PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-21 06:59:01 +00:00
Code Issues Projects Releases Wiki Activity
11,010 Commits 2 Branches 0 Tags
b80141d69e2ea56ba4c03f80a8c841c72f43e60c
Commit Graph

11010 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dmiller
5d726c7733 Handle ICMPv6 packets without a body 
Two issues here: First, IP protocol scan can send packets with protocol
58 (ICMPv6) even over IPv4. This led to a bad interaction where the
packet was created (in build_protoscan_packet) without a data payload,
but setIP tried to set the packet's Identifier field (present in both
ICMPv6 and ICMP Echo Request packets), leading to a heap buffer
overflow. Instead, we now only try to set this identifier when the IP
version matches the ICMP version, indicating that we set the data
payload.

The other issue was a out-of-bounds read while packet tracing when an
ICMPv6 packet without a payload was sent or received, due to trying to
read the type and code. Now we check that the data length is sufficient
to contain an ICMPv6 header before attempting to read one.

Credit LLVM/Clang's AddressSanitizer with catching these bugs.
 2016-07-28 05:11:35 +00:00
dmiller
2e05009ff7 Avoid undefined behavior of shifting over the sign bit by declaring unsigned literal 2016-07-28 05:11:34 +00:00
dmiller
4486148760 Remove an unnecessary debug statement from development 2016-07-28 05:11:33 +00:00
dmiller
d78f924635 Process 61 service fingerprints 2016-07-28 01:26:31 +00:00
dmiller
7aed1fd2ab Partially revert r36038: EC support only missing on RHEL 2016-07-27 20:35:00 +00:00
dmiller
3611aa0a6e Fix building on OpenSSL 1.0.1 and earlier due to missing EC crypto 2016-07-27 20:28:46 +00:00
dmiller
85dd7e6ac1 Fix a potential buffer overrun due to sscanf using the wrong field width 2016-07-27 20:11:27 +00:00
dmiller
040d8e9c0f Revert r35943: causing segv crashes in IPv6 OS scan 2016-07-27 19:49:13 +00:00
vincent
e6925acec3 New Zenmap auth_wrapper in Objective-C 2016-07-27 10:29:20 +00:00
vincent
32efc8b28c Use FQDN_LEN instead of MAXHOSTNAMELEN for DNS name buffers 
This closes #140 (issue #140), namely "Use correct lengths 
for FQDN, not MAXHOSTNAMELEN"
 2016-07-26 14:06:22 +00:00
dmiller
fcb94e2018 Process 155 service fingerprints 2016-07-26 04:17:28 +00:00
abhishek
db88bed93a Add little documentation for DNS resolution of truncated packets. Closes #468 2016-07-24 18:50:20 +00:00
dmiller
6d8b8995b6 Add redis port to nmap-services as suggested by npcode on Github 2016-07-23 14:27:23 +00:00
dmiller
274027bf61 Better CNAME handling in mass_rdns. 
If mass_rdns gets a CNAME and PTR for that name in one answer, parse
both. This means that the majority of CNAME answers can now be handled
without falling back to system resolver. A test of 40K random IPs
produced 21 CNAME answers, 18 of which had an associated PTR that was
correctly parsed in this way.
 2016-07-23 00:22:54 +00:00
dmiller
28ff5841bc DNS::Factory::ptrToIp will now return false if sockaddr_storate_inet_pton fails 2016-07-23 00:22:53 +00:00
dmiller
902a19b42e Fix refguide indexterms mucking with manpage again. Fixes #463 [ci skip] 2016-07-22 18:33:57 +00:00
dmiller
4fa478cea4 Check for non-404 file nonexistence responses in http-config-backup 2016-07-22 15:52:30 +00:00
dmiller
b019b4a369 Add clock-skew.nse to version control (oops!) 2016-07-22 14:33:47 +00:00
tudor
