PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-14 19:59:02 +00:00
Code Issues Projects Releases Wiki Activity
4,449 Commits 2 Branches 0 Tags
b5f645c2c7d850864c7dbcde9f284a54502aa162
Commit Graph

691 Commits

Author SHA1 Message Date
patrik
a2c2a3f84c o [NSE] Added two new scripts http-brute.nse and http-form-brute that attempt 
to perform password guessing against web servers and applications. [Patrik]
 2010-08-19 20:53:40 +00:00
patrik
a946f11791 o [NSE] Added svn-brute, which attempts to perform password guessing against 
the subversion service. [Patrik]
 2010-08-18 20:50:51 +00:00
david
9cbfbbaadc Remove a script.db entry for an uncommitted script I am working on, 
ovs-agent-version.nse.
 2010-08-17 22:44:28 +00:00
david
9ac9fbdd94 Add a "VULNERABLE" banner to the output of wdb-version.nse. 2010-08-17 22:30:43 +00:00
david
644e60c84c Put wdb-version in the "default" category. 2010-08-17 22:19:15 +00:00
djalal
9849be68a9 Use the new get_script_args() function to parse script arguments and clean some whitespaces. 2010-08-17 01:58:47 +00:00
david
3c89e089fc Change calls in these forms: 
socket:connect(host.ip, port.number)
socket:connect(host.ip, port.number, port.protocol)

to this:

socket:connect(host, port)

connect can take host and port tables now, and the default protocol is
taken from the port table if possible.
 2010-08-16 18:59:30 +00:00
david
a314b5b7d7 Don't print unknown hashes in http-php-version.nse unless high verbosity 
is used, otherwise you get hashes printed for sites that don't even use
PHP. Patch by Ange Gutek.
 2010-08-16 16:09:56 +00:00
david
230f5d662b Add reference links to wdb-version.nse. 2010-08-16 15:57:36 +00:00
david
12e699e001 Change the portrule of wdb-version to use port number 17185 instead of 
0x54321. 0x54321 worked, probably due to integer truncation somewhere.
 2010-08-16 14:40:59 +00:00
david
dbd99b59f6 Add the wdb-version script from Daniel Miller. 2010-08-16 14:39:13 +00:00
patrik
ce0de70ae8 o [NSE] Added one script (vnc-brute) that performs password guessing against 
VNC using the new brute library and another (vnc-info) that lists supported
  security mechanisms. [Patrik]
 2010-08-14 15:13:15 +00:00
patrik
2c874c0ba2 changed portrule to include both ibm-db2 and drda 
updated script.db and removed old db2- scripts and added the new ones
changed error message returned by helper class in drda for incorrect logins
 2010-08-14 11:52:18 +00:00
patrik
e570925c37 o [NSE] Renamed db2-info and db2-brute scripts to drda-*. Updated script 
and library to reflect name change. Added support other DRDA based
  databases such as IBM Informix Dynamic Server and Apache Derby.
  [Patrik]
 2010-08-14 08:33:16 +00:00
patrik
2b44c74187 renamed db2 scripts to drda and added the old ones for removal [Patrik] 2010-08-14 08:28:56 +00:00
ron
39318fd843 Fixed the same small bug in smbv2-enabled.nse (was still using the wrong variable for an error message) 2010-08-13 20:39:20 +00:00
ron
af5d750a34 Fixed a small bug in smbv2-enabled.nse (was using the wrong variable for an error message) 2010-08-13 20:35:22 +00:00
david
1290fad780 o [NSE] Added default limits on the number of ports that qscan will 
scan. By default, it will do upt o 8 open ports and up to 1 closed
  port. These limits can be controlled with the qscan.numopen and
  qscan.numclosed script arguments. [David]
 2010-08-13 05:17:07 +00:00
djalal
28e9cf600b Add a missing require('stdnse') 2010-08-12 03:54:13 +00:00
david
d5edc49016 Add patch from Ange Gutek and Tom Sellers to make http-php-version only 
consider responses with a 200 status.
 2010-08-10 19:54:30 +00:00
david
a9b75892f5 Use shortport.http where appropriate. 2010-08-09 22:30:50 +00:00
david
794611d9f1 o [NSE] Made sslv2.nse give special output when SSLv2 is supported, 
but no SSLv2 ciphers are offered. This happened with a specific
  Sendmail configuration. [Matt Selsky]
 2010-08-09 02:57:09 +00:00
ron
934cf2edf0 Significant changes, both bugfixes and best practice changes, to smb-psexec.nse. Primarily: 
o It no longer uses the global environment to store the modules table
o It now uses loadfile() to load the configuration files, which follows best practices better
o The module() line at the top of the configuration files is no longer required, but if it exists all that happens is a warning is printed
o Worked around what appears to be a bug in one person's Nmap install where absolute paths didn't resolve properly -- I couldn't replicate, but he confirmed it was fixed
 2010-08-07 19:36:47 +00:00
djalal
1f9b7228ee Add a 'prerule' support to dns-zone-transfer.nse script, with this change dns-zone-transfer can run now at differenent Nmap scan phases: at the Script Pre-scanning phase and at the classic Script scanning one. 2010-08-06 16:47:11 +00:00
djalal
f0c5e154c3 Merge r18689:r19511 from /nmap-exp/djalal/nse-rules. 
o Add two new Script scan phases:
  Script Pre-scanning phase: before any Nmap scan operation, activated by the new "prerule".
  Script Post-scanning phase: after all Nmap scan operations, activated by the new "postrule".
o New environment variables:
  SCRIPT_PATH
  SCRIPT_NAME
  SCRIPT_TYPE: the type of the rule that activated the script.
 2010-08-06 16:40:03 +00:00
jah
d67b6d9c10 Fix a test for the return value of ipOps.isPrivate in the hostrule which was 
causing an unnecessary debug message: "Error in Hostrule: 127/8".
 2010-08-05 20:36:27 +00:00
kris
412fcbcca0 o [NSE] Added a "times" table to the host table passed to scripts. 
This table contains Nmap's timing data (srtt, the smoothed round
  trip time; rttvar, the rtt variance; and timeout), all represented
  as floating-point seconds.  The ipidseq and qscan scripts were
  updated to utilize the host's timeout value instead of the very
  conservative guess of 3 seconds for read timeouts. [Kris]
 2010-08-05 01:55:05 +00:00
kris
c632d0e6e2 remove unused port arg from host scripts' action/hostrule 2010-08-03 18:54:29 +00:00
djalal
47e39cefbf When reporting files mactime use "MODIFICATION TIME" or "ACCESS TIME" or "CHANGE TIME" instead of "DATE". 2010-08-02 11:20:29 +00:00
david
1e54009fb9 Change the "namevals" key in the return value of 
http.read_auth_challenge to "params" to match RFC 2617.
 2010-07-25 17:33:35 +00:00
david
42a1bd99ab Merge from /nmap-exp/david/nmap-http-brute. This adds Basic 
authentication support for http requests.
 2010-07-25 17:12:52 +00:00
fyodor
a0853a69ab expand an author name from plain 'Matt' to 'Matthew Boyle' 2010-07-24 05:54:47 +00:00
fyodor
6051356fd3 canonicalize author field for asn-query and dns-fuzz. One had just 'Michael' and another had Michael Pattrick's full name and his email address too. I standardized on just the full name on both 2010-07-24 05:51:10 +00:00
fyodor
a03bbb206e Remove Ange's email address from http-php-version.nse to match what he uses in http-passwd.nse, ftp-libopie.nse, and ftp-anon.nse author fields (If he wants the email addresses, I'd be happy to put it in all four scripts--I'm just doing a little cleanup for consistency 2010-07-24 05:36:47 +00:00
fyodor
90a21e31d3 Remove Artoro's email address from smtp-open-relay to match what he uses in http-open-proxy (If he wants the email addresses, I'd be happy to put it in both scripts--I'm just doing a little cleanup for consistency 2010-07-24 05:34:08 +00:00
fyodor
027f095b4f Remove Kris's email address from two scripts to match what he uses in the other three (If he wants the email addresses, he is welcome to put them on all five--I'm just doing a little cleanup for consistency 2010-07-24 05:32:18 +00:00
fyodor
6f22390e45 Remove Jah's email address from two scripts to match what he uses in the other three (If he wants the email addresses, he is welcome to put them on all five--I'm just shooting for consistency 2010-07-24 05:30:36 +00:00
kris
cc33a59ca4 Add nmap.clock() for providing scripts with the current time in floating 
point seconds since the epoch, and add clock_ms() and clock_us() to stdnse
for convenience (millisecond and microsecond).

