PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-20 22:49:01 +00:00
Code Issues Projects Releases Wiki Activity
9,911 Commits 2 Branches 0 Tags
ba873c28c04ca32c53b050eaebd79a5303e4417c
Commit Graph

9911 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
fyodor
818522f6c2 add a task to review a static analysis report that was sent to us 2014-05-30 20:20:08 +00:00
dmiller
1abaadbf87 Note some completed or reassigned tasks 2014-05-30 12:53:45 +00:00
patrik
0b0109d4af commit 7dae4affc23f9fd70e916bc461e45eafe4bcf99a 
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Thu May 29 21:33:18 2014 -0400

    fix to detect non ASA devices and unsupported versions
 2014-05-30 01:46:59 +00:00
batrick
c6fc780a29 remove extraneous arguments 2014-05-29 13:30:21 +00:00
devin
5e6c9d5f78 NSE enhanced output patch 2014-05-29 03:22:59 +00:00
dmiller
415e2671ab New NSE script for SCADA/ICS, bacnet-info 2014-05-28 13:54:05 +00:00
devin
53ca0c01dd Added checks to prevent scripts from indexing a nill value when 
scanning localhost.
 2014-05-28 02:29:31 +00:00
patrik
c950dcb154 Squashed commit of the following: 
commit a78b6142449b71ccd1cd7061b5363f6882b2e00b
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:19:22 2014 -0400

    fix indentation

commit 5e61eba30f98343fb172687bd377acae6cb9e242
Merge: d446fa7 9696dd5
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:50 2014 -0400

    Merge branch 'master' into anyconnect

commit d446fa76181d97287604b48719dd3f714987b775
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:09 2014 -0400

    Update CHANGELOG

commit 1590b8a8598bfd06c767c31312dc56c8e306c556
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:13:27 2014 -0400

    update script.db

commit 93eb927e21d3e3702da36668628b70c42f14f0db
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:09:51 2014 -0400

    update anyconnect library to better capture version
    add missing libraries http-cisco-anyconnect.nse
    add new scripts to detect vulnerabilities cve2014-2126 through 2129

commit 92fecad07d340e60abbe502a4541d6e4f71af224
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sat May 24 09:09:14 2014 -0400

    initial commit
 2014-05-26 01:28:38 +00:00
jay
81b5ef8e99 Changed svn:ignore to also ignore nsock/tests/Makefile 2014-05-25 10:59:11 +00:00
fyodor
44dce2369a some new tasks, and mark others done 2014-05-23 19:03:38 +00:00
dmiller
b354fa218c Consolidate some tasks for Jay 2014-05-23 17:58:44 +00:00
dmiller
e90036697c Note a completed task (rpc-grind.nse) 2014-05-23 17:58:43 +00:00
jay
187c6a681a Fixed indentation 2014-05-23 06:16:49 +00:00
david
5e800edbaa Little bit of OS integration. 2014-05-22 22:09:15 +00:00
dmiller
ed22166b3f Add enip-info NSE script for EtherNet/IP 
A contribution from the folks at Digital Bond
(http://www.digitalbond.com/), part of their Redpoint Project
(https://github.com/digitalbond/Redpoint/).
 2014-05-22 18:25:09 +00:00
dmiller
16cdf10790 Change EtherNet/IP-2 service name to IANA standard EtherNet-IP-2 2014-05-22 18:25:07 +00:00
jay
742b267c67 When Ncat is compiled without OpenSSL and if --ssl argument(s) are given, then show error message that OpenSSL was not compiled in. 2014-05-22 10:22:37 +00:00
fyodor
cd3869baed Note some tasks that Sriharsha is going to be working on 2014-05-22 05:40:47 +00:00
dmiller
36425f55a6 Fix make ndiff_check spurious failure 
The code involving imp is equivalent to "from ndiff import *", and ndiff
imports StringIO.StringIO as StringIO, which meant that while ndifftest
intended the name to be the module, it was really the class. Just moved
the import later to be sure the name was the one we intend.
 2014-05-22 02:25:47 +00:00
henri
e4d9793d92 Expose external nsock types as pointers to the internal structures instead of void pointers. 2014-05-21 19:59:46 +00:00
henri
d13dab54c3 Replaced internal opaque types by structs. 2014-05-21 19:59:42 +00:00
henri
687d153378 Divide code cleanly between ssl and non-ssl versions 2014-05-21 19:59:29 +00:00
fyodor
73edd44d3f Add a task 2014-05-21 19:50:41 +00:00
dmiller
ba5f207d94 Fix NSEdoc generation problems due to block ordering 
Reported here: http://seclists.org/nmap-dev/2014/q2/258

