PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-21 06:59:01 +00:00
Code Issues Projects Releases Wiki Activity
9,911 Commits 2 Branches 0 Tags
ba873c28c04ca32c53b050eaebd79a5303e4417c
Commit Graph

9911 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
devin
d68396d823 Merged Lpeg branch 2014-06-26 20:12:54 +00:00
d33tah
9fe9545d49 Some more whitespace fixes. 2014-06-26 15:14:04 +00:00
dmiller
1320ea9ca2 Remove leftover debugging statement 2014-06-26 04:01:44 +00:00
dmiller
a0a94f9303 Properly handle interfaces with NULL addresses 
Some vsnprintf implementations (or perhaps some compiler options?) don't
like formatting NULL as %s, and will segfault (ran into this with
libstdc++ on Solaris). We don't get bug reports because at least some
(including mine on Ubuntu) will simply format it as "(null)".

This patch adds explicit checking for NULL to avoid the segfault
condition.
 2014-06-26 02:53:57 +00:00
dmiller
add985a2d1 Update configure from configure.ac after r33055 (whitespace) 2014-06-26 02:53:55 +00:00
d33tah
a80c90608c sed -i 's/if ( /if (/g' *.cc *.h; sed -i 's/for ( /for (/g' *.cc *.h; sed -i 's/( /(/g' nmap_amigaos.h tcpip.h service_scan.cc 
There's still quite a lot of code like this, nse_openssl.cc being most
messy IMHO. Also, I left out "if( something )" syntax.
 2014-06-25 15:40:54 +00:00
dmiller
3e6e5b1c51 Integrate 200 OS fingerprint submissions 2014-06-25 04:48:33 +00:00
jay
380de5f576 Catch badly named output files 
For example, "-oX -sV logfile.xml" would have meant write to a file named '-sV' previously
Now, it generates the error message "Output filename begins with '-'. Try '-oX ./-sV' if you really want it to be named as such. QUITTING."
 2014-06-24 16:05:09 +00:00
d33tah
6327679f15 Fix whitespace in configure.ac. 2014-06-24 09:25:09 +00:00
claudiu
39def56cde Fix false positives with SSL/TLS implementations that are not OpenSSL 2014-06-20 10:20:24 +00:00
claudiu
2772733958 STARTTLS support for LDAP 2014-06-20 10:11:38 +00:00
jay
f5e438b966 Got rid of (unnecessary) spaces in blank lines in *.cc and *.h files. 
sed -i 's/^\s*$//'
 2014-06-19 11:36:10 +00:00
dmiller
ec9074f718 Correct "it's" to "its" where necessary 
it's = it is
its = belonging to it
 2014-06-19 04:58:46 +00:00
dmiller
d90d991571 Correct a typo 2014-06-19 04:06:08 +00:00
dmiller
af57ddfd90 Minor whitespace cleanup 2014-06-18 17:16:24 +00:00
d33tah
c0873dc81d Whoops. Missed Target.cc. 2014-06-18 11:33:35 +00:00
d33tah
421176fc00 Get rid of double newline at the EOF I accidentally introduced in the 
last commit.
 2014-06-18 11:30:02 +00:00
d33tah
e3d1c178e3 Add newlines at the EOF in conformance to Daniel's coding standards 
proposal. This only affects Nmap's root directory. We might also need to
modify the code which autogenerates Nmap's source code files such as IPv6
fingerprinting code.
 2014-06-18 10:18:58 +00:00
dmiller
e69325c0f8 Add s7-info script, for more SCADA/ICS enumeration 2014-06-18 02:53:29 +00:00
claudiu
0f17475b15 Implemented STARTTLS support for IMAP and POP3 2014-06-17 07:46:55 +00:00
jay
36f15bdfb9 Add some CHANGELOG entries for recent changes 2014-06-15 16:55:39 +00:00
jay
beb7aee9d0 Added new options --data <hex string> and --data-string <string> to send custom payloads in scan packet data. 2014-06-15 14:49:25 +00:00
dmiller
1e5295a99d Integrate 900 IPv4 OS submissions and 81 corrections 2014-06-13 04:20:51 +00:00
dmiller
8f6cd9ccc5 Restore STARTTLS support in ssl-ccs-injection 2014-06-12 12:28:08 +00:00
dmiller
b73a7254e0 NSEdoc for some sslcert.lua functions 2014-06-12 12:28:06 +00:00
fyodor
9020e77633 fix some XML syntax errors (some attempted closing tags were missing the slash they are supposed to start with) 2014-06-12 09:36:03 +00:00
fyodor
b50ac063f1 Remove a statement that our official RPMs don't link to OpenSSL, since they have for quite a while now 2014-06-12 09:25:14 +00:00
henri
240da6ede2 Attempt to connect to 0.0.0.1 to reliably trigger an error. 
0.0.0.1 seems to always fail with EINVAL, where 192.0.2.1 actually sends
a probe (and timeout.)
 2014-06-11 20:14:20 +00:00
henri
ccf6e15b90 Nsock early error reporting. 
Report finished (likely failed) events as early as possible. Because the
corresponding IODs can have no I/O activity, they wouldn't be flagged as active
by the I/O engines and the events could end up being delivered at shutdown only
(or never).

