PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-05 14:09:02 +00:00
Code Issues Projects Releases Wiki Activity
9,668 Commits 2 Branches 0 Tags
b200984fe793857cd01d810d4540790f6fe0d750
Commit Graph

9668 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dmiller
d88d27f592 Complete CPEs from official dictionary through end of Null probe 2015-02-06 14:06:22 +00:00
dmiller
afc9f6f301 Remove unnecessarily-specific 'port.number' from comm.lua calls 2015-02-05 04:18:10 +00:00
dmiller
40652f215b Remove redundant 'proto=port.protocol' from comm.lua calls 2015-02-05 04:17:58 +00:00
dmiller
24f88f9b83 Let skypev2-version inspect service fingerprint 
Saves up to 2 requests per service for otherwise unmatched services
 2015-02-05 04:17:56 +00:00
dmiller
bf58512bec Move service fingerprint unwrapping code from scripts to lpeg-utility 2015-02-05 04:17:54 +00:00
dmiller
29174ba87d Fix a use-after-free in idle and ftp bounce scans 
PortList::forgetPort in verbose mode tries to print details on a Port
after it has been deleted. This function is only called in idle and ftp
bounce scans. Reported by Mak Kolybabi:
http://seclists.org/nmap-dev/2015/q1/129
 2015-02-04 20:46:10 +00:00
dmiller
5c486b83cb More CPEs (~25% done) 2015-02-04 03:41:20 +00:00
dmiller
e4eefb6ce3 More CPEs 2015-02-03 20:43:08 +00:00
dmiller
921457bc08 Copy some CPEs from matching products to others 2015-02-03 15:26:50 +00:00
dmiller
e3bdc92114 More CPE entries for service fingerprints 2015-02-03 15:19:05 +00:00
dmiller
c6511d3fa1 Auto-cpe services allowing captured model numbers 2015-02-03 04:23:08 +00:00
dmiller
daa14da723 Add CPEs through FTP 2015-02-03 03:52:17 +00:00
dmiller
e985053c6d Add check for Cisco ASA version disclosure, CVE-2014-3398 2015-02-02 18:25:53 +00:00
dmiller
f560655605 Enhance NSE debugging messages slightly 2015-02-02 03:56:10 +00:00
batrick
e3b3deb7c8 Remove unnecessary string.format calls. 2015-01-31 05:35:26 +00:00
fyodor
3200f16753 Update man page to align with how Nmap currently handles icmp unreachable messages and then regenerated it. This was suggested by Tobias Glemser 2015-01-30 10:05:06 +00:00
dmiller
fb10f7a48b Fix comment saying we 'hope to create' a system that already exists 2015-01-29 19:15:31 +00:00
dmiller
ae5a7f3217 Add a bunch of CPE entries 2015-01-29 06:43:25 +00:00
dmiller
96c8e7e9af New cpe:/h automatic additions 2015-01-29 02:40:47 +00:00
dmiller
5b17815134 Re-cpeify nmap-os-db with updated script 2015-01-29 02:38:27 +00:00
dmiller
042a1ae0a5 Auto-add more cpes 2015-01-28 20:18:14 +00:00
dmiller
e5161352f1 Add some missing o/Linux/ templates 2015-01-28 18:34:09 +00:00
dmiller
ea7e725a1c Add some service pack and language info to cpes 2015-01-28 17:49:02 +00:00
dmiller
9158ed7482 Svc fingerprint cleanup: more specific Windows o// templates 2015-01-28 14:40:30 +00:00
dmiller
b7790297ec Service fingerprint cleanup: missing or incorrect o// templates 2015-01-28 14:14:22 +00:00
dmiller
0a0c85acd0 Add cpes to some Microsoft services 2015-01-28 05:37:17 +00:00
dmiller
fa94d0e33b Auto-cpeify service fingerprints 2015-01-27 18:41:26 +00:00
dmiller
6954522440 More service fingerprint cleanup 
Use i// template for things which used parentheses in the v// template.
Fix one instance of "Python BaseHTTPServer" to "BaseHTTPServer" (CPE will
reflect Python when it is auto-generated)
 2015-01-27 17:18:43 +00:00
dmiller
2555da212a Service fingerprint cleanup 
GoAhead WebServer normalization. Was reported variously as "GoAhead-Webs",
"GoAhead httpd", or by device name it was embedded in.
 2015-01-27 14:48:37 +00:00
dmiller
4bcafef56c Service fingerprint cleanup 
More specific o// templates for Windows (NT and CE, particularly), and
appropriate CPE adjustments.
 2015-01-27 14:40:55 +00:00
dmiller
db20fc3053 Service fingerprints cleanup 
* Busybox => BusyBox
* i/Windows/ => o/Windows/ etc.
* o/OS X/ => o/Mac OS X/
 2015-01-27 14:30:26 +00:00
dmiller
17a5e77e0a Add ARP_HRD_IEEE80211_PRISM identifier 2015-01-27 02:31:11 +00:00
david
b56c734530 The Golang implementation of Tor has a name and a github now. 2015-01-24 22:57:59 +00:00
dmiller
179e42a9c6 Update http-slowloris-check 
Summary of changes:
* Clarified LIKELY_VULN status, since actual DoS may not be possible
  (false positive)
* Made worker threads closures to simplify/fix testing multiple servers
  at once.
* Added debug statements at script exit locations to clarify status when
  script terminates early.
* Added CVE reference.
 2015-01-23 15:37:09 +00:00
dmiller
e94f22e0a3 Final few odd service fingerprint submissions from the last batch 2015-01-23 04:39:44 +00:00
dmiller
137d2e3e94 The \z escape is Lua5.2 only, and NSEdoc portal uses 5.1, so this hack didn't work 2015-01-19 04:12:57 +00:00
dmiller
0952bed032 Merge final changes to support VS2013 build 
Changes:

