PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-15 04:09:01 +00:00
Code Issues Projects Releases Wiki Activity
10,291 Commits 2 Branches 0 Tags
af4b45947d4a5b07ef67a9968d4da25a2ec71448
Commit Graph

10291 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dmiller
bb507ac7bf Add RomPager CVE-2014-4019 check to http-fingerprints 2016-01-06 20:47:06 +00:00
dmiller
b9367a6f53 Add -v0 to mean no output to stdout. Closes #265. Fixes #236. 2016-01-06 16:26:07 +00:00
dmiller
7c3f57675e Hard-require Python 2 in zenmap/setup.py. Closes #255 2016-01-05 14:12:42 +00:00
david
ea400e1ff0 Typo fix: "nall"→"null". 2016-01-04 22:10:57 +00:00
dmiller
c6004a7798 Changelog for the previous 2 commits 2016-01-04 21:44:48 +00:00
dmiller
7300cde374 Avoid segfault with vasprintf("%s", NULL). http://seclists.org/nmap-dev/2016/q1/4 2016-01-04 21:44:47 +00:00
dmiller
ee048d5349 Avoid printf on NULL pointer if no string is registered for the error code. 2016-01-04 16:48:09 +00:00
dmiller
226a05af31 Replace some deprecated print_verbose with verbose1 calls 2016-01-04 16:48:08 +00:00
dmiller
f405d71296 Avoid a script crash when pppoe.Comm.recv returns failure without error message 2016-01-04 16:48:08 +00:00
dmiller
1a205842fd Reformat ordered lists in NSEdoc 2016-01-02 05:08:05 +00:00
dmiller
1863fd84d3 Update NSEdoc for http-form-brute 2016-01-02 04:52:15 +00:00
dmiller
4e23e6dfde Major upgrade to http-form-brute 
Now can correctly handle complex token-based CSRF protections by grabbing all
fields from the login form and using session cookies from the form request.
These cookies are sent with subsequent redirect-following requests for better
failure detection. On success, cookies are cleared and re-acquired.

A database of known web apps' login forms is used for form detection, helpful
for those whose username and password fields do not begin with "user" and
"pass". Form mangling (to remove cookie checks in one instance) and custom
onsuccess functions are also supported. Tested: django, wordpress, mediawiki.

This *may* be a replacement (upon suitable testing) for http-wordpress-brute and
http-joomla-brute.
 2015-12-31 16:21:03 +00:00
dmiller
74bd78267a http cookie and form parsing updates 
1. getattr now decodes html entities in attributes (useful for & in href
   attributes, for instance)
2. Cookie validation allows max-age, httponly, and secure attributes
3. Use table concatenation instead of repeated string concatenation to build
   cookie string.
 2015-12-31 15:50:25 +00:00
dmiller
e1cf78d57e Fix some issues with http-wordpress-brute 
1. When the hostname script-arg was used, the script would try to
*connect* to that host instead of the target. Now the argument is used
*only* for the Host: header.

2. The http options table is reused for each request, significantly
reducing the load on the garbage collector over many requests.

