PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-19 05:59:01 +00:00
Code Issues Projects Releases Wiki Activity
8,287 Commits 2 Branches 0 Tags
b51a943a48cce0cafa38211179fbb10b8448b39e
Commit Graph

8287 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
16ab1b7114 Document the new (10.8) procedure for installing Xcode. 
I found out where the command-line tools are hidden from this link:
http://stackoverflow.com/questions/9329243/xcode-4-4-command-line-tools/9964905#9964905
 2012-10-22 23:44:11 +00:00
robert
30fcbb260e Updated the hash information in http-php-version to include PHP/5.3.17, PHP/5.3.18, PHP/5.4.7 and PHP/5.4.8. 2012-10-22 20:26:43 +00:00
robert
95c60718c1 Prevent Subversion hidden folder (.svn) from being added to Nmap's Windows setup file when copying the licenses directory. 2012-10-22 19:48:26 +00:00
henri
4b1e2a94bb A couple adjustemnt for windows. 
- Do not set the X flags as events to be watched.
  - Do not use POLLPRI as a R flag.

Not doing so causes WSAPoll() to fail with an "invalid argument" error.
 2012-10-22 17:57:58 +00:00
henri
ef9f4fcba5 Reverted r30104 and r30105. 2012-10-22 17:17:28 +00:00
henri
34b0f235cd Include nbase_winunix.h from nsock_internal.h 2012-10-22 15:55:46 +00:00
henri
aef88b5b1b Do not include Winsock.h before including nsock_internal.h (that 
includes nbase_winconfig.h). Otherwise WSAEINTR doesn't get redefined
as EINTR as desired.
 2012-10-22 15:43:30 +00:00
david
588ee6db2b Use socket_strerror in a few places in service_scan.cc. 2012-10-22 15:33:57 +00:00
david
bfaed0ce34 Use the name "nspp" for a variable of type "pointer to nsock_pool." 2012-10-22 05:17:00 +00:00
david
5c8272b3c9 Chack for a NULL pointer return in get_pool. 2012-10-22 05:16:59 +00:00
david
5fcc3bebd7 Ubuntu-specific Debian-liks service match. 
Told to me by Henri; if we see "ubuntu" in the version, we can be more
specific in the CPE, and in particular we know it's not Debian
GNU/kFreeBSD.
 2012-10-22 04:27:39 +00:00
henri
9865b8f828 Cleaning up: consistently get event masks from a static inline get_evmask() function. 2012-10-22 04:26:19 +00:00
david
62570b7be7 Needed for HAVE_POLL. 2012-10-22 02:16:35 +00:00
david
0176367387 Regen configure. 2012-10-21 23:22:37 +00:00
henri
0d3dda36d4 Added new poll and kqueue/kevent nsock engines. 
poll should be available almost everywhere.
kqueue/kevent are available on BSD systems (including MacOS).
 2012-10-21 23:20:35 +00:00
henri
4cedcef575 Separate engine names by spaces instead of commas for consistency with 
the other lines produced by nmap -V
 2012-10-21 22:56:54 +00:00
henri
e76d41fa04 Don't fatal() in nsock_set_default_engine() 
Return negative value instead. Moved the fatal() statement to nmap.cc
 2012-10-21 22:56:53 +00:00
henri
5aaf80a0b9 Added the list of available engines to the output of nmap -V 2012-10-21 20:21:02 +00:00
henri
3d2eeaa94d Finally added a function to list the available nsock engines. 2012-10-21 20:21:01 +00:00
henri
615de92974 Ensure that the nsock engine_hint refers to a valid one. If not, abort 
execution.
 2012-10-21 19:44:26 +00:00
henri
1e3115dbcb Renamed nmap_fileexistsandisreadable() by file_is_readable(). Former was 
hardly readable and is not even a good candidate for longest method
name (http://msdn.microsoft.com/en-us/library/system.windows.media.textformatting.textsource.gettexteffectcharacterindexfromtextsourcecharacterindex.aspx#Y0)
 2012-10-20 15:00:10 +00:00
henri
16ea382e9b Added a maximum number of retries to mitigate a remote DoS in the RPC 
packets parsing code. The number was chosen high to avoid decreasing
accuracy. It's just about having an upper limit.
 2012-10-20 14:59:53 +00:00
robert
8430ba2792 Added support for SQL Server 2012 (tested against RTM and fully patched), and added version numbers for latest service packs on older versions of SQL Server (as they've not been updated for far too long). 2012-10-18 06:45:47 +00:00
david
f26d82b3fc Update the status code name in smb-check-vulns. 
The checks for conficker and ms08_067 check for a specific status code
of 0x00000057, but do so by the name mapping to this value rather than
by value.