Reported by d33tah on http://seclists.org/nmap-dev/2014/q2/409
 2014-06-11 20:14:16 +00:00
paulino
34691d779d * Applies patch to Cacti fingerprint. 
* Adds Xplico (http://www.xplico.org/) fingerprint.
 2014-06-11 19:44:24 +00:00
dmiller
635495a018 Modify libpcap configure script to disable unused features 
bluetooth, usb, usb-can, and dbus sniffing. Dbus support caused a build
problem on CentOS 6.5. Would have preferred to pass these configurations
from our own configure script, but AC_CONFIG_SUBDIRS does not allow for
it.
 2014-06-11 18:19:25 +00:00
dmiller
144ce296d7 New todo task: have configure give better feedback 2014-06-11 14:25:57 +00:00
claudiu
2eaf0f83cc New script detecting CCS Injection vulnerability in OpenSSL 2014-06-11 13:43:28 +00:00
jay
f29a494d2b Modifying r32985 based on Henri Doreau's comment 
"For sequences, (strings, lists, tuples), use the fact that empty
sequences are false." PEP-0008 says[1].

[1] http://legacy.python.org/dev/peps/pep-0008/
 2014-06-10 09:15:20 +00:00
jay
2274fa2461 Updated some code in zenmap/zenmapGUI/DiffCompare.py and zenmap/zenmapGUI/ScanNmapOutputPage.py to work properly with the code from r32983 2014-06-10 08:21:57 +00:00
jay
5e948636cd Speedup Zenmap a little further by using cStringIO in zenmap/zenmapCore/NmapParser.py whenever possible (using StringIO as fallback). 2014-06-09 13:35:34 +00:00
jay
28ab4a621d Rewrote some code in zenmap/zenmapCore/NmapParser.py to speed up opening of scans. Large scans open in seconds instead of hours now. 2014-06-09 06:29:20 +00:00
dmiller
8c82e5e3fe New option --noscript turns off script scanning 
I often need something like this when creating and testing new service
probes. It's handier than modifying script.db every time to remove
the "version" category.
 2014-06-08 02:49:50 +00:00
dmiller
3a3c7243d1 Separate DONE tasks from todo/nmap.txt 2014-06-06 21:43:57 +00:00
jay
7d0215ca6c Set the following files to be ignored by SVN (they are generated when one runs ./configure) 
libpcap/pcap_get_tstamp_precision.3pcap
libpcap/pcap_set_tstamp_precision.3pcap
 2014-06-06 11:09:51 +00:00
jay
d8071c0352 Updated the included libpcap to 1.5.3 2014-06-06 10:43:17 +00:00
jay
5f27fb12a6 The change in the configure script done in r32919 would be overwritten next time someone ran autoconf. 
Changed configure.ac instead and ran autoconf 2.69 to regenerate configure.
 2014-06-06 07:10:18 +00:00
claude
319b6b560e Fixed a small error in the comments, probably a copy/paste error. 2014-06-05 19:51:50 +00:00
henri
a00aa0a460 New nsock regression test: TestConnectFailure. 
Trigger a ENETUNREACH error on connect() and check if properly reported.

As of now the test fails, the error isn't delivered.
 2014-06-05 19:44:00 +00:00
dmiller
51279d6b01 Fix compilation on Mac OS X (and probably other *BSD) 
http://seclists.org/nmap-dev/2014/q2/404

Introduced in r32873, which failed to include signal.h for sigaction and
friends. Doesn't break Linux because sys/wait.h is included. POSIX
(http://pubs.opengroup.org/onlinepubs/007904975/basedefs/sys/wait.h.html)
says "Inclusion of the <sys/wait.h> header *may* also make visible all
symbols from <signal.h> and <sys/resource.h>." (emphasis mine.)
 2014-06-05 02:35:06 +00:00
jay
381bf2fd23 Correct a bug in the code for NmapOutputViewer.go_to_host that was put in revision 32936. 
The following steps caused the bug with the r32936 code:
    1. Start a scan (say Quick Scan for simplicity) for a certain target (say A)
    2. Wait for scan to complete
    3. Start a scan for a different target (say B).
    4. Wait for scan to complete
    5. Click on host A in the Hosts list on the left (while scan B is still visible on the right)
    6. BOOM!
 2014-06-04 11:41:29 +00:00
dmiller
f51de3bc0e Make NmapOutputViewer.go_to_host more efficient 
Instead of loading the entire output into a new string with
gtk.TextBuffer.get_text, we use the gtk.TextIter.forward_search method.
This works because we don't need to use regular expressions to find a
static string.
 2014-06-03 17:22:20 +00:00
d33tah
b7aca7a2d1 Mark nsock/tests/Makefile as ignored. 2014-06-01 21:00:00 +00:00
jay
b6a994ea40 Correct the Target MAC Address in Nmap's ARP discovery to conform to what IP stacks in currently popular operating systems use. 2014-05-31 11:03:44 +00:00
jay
b0303ac883 Add randomizer to configure script so that a random ASCII art from docs/leet-nmap-ascii-art*.txt is printed 2014-05-31 10:34:11 +00:00