6c8a753013 CONCURRENCY_LIMIT in NSE can be increased above 1000 with a higher --min-parallelism value 2016-07-22 05:18:32 +00:00
dmiller
f002aee6a9 Add TLSA type to dns-zone-transfer, refactor bto16 2016-07-21 22:27:30 +00:00
dmiller
98d5fd7625 Fix a segfault due to Nsock event leak in NSE. 2016-07-21 21:36:40 +00:00
vincent
24976fe9c8 Correct sentences from Zenmap French translation 2016-07-21 19:31:11 +00:00
vincent
6e5efe5a8c Add new Zenmap Spanish translation 
Thanks to Marta Garcia De La Paz, Paulino Calderon
and Patricio Castagnaro for their contribution
 2016-07-21 19:18:56 +00:00
dmiller
5b7a07b6c9 Add clock-skew script, datetime library 2016-07-21 17:05:25 +00:00
dmiller
963011520f Fix bugs where pos return value of bin.unpack was ignored 2016-07-21 17:05:24 +00:00
dmiller
be3cd99dbc Add missing require 2016-07-21 17:05:23 +00:00
dmiller
033d77540a Use formulas.lua for mean, stddev in dns-cache-snoop 2016-07-21 17:05:22 +00:00
dmiller
75e6c2f64a Add mean, stddev, and median to formulas.lua 2016-07-21 17:05:21 +00:00
dmiller
5483beef88 Support floats and negative intervals in format_time 2016-07-21 17:05:20 +00:00
vincent
92ef17cc18 Add Mac libraries flags, if specified to the makefile 2016-07-20 16:13:00 +00:00
vincent
c6b20530ea Add dependencies requiered for nmap-update's static libraries 2016-07-20 16:09:10 +00:00
vincent
3611e7c47a Remove Macports; nmap-update now uses static libs 
nmap-update now uses static libraries linking for libapr, libsvn,
libserf, libz and libsqlite
 2016-07-20 16:07:37 +00:00
dmiller
60dc6353b9 Bump version from 7.25BETA1 release, regen docs, merge CHANGELOG 2016-07-19 19:57:56 +00:00
dmiller
5040fb3874 Add a couple changelog entries 2016-07-19 15:11:22 +00:00
abhishek
d04046ae48 Adds test for -z option in ncat, closes #444 2016-07-19 10:08:02 +00:00
abhishek
d1a10dfc63 Adds zero-byte option(-z) for Ncat. Fixes #22 and #225 2016-07-19 10:07:58 +00:00
abhishek
0c1d68d6de Falls back to "getnameinfo" for truncated replies in reverse DNS resolver. Closes #434 and #400, fixes #364 and #103. 2016-07-19 08:33:01 +00:00
vincent
c521208999 Update zenmap.pot (make update-pot) 2016-07-17 15:23:05 +00:00
dmiller
e81b4a719a Update wdb-version to Lua5.3 syntax 2016-07-17 04:56:30 +00:00
dmiller
dbc26606ca Fix crashes when assigning timeouts as floats. New NSE utility function nseU_checkinteger 2016-07-17 04:56:29 +00:00
batrick
62c4985536 Reduce debugging further. 
This is still too verbose for some use cases.
 2016-07-16 17:24:19 +00:00
vincent
34af9d438e Update the documentation for missing steps 2016-07-15 14:02:36 +00:00
dmiller
28c06ce28b Fix up some NSEdoc in asn1.lua 2016-07-13 17:51:10 +00:00
dmiller
95f7b76d9f Avoid 'baseoid' output when snmp-hh3c-logins fails. 2016-07-13 17:51:09 +00:00
vincent
3287c1159b Replace deprecated RSA_generate_key by RSA_generate_key_ex 
This applies the changes made in PR #451 on Github
 2016-07-13 10:17:30 +00:00
batrick
1b5f633e2a Reduce verbosity and improve bin wrapper debugging. 2016-07-13 01:46:27 +00:00
dmiller
a8abc95712 Note some default values for unpwdb args 2016-07-12 13:52:17 +00:00
dmiller
7b4180b8d7 Avoid sending NS probe on Npcap Loopback (BSOD on Win7). See #429 2016-07-11 14:14:53 +00:00
dmiller
fd5926ed1c Simplify config reading/writing. Related #449 2016-07-11 13:34:49 +00:00
dmiller
0ac0d8f505 Fix globals, whitespace 2016-07-08 04:36:31 +00:00