PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-14 11:49:01 +00:00
Code Issues Projects Releases Wiki Activity
7,375 Commits 2 Branches 0 Tags
b58d4c92d11ab3f9c5c7c3ba15f4dff3a64dce83
Commit Graph

1654 Commits

Author SHA1 Message Date
dmiller
32dfcdc2e6 Fix bug in ssl-enum-ciphers: Strength not defined (broken) 2012-08-09 21:50:26 +00:00
martin
7dbabbac65 Fixed issue with url always being set to root, it now lets the httpspider library get it from the script arguments 2012-08-09 06:20:16 +00:00
fyodor
cd0b08f8b3 Add a note clarifying why the mrinfo name was chosen (because it is similar to well-known mrinfo utility 2012-08-08 20:04:49 +00:00
dmiller
346a495dd0 Squashed commit of the following: 
commit 7c26e4de2ab365a30fe6e91f3a531eb38c8dfdba
Author: Daniel Miller <bonsaiviking@gmail.com>
Date:   Tue Aug 7 16:36:54 2012 -0500

    Fix indentation on netbios.lua (no code change)

commit 47dc3e32e6b47bd80620cfbc54e7590193dd0c1a
Author: Daniel Miller <bonsaiviking@gmail.com>
Date:   Tue Jul 31 16:42:27 2012 -0500

    Make smbauth.lua use host, not nmap, registry

commit 3738f8e6d551a1260463609d8cda86918843a372
Author: Daniel Miller <bonsaiviking@gmail.com>
Date:   Tue Jul 31 16:35:45 2012 -0500

    Make netbios.lua use host registry. Functions now can take host table or IP

commit 031cadb9d407ab7fd43aaddffda1a89c24cbdd45
Author: Daniel Miller <bonsaiviking@gmail.com>
Date:   Tue Jul 31 15:54:12 2012 -0500

    Remove mac-geolocation info from snmp-interfaces

commit 2218dbaf8ffd4a33de2bc028def9be7301dfb3a2
Author: Daniel Miller <bonsaiviking@gmail.com>
Date:   Tue Jul 31 15:52:36 2012 -0500

    Make path-mtu.nse use host, not nmap, registry

commit 5a3d006bdb9cd3e981a8e753c92b5ade5059a29b
Author: Daniel Miller <bonsaiviking@gmail.com>
Date:   Tue Jul 31 15:51:53 2012 -0500

    Make cvs-* scripts use host, not nmap, registry
 2012-08-07 21:38:48 +00:00
perdo
ba049718b0 Add digest auth support to http-brute (and to http library). Also fix whitespace in sasl.lua. 2012-08-05 22:23:54 +00:00
patrik
fce517d4b8 add bjnp library and the scripts bjnp-discover and broadcast-bjnp-discover 
commit d41a28813e4e4d26aeaab300ad30ad7c4116e37d
Merge: a45e4e2 23fc8f1
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun Aug 5 20:53:04 2012 +0200

    Merge branch 'master' into bjnp

    Conflicts:
    	CHANGELOG

commit a45e4e2fd0c2579afc8d5b162bb5484327494b72
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun Aug 5 20:44:19 2012 +0200

    add bjnp library and the scripts bjnp-discover and broadcast-bjnp-discover
 2012-08-05 18:55:40 +00:00
aca
599c7bf26d Changed usage sample, previous was lacking a script argument which was mandatory 2012-08-05 18:33:43 +00:00
patrik
381865f342 nse_check_global cleanup 2012-08-05 17:59:12 +00:00
patrik
be92f68cad Fixed a bug in afp-brute and the afp library related to missing SSL. 2012-08-05 14:25:53 +00:00
patrik
6f43ac38b2 SSL overhaul fixing OpenSSL related problems when SSL has not been compiled in 
* replace require function calls with stndse.silent_require
* fixed a bug in nse_main that would fail creating scripts.db when a script
  fails to load
* reworked some code to provide limited functionality even though SSL is not
  present
 2012-08-05 12:05:07 +00:00
aca
7f96384ec8 Merged smb-print-text script from my dev branch 2012-08-04 18:44:59 +00:00
kroosec
da5a25c097 Added mrinfo.nse script which queries a target router for multicasting information. 2012-08-03 22:58:29 +00:00
aca
c88639e5b4 Updated ssl-date to use STARTTLS for supported protocols 2012-08-03 16:12:55 +00:00
david
54fa9ec345 Use shortport.http in http-title. 2012-08-02 05:28:02 +00:00
david
33998a1ab9 Simplify http-title output code. 2012-08-02 05:28:01 +00:00
david
6970ba6af2 Remove redirect code from http-title. 
Use the implicit redirects inside http.lua.
 2012-08-02 05:27:59 +00:00
patrik
37e9cadc3c nse_check_globals cleanup 2012-08-02 05:25:15 +00:00
patrik
1d2f6906f5 Modified http-vhosts to use multiple worker threads and to completely bypass 
caching in order to increase performance.
 2012-08-02 05:19:07 +00:00
dmiller
762207f02e Handle empty snmpcommunity correctly 2012-08-01 17:50:00 +00:00
henri
3c3b936391 Indentation fix. 2012-08-01 07:03:53 +00:00
david
d5e5d8c5bd Remove "Server time" from ssl-date output. 
This makes it match http-date more closely.
 2012-07-31 20:57:30 +00:00
david
7cb7cbe163 Docs and output in ssl-date.nse. 2012-07-31 19:18:10 +00:00
aca
fc102a5ef4 Added ssl-date script 2012-07-31 19:11:10 +00:00
henri
dfdaadccb1 Style changes: 
- Consistent variable naming
  - Default parameters cleanup
  - removed unused variables (like "local t = nmap.timing_level()")
  - renamed functions consistently
  - removed typo from function name ("worker_schedluer")
  - consistent debug messages format
 2012-07-31 18:12:28 +00:00
david
a2c2863531 Remove "hardmatched" argument from calls to nmap.set_port_version. 
This is the default and can be omitted. Seeing as the value of this
argument was "hardmatched" in 100% of cases, we're better off pretending
the parameter doesn't exist.
 2012-07-30 18:58:32 +00:00
david
453131b820 set_port_version in servicetags.nse. 
The name, servicetags, is the same one as for the TCP port, but it
doesn't have enough popularity in nmap-services-all to appear in
nmap-services.
 2012-07-30 18:58:25 +00:00
aca
4c4ce195df Added smb-vuln-ms10-061 script from my dev branch 2012-07-30 09:48:03 +00:00
ron
e4823340d8 Fixed http-exif-spider - it used to be a symbolic link, by mistake - also updated script.db. 2012-07-29 21:49:32 +00:00
ron
4bd886cd9f Removing http-exif-spider temporarily 2012-07-29 21:48:51 +00:00
patrik
bca0025032 nse_check_global cleanup 2012-07-29 09:26:23 +00:00
david
1441aea655 Reduce the number of names tried by http-vhosts by default. 
Vlatko reported that this script was taking an inordinate amount of time
even in typical scans. This patch reduces the number of domains tried by
default. The new http-vhosts.filelist script argument allows
substituting the original list or another of your choosing.