Complicated parsing issue, but short version is this: The NSEdoc for
scripts must not be followed by a local declaration, or it will not be
accepted. Easiest way is to be sure the block with @usage, @output,
@args, @xmloutput, etc. comes right before the author line.
 2014-05-21 19:06:50 +00:00
jay
f2e162d224 Fixed a bug which caused Nmap to be unable to have any runtime interaction when called from sudo or from a shell script 2014-05-21 17:01:00 +00:00
dmiller
974b4430e2 Pass dates directly to format_timestamp, avoid timestamp overflow 
Should fix: http://seclists.org/nmap-dev/2014/q2/184
 2014-05-21 15:04:13 +00:00
dmiller
125d84fd67 Allow stdnse.format_timestamp to take a Lua date table 
This will allow formatting of timestamps beyond 2036, which currently
are limited by the wrapping of the 32-bit Unix timestamp.
 2014-05-21 15:04:12 +00:00
fyodor
8b88b60c49 Add a few more tasks 2014-05-21 07:08:55 +00:00
dmiller
2f23d996bd Prevent PyXML from importing, causing crashes 
http://seclists.org/nmap-dev/2014/q2/318

Essentially, we import the xml name, then override its search path,
stripping out the _xmlplus paths that PyXML uses. This leaves only the
Python 2 standard library path, which is what Zenmap was written for.
 2014-05-21 03:53:58 +00:00
robert
3f73a22db0 Added a few NSE scripts to OLD_SCRIPT_NAMES that have been removed/renamed over the last year or so. 2014-05-19 20:06:33 +00:00
sophron
efb73576e1 [NSE] A negative value should disable the maxpage limit according to NSEDoc. 2014-05-13 10:14:39 +00:00
fyodor
97a7470fc2 Add an infrastructure task 2014-05-13 02:34:00 +00:00
sophron
2f30c8f9db [NSE] Corrected file name for framework fingerprints. 2014-05-11 11:35:54 +00:00
david
f146bdc562 Add ENETUNREACH to the list of known error codes in service_scan. 
Nathan Stocks reported the crash:
Unexpected error in NSE_TYPE_READ callback.  Error code: 101 (Network is unreachable)
It was traced to a middlebox sending admin-prohibited messages, which
were surfacing in the socket API as ENETUNREACH.

Compare to r17488, which added EPROTO.
 2014-05-05 23:29:39 +00:00
robert
7a46025c86 Updated nmap-service-probes as I was getting an error (not entirely sure why). 2014-05-04 16:25:52 +00:00
robert
3beb66bfaa Updated script.db to include new and renamed scripts. 2014-05-04 15:49:21 +00:00
robert
02e00968f6 Added Paul Amar's NSE script that exploits a vulnerability in Netgear WNR1000v3 allowing credentials to be obtained. Note, it doesn't currently add the credentials to the creds database. 2014-05-04 15:43:30 +00:00
robert
d6ebcf74ea Added NetMotion Mobility VPN UDP probe submitted by Ben Campbell. 2014-05-04 15:20:45 +00:00
robert
926f3f7375 Tweaked the disclosure date in http-vuln-cve2012-1823 for consistency with other scripts that make use of the vulnerability library. 2014-05-04 15:13:57 +00:00
robert
32930ef6e6 Renamed the Zimbra LFI script to use the assigned CVE (and updated example output/usage). 2014-05-04 15:11:23 +00:00
robert
17ef614c49 Added Paul Amar's Webmin File Disclosure NSE script (CVE-2006-3392). 2014-05-04 15:00:06 +00:00
sophron
a64a785d79 [NSE] http-passwd should also send the payloads without appending NULL bytes. There are cases, (for example in PHP => 5.3.4) that include functions do not accept paths with NULL in them, hence all of the script's payloads would fail even if the app was vulnerable. 2014-05-02 12:49:40 +00:00
d33tah
eab18b4522 Get rid of stringisprintable() function - this wasn't used anywhere in the code, yet it was linked into the executable. 2014-04-29 10:56:28 +00:00
tomsellers
4e572fadb2 Change http-default-accounts.nse from safe to intrusive as it attempts to login to the target. 2014-04-27 12:33:10 +00:00
patrik
b440d9c064 fix redirect bug in head request where redirects would not be honored 2014-04-26 13:34:48 +00:00
dmiller
b09926a241 Fix crash in Zenmap DiffViewer 
http://seclists.org/nmap-dev/2014/q2/185
 2014-04-23 12:10:49 +00:00
fyodor
91645f1aee Change a couple files to unix line endings 2014-04-23 09:37:37 +00:00
fyodor
6ebff25d46 add another little issue 2014-04-22 07:41:02 +00:00
fyodor
afca0d3e58 Just add a little issue discussed on the mailing list 2014-04-22 07:35:50 +00:00
jah
c4fc2529a8 Update the way queries to ARIN are formed: from "+ <IP>" to "n + <IP>". 
Update CHANGELOG with recent improvements to whois-ip.nse.
 2014-04-21 14:20:36 +00:00