3. Do not use both creds.Credentials:new() and creds.Account:new(),
since this results in double-reporting found credentials.
 2015-12-29 17:14:37 +00:00
dmiller
8a28707b32 Fix loading devframework fingerprints from script-arg 2015-12-28 17:07:37 +00:00
dmiller
4e73ed7efd Allow -4 option signifying IPv4 mode 2015-12-21 04:10:38 +00:00
dmiller
dd0050598b Print service info for unlisted ports when service tunnel is detected 2015-12-20 05:34:56 +00:00
dmiller
2450dee71e Extend libnetutil's isipprivate function to check for 169.254/16 2015-12-19 20:44:55 +00:00
dmiller
9ddff31f86 New probe for GIOP service: http://seclists.org/nmap-dev/2015/q4/250 2015-12-19 20:35:22 +00:00
dmiller
82b765f6fe Fix bad output when rmi.Registry.list fails. Closes #262 2015-12-19 18:01:11 +00:00
dmiller
5243f4f049 Alter output formatting of multicast.lua 2015-12-19 17:47:15 +00:00
dmiller
0b0955994d Add Alex Geana's multicast IPv6 listener script 2015-12-19 15:50:08 +00:00
dmiller
e5871dcc83 Clarify some @usage, fix double --script-args in telnet-brute 2015-12-19 15:25:44 +00:00
dmiller
a11db08325 Every ipOps function validates IP addresses, so no need to do it explicitly 2015-12-19 15:25:43 +00:00
dmiller
566120ca58 Fix some output formatting and a crash 2015-12-18 21:48:44 +00:00
dmiller
0f99596555 Fix a few bugs in targets-ipv6-multicast-mld. http://seclists.org/nmap-dev/2015/q2/250 2015-12-16 17:07:40 +00:00
dmiller
c199828a49 Remove intrusive category from hostmap-bfk 2015-12-15 16:40:01 +00:00
dmiller
73ad899d30 Update hostmap-robtex to current page layout 2015-12-15 16:40:00 +00:00
dmiller
bb07040e21 Add http-vuln-cve2014-3704 'Drupalgeddon'. Closes #226 2015-12-14 21:29:30 +00:00
tomsellers
46fe8628e1 Removed executable bit from multiple NSE scripts and library files. 2015-12-14 16:23:33 +00:00
dmiller
a8f0daaf38 Fix a crash in snmp-interfaces: http://seclists.org/nmap-dev/2015/q4/218 2015-12-13 21:39:48 +00:00
dmiller
8529188f6a Handle ENETRESET/WSAENETRESET on WIN32 
When this case was added in r29097, the #ifndef was mistaken for #ifdef.
The error, which was only discovered on Windows, was therefore not
handled only on Windows systems. This commit makes the check
unconditional. http://seclists.org/nmap-dev/2015/q4/217
 2015-12-13 21:39:48 +00:00
tomsellers
dd503ae2e5 Update script name in help of http-userdir-enum, update CHANGELOG to reflect last commit. 2015-12-13 20:25:50 +00:00
tomsellers
25c891d570 NSE: http-backup-finder.nse Address 3 sources of false positives. Closes #242 2015-12-13 20:18:17 +00:00
luis
adc8e7be1c Make the line for received packets consistent in all modes. Before, RECV was being displayed for some modes. This was a suggestion made by Martin Koeppe (http://seclists.org/nmap-dev/2015/q4/206) 2015-12-12 22:34:23 +00:00
dmiller
3567d72b17 Fix pep8 errors in all of zenmap 2015-12-11 23:11:47 +00:00
dmiller
24f5f35d3e Remember zenmap window geometry. Closes #247. Closes #239. 2015-12-11 23:11:45 +00:00
dmiller
8425c16203 Bump version and sync CHANGELOG with 7.01 2015-12-10 13:53:54 +00:00
dmiller
94d48e7913 Switch to gtk-mac-bundler and jhbuild for building OS X app bundle 2015-12-09 04:16:50 +00:00
dmiller
53d41055c7 Port r35354 changes to ssl-enum-ciphers internal probe 2015-12-07 17:45:55 +00:00
tomsellers
58f00324eb NSE: Prevent http.identify_404 from following HTTP redirects, standardize calls to it. Closes #251 2015-12-05 10:16:51 +00:00
dmiller
2c3673a647 Clean up some old renamed scripts upon install 2015-12-04 13:03:01 +00:00
tomsellers
1bba7d4b80 NSE: http-cakephp-version - fix false positive caused by following HTTP redirects. Update call to identify_404 to improve results. 2015-12-04 01:28:11 +00:00
tomsellers
25a27252ec NSE: hnap-info minor code quality improvement 2015-12-04 01:05:28 +00:00
tomsellers
c662f9cbd1 Address false positive in hnap-info.nse Closes #241 2015-12-03 12:16:24 +00:00
fyodor
5e72019846 correct the spelling of Marek Lukaszuk 2015-12-02 20:09:05 +00:00
dmiller
d2d5a78399 Avoid error output on non-HTTP and non-XMLRPC services. Closes #244 2015-11-29 16:34:33 +00:00
dmiller
818ca94616 Add further validation to SSNs in http-grep 2015-11-27 20:02:09 +00:00
dmiller
856b90337a Document some undocumented script-args. 2015-11-25 03:01:29 +00:00
dmiller
46388d28db Fix a crash in http-grep: https://twitter.com/grymoire/status/669320242154381312 2015-11-25 03:01:27 +00:00