The name of this value was change from NT_STATUS_WERR_UNKNOWN_57 to
NT_STATUS_WERR_INVALID_PARAMETER in r24847, breaking these tests because
they were still searching for the "UNKNOWN_57" string.

This error was reported by Kit Peters.
http://seclists.org/nmap-dev/2012/q4/125
 2012-10-18 04:28:11 +00:00
david
3c87635ae8 Use nmap.new_socket in place of nmap:new_socket in smb-check-vulns.nse. 
Kit Peters reported the crash:
smb-check-vulns.nse:366: calling 'new_socket' on bad self (string expected, got table)

http://seclists.org/nmap-dev/2012/q4/124
 2012-10-18 03:47:22 +00:00
david
f8b8cd6b91 script-updatedb. 2012-10-18 03:18:08 +00:00
david
ad65ddb777 Simplify a boolean condition. 2012-10-18 03:18:07 +00:00
david
d27e378879 Comment typo. 2012-10-17 18:48:32 +00:00
david
17766fd7f0 100 service submissions. 2012-10-16 00:39:02 +00:00
fyodor
0c859bcf50 Note a finished (by David) task 2012-10-15 22:38:37 +00:00
david
9cb727f657 All 75 OS corrections. 2012-10-15 16:57:17 +00:00
david
1fce24f3a3 Add cpe:/o:debian:debian_kfreebsd to most Debian match lines. 
Debian can also run on the FreeBSD kernel. I changed o/Linux/ to o/Unix/
and added the debian_kfreebsd CPE to most match lines that mentioned
Debian. I excepted a few that said explicitly "Debian GNU/Linux".
 2012-10-15 16:57:14 +00:00
david
cdfa6e711d Last 130 OS submissions. 2012-10-15 07:09:56 +00:00
patrik
855a82fbc3 refactoring and code cleanup 2012-10-14 19:15:39 +00:00
david
b7f94a7783 100 OS submissions. 2012-10-14 09:04:00 +00:00
david
bf8f8da2e1 200 OS submissions. 2012-10-14 08:43:50 +00:00
david
83bc6c0398 300 OS submissions. 2012-10-14 04:26:58 +00:00
david
8906e3330f 300 OS submissions. 2012-10-14 02:04:05 +00:00
david
719f026891 sv-tidy. 2012-10-14 00:31:14 +00:00
david
4d0c36b88c Add some missing CPE versions where v// was present. 2012-10-13 23:45:06 +00:00
david
3e8cd823ab More nmap-service-probes CPE from Dillon Graham. 
http://seclists.org/nmap-dev/2012/q4/92
 2012-10-13 23:45:03 +00:00
david
27ed26ecbd 200 OS submissions. 2012-10-13 23:21:45 +00:00
david
effe2aa84b Reduce some new TTL ranges to account for the T measurement bug in 
5.61TEST3 through 6.01.

http://seclists.org/nmap-dev/2012/q4/104
 2012-10-13 23:21:42 +00:00
david
2985509924 Remove declarations for nonexistent methods. 
FingerTest.getattrbyname and FingerPrint.gettestbyname were removed in
r27713.
 2012-10-13 20:37:23 +00:00
david
22270f6868 Decrease the value of the OS scan T test value by 1. 
I changed the hop distance calculation in r26791 to include the end
host, so that a directly connected target would be a distance 1, not 0,
and so on. But I didn't adjust the calculation of the T test value to
compensate. I noticed this in a lot of OS submissions that were directly
connected having an estimated initial TTL of T=41, i.e., 65 rather than
64.

http://seclists.org/nmap-dev/2011/q3/796
 2012-10-13 20:37:21 +00:00
david
1a97b5dd52 300 OS submissions. 2012-10-13 08:23:12 +00:00
henri
b3361b56d0 Added HTTP status code 400 (Bad request) to the list of ignored codes in 
http-method-tamper.nse, which is the behavior of many servers (makes sense as
this is rather a client-side error).
 2012-10-12 12:25:45 +00:00
kroosec
3858d67874 Added check for excluded ports for rpc-grind.nse 2012-10-11 19:49:44 +00:00
david
c6efeea621 300 OS submissions. 2012-10-11 19:42:58 +00:00
david
e8b5fb974f Fix typos in the jp translation. 
Patch by OKANO Takayoshi.
http://seclists.org/nmap-dev/2012/q4/87
 2012-10-11 16:10:41 +00:00