qscan.nse now provides microsecond resolution.
 2010-07-23 19:49:42 +00:00
kris
ee3c89afe4 o [NSE] When receiving raw packets from Pcap, the packet capture time 
is now available to scripts as an additional return value from
  pcap_receive().  It is returned as the floating point number of
  seconds since the epoch.  The qscan.nse script was updated to use
  this more accurate data instead of using the clock_ms() function
  (which returns the current time). [Kris]
 2010-07-23 10:43:04 +00:00
david
3df554de64 Spell-check NSEDoc. 2010-07-19 16:29:48 +00:00
david
156952fbf8 Do index canonicalization in scripting.xml. Remove ".nse" where not 
needed.
 2010-07-18 20:31:32 +00:00
david
8811bdb6cc Reflow NSEDoc for PDF inclusion. 2010-07-18 19:41:04 +00:00
david
5f035c6a61 Break a long line in auth-owners.nse for PDF inclusion. 2010-07-18 17:41:26 +00:00
david
bccb8ead89 Edit some script descriptions for better line breaks when rendered as 
PDF. Some long URLs were replaced by short redirects under
http://nmap.org/r/.
 2010-07-17 16:47:31 +00:00
patrik
db0093ccd0 fixed bug with empty contexts not returning any data from ldap servers 
add objectClass person to qfilter users so that users are properly shown
add error msg for invalid credentials
[patrik]
 2010-07-16 21:59:27 +00:00
david
934836d776 Adjust documentation capitalization in snmp-win32-users.nse. 2010-07-16 15:15:27 +00:00
fyodor
9b4b172045 Update generated content for new release 2010-07-16 00:43:59 +00:00
david
7d0c08a097 Brief copyediting of NSEDoc for modules. 2010-07-12 19:42:43 +00:00
david
1ff1a4f892 First-pass copyediting on the remaining scripts. 2010-07-12 17:19:26 +00:00
david
4cdc50e95d Do copyediting of NSEDoc up through pgsql-brute. 2010-07-12 06:21:03 +00:00