* Fix a collision of the name PS_NONE with a different constant in shlobj.h
* Update solution and project files for VS2013
* Update the NSIS installer to reference the VC 2013 redistributable
 2015-01-17 04:35:01 +00:00
paulino
563498f473 Adds http-shellshock.nse to detect web applications vulnerable to shellshock 2015-01-17 03:01:58 +00:00
dmiller
fb6e1f013c Fix some nsedoc issues with http-default-accounts 2015-01-15 19:50:13 +00:00
david
bfd1d61a5b Add a new service probe for Tor. 
http://seclists.org/nmap-dev/2015/q1/39
 2015-01-15 06:04:20 +00:00
dmiller
9ffafe5334 Display empty server header as <empty> (#37) 2015-01-15 05:36:25 +00:00
dmiller
87fa397492 Let http-server-header handle an empty Server header 
Patch by nnposter. Fixes #37
 2015-01-15 05:36:23 +00:00
dmiller
7b0c3432e6 Update nmap.rc 2015-01-14 04:57:00 +00:00
dmiller
1f33c29db7 Update ncat.usage.txt 2015-01-14 04:56:59 +00:00
dmiller
48c29e99b3 Force nmap.rc to be rebuilt when nmap.h changes 
The make rule for nmap.rc depended only on nmap.rc.in, which doesn't
change regularly. Since the rule itself adds version info based on
nmap.h, it makes sense to list this as one of its dependencies.

Fixes #45
 2015-01-14 04:56:56 +00:00
dmiller
40ca4cb396 Document --ssl-ciphers. Fixes #20 2015-01-11 23:38:00 +00:00
david
6c41e00a5f Link directly to the Team Cymru IP-to-ASN page. 2015-01-09 02:42:47 +00:00
fyodor
21949f4ee1 Note that -T4 sets the min-rtt-timeout to 100ms 2015-01-06 09:41:39 +00:00
dmiller
dbdf46a6b5 Nearly done with service fingerprint submissions 2015-01-04 02:28:03 +00:00
tomsellers
66981b2f72 MySQL match lines 
- Edited info sections for consistency
- Changed regex based on MySQL packet spec to improve efficiency
- reorganized section
 2015-01-02 01:15:38 +00:00