14f0db
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:09:51 2014 -0400

    update anyconnect library to better capture version
    add missing libraries http-cisco-anyconnect.nse
    add new scripts to detect vulnerabilities cve2014-2126 through 2129

commit 92fecad07d340e60abbe502a4541d6e4f71af224
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sat May 24 09:09:14 2014 -0400

    initial commit
 2014-05-26 01:28:38 +00:00
jay
81b5ef8e99 Changed svn:ignore to also ignore nsock/tests/Makefile 2014-05-25 10:59:11 +00:00
fyodor
44dce2369a some new tasks, and mark others done 2014-05-23 19:03:38 +00:00
dmiller
b354fa218c Consolidate some tasks for Jay 2014-05-23 17:58:44 +00:00
dmiller
e90036697c Note a completed task (rpc-grind.nse) 2014-05-23 17:58:43 +00:00
jay
187c6a681a Fixed indentation 2014-05-23 06:16:49 +00:00
david
5e800edbaa Little bit of OS integration. 2014-05-22 22:09:15 +00:00
dmiller
ed22166b3f Add enip-info NSE script for EtherNet/IP 
A contribution from the folks at Digital Bond
(http://www.digitalbond.com/), part of their Redpoint Project
(https://github.com/digitalbond/Redpoint/).
 2014-05-22 18:25:09 +00:00
dmiller
16cdf10790 Change EtherNet/IP-2 service name to IANA standard EtherNet-IP-2 2014-05-22 18:25:07 +00:00
jay
742b267c67 When Ncat is compiled without OpenSSL and if --ssl argument(s) are given, then show error message that OpenSSL was not compiled in. 2014-05-22 10:22:37 +00:00
fyodor
cd3869baed Note some tasks that Sriharsha is going to be working on 2014-05-22 05:40:47 +00:00
dmiller
36425f55a6 Fix make ndiff_check spurious failure 
The code involving imp is equivalent to "from ndiff import *", and ndiff
imports StringIO.StringIO as StringIO, which meant that while ndifftest
intended the name to be the module, it was really the class. Just moved
the import later to be sure the name was the one we intend.
 2014-05-22 02:25:47 +00:00
henri
e4d9793d92 Expose external nsock types as pointers to the internal structures instead of void pointers. 2014-05-21 19:59:46 +00:00