Patch by Vlatko.
http://seclists.org/nmap-dev/2012/q3/432
 2012-07-29 03:39:11 +00:00
dmiller
b868e7f3ce Move caching code to datafiles lib 
Scripts no longer need to implement caching of datafiles tables in the
registry, since the datafiles.lua library keeps its own cache in the
registry. A side-effect is that scripts should not change the tables
returned by datafiles.parse_{protocols,rpc,services,mac_prefixes}(), as
doing so will affect all other scripts that use those functions.
 2012-07-27 20:07:38 +00:00
ron
959d9a67d3 Adding a new script - http-exif-spider.nse. It spiders a Web site looking for .jpeg images, and displays the image metadata (camera information, date, and geotag data). 2012-07-27 19:38:51 +00:00
patrik
4b77d989e2 added newtarget support to snmp-netstat script, allowing it to identify and 
add new targets to the scan queue.
 2012-07-26 13:49:03 +00:00
david
5e588b53da More direct printing of remotes in http-git. 
Show the uninterpreted remote URLs in every case. When matching specific
services, show the guesses about where the source might be hosted, but
remove verbose interpretation like "accessed over SSH".

Before:
|   Remote: git@github.com:skullspace/breachdb.git
|   GitHub remote: skullspace/breachdb (accessed over SSH)
|_   -> Source might be at https://github.com/skullspace/breachdb

After:
|   Remote: git@github.com:skullspace/breachdb.git
|_   -> Source might be at https://github.com/skullspace/breachdb
 2012-07-26 06:00:48 +00:00
david
c367d03916 Extract raw remote URLs in http-git. 2012-07-26 06:00:47 +00:00
david
8f907ae853 Local variable. 2012-07-26 06:00:45 +00:00
ron
ea5e4e07ae Updated http-git - bugfixes, and also handles multiple roots with script-args 2012-07-25 01:47:43 +00:00
patrik
7880043ee2 minor fix in stun-version to remove a warning from ipOps.fromdword 
indentation fix in stun-version
 2012-07-24 12:05:57 +00:00
patrik
be858f4a7d further improoved http-google-malware.nse malware detection by adding response 
code checks.
 2012-07-24 10:33:39 +00:00
patrik
b0c8a758a0 fixed bug where script would return "Host is safe to browse.", when an invalid 
API key was being used.
 2012-07-24 10:11:09 +00:00
patrik
217b27bace nse_check_globals cleanup 2012-07-24 10:08:43 +00:00
perdo
8025ba5a5a Added some checks for http response's body being nil. 2012-07-23 22:47:11 +00:00
jah
a1abb40d50 Removed extraneous newline from a couple of print_debug strings. 2012-07-23 22:25:51 +00:00
perdo
09f7b93949 Modify http-enum and http-fingerprints file so they work with http pipeline better. 2012-07-23 21:55:13 +00:00
aca
6fec00655d Added smb-ms10-054 vuln check script to trunk 2012-07-23 09:52:38 +00:00
patrik
977996e5fa o [NSE] Added rdp library and the script rdp-enum-encryption that enumerates 
both the Security Layer and Encryption level of the RDP service. [Patrik
  Karlsson]
 2012-07-21 21:24:14 +00:00
aca
096e40d470 Added different message in case we determine that DoS is not due to slowloris and fixed an issue with try_ssl 2012-07-21 16:33:44 +00:00
david
3f7db8b9d3 Add flume-master-info.nse by John Bond. 2012-07-21 08:07:49 +00:00
aca
4eb88d2cde Added ssl support to http-slowloris 2012-07-20 15:49:23 +00:00