PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-08 06:26:33 +00:00
Code Issues Projects Releases Wiki Activity
7,258 Commits 2 Branches 0 Tags
baab50f5a6c7ba1472991cbcd3d514b665573b1f
Commit Graph

908 Commits

Author SHA1 Message Date
perdo
6e5b999c99 Add parts of LuaFileSystem to NSE (support for mkdir, rmdir, link). 2012-07-17 18:07:28 +00:00
kroosec
65a8490539 Small formatting change int creds.lua to adapt output when no state is provided. 2012-07-14 17:29:00 +00:00
kroosec
aac6c1d03a Added OSPF support to broadcast-listener. 2012-07-13 15:02:09 +00:00
kroosec
71bfe5c700 Added ospf library that was written by Patrik and added documentation and some bug fixes to it. 2012-07-13 14:55:34 +00:00
aca
f083222ea9 Ooops. Forgot the returns 2012-07-10 21:18:23 +00:00
aca
7161193756 Added a patch by Patrick. A cleaner way to deal with varargs. 2012-07-10 20:58:44 +00:00
aca
c6ed7023c4 Brute and unpwdb lib improvements that allow more flexible iterator specifications. Merge from my dev branch. 2012-07-10 16:35:48 +00:00
patrik
9236196d42 o [NSE] Added ms-sql-dac script which queries the Microsoft SQL Browser service 
for the DAC (Dedicated Admin Connection) port. [Patrik Karlsson]
 2012-07-10 09:50:51 +00:00
tomsellers
b82c819afb Update to add additional blacklist entries the httpspider library. The goal is to avoid downloading and processing certain additional video, audio and binary formats. 
This should speed up crawling certain sites.  In the case of http-email-harvest it should reduce some of the false positives generated by running the RegEx against binary data. The only script that this appears likely to have affected the results of would have been http-sitemap-generator and that script specifically disables the blacklist.
 2012-07-10 00:23:02 +00:00
batrick
4ef2bb978a add appropriate comment 2012-07-09 17:06:04 +00:00
perdo
614077f122 Functions from http library that make requests now always return a table. 2012-07-09 10:18:29 +00:00
paulino
469e6ca5ca Fixes crash when using identify_404() that happened when the status response changes in the second or third request and the return value is the string "<unknown>". 
Previously, the library only checked for nil. Updated it to check the type of the response value and change it to -1 if its not a number to fix crash when passing a string to %d.
 2012-07-04 20:21:08 +00:00
perdo
7443db6f37 Hosts that differ only on the 'www' prefix are now treated as being equal. Also added some documentation for httpspider.useheadfornonwebfiles. 2012-07-03 21:48:26 +00:00
fyodor
288a4dc4ad suggest http.max-cache-size argument for consistency rather than http-max-cache-size (both work) 2012-07-03 19:48:23 +00:00
fyodor
e97449e062 define IPP 2012-07-02 08:32:51 +00:00
fyodor
6133b64d6c Add a short description of Versant so users know what it is 2012-07-01 23:29:58 +00:00
fyodor
ff73f20356 Add a bit more information about what the STUN protocol is 2012-07-01 23:25:26 +00:00
perdo
33c3838c45 Fixed a missing require in httpspider. 2012-07-01 09:45:14 +00:00
perdo
3b8c88aac4 Added a list of common sql errors. 2012-06-30 12:28:15 +00:00
kroosec
2dffec733e Allowed support of SIP over TCP and made adequate changes to sip.lua 2012-06-28 08:47:07 +00:00
kroosec
0bdff46418 Added Timeout sip response code (408). 2012-06-26 09:26:01 +00:00
kroosec
cb38bebdce Added busy and decline response status code. 2012-06-26 00:35:23 +00:00
perdo
f7a02d8d19 Added a list of webpage file formats. 2012-06-25 17:56:21 +00:00
perdo
2730adc516 Modified the spidering library to allow to use a HEAD rather then GET request for files with certain extensions. 2012-06-25 17:54:38 +00:00
kroosec
a6fe7c75aa Fixed documentation and return values for options sip request. 2012-06-25 00:55:52 +00:00
kroosec
c0adb90e28 getHeader is now case insensitive. 2012-06-23 17:54:31 +00:00
kroosec
348cfc9d25 Added NOTFOUND response status code. Added default user value 'user'. 2012-06-23 12:35:54 +00:00
aca
ba5a79acdc Added few aditional credentials to http-default-accounts fingerprints 2012-06-22 16:06:05 +00:00
kroosec
98a68b7407 Added default values for Expires, Call-ID, Allow and Content-Length headers in SIP requests and removed redundant code. 2012-06-22 12:17:55 +00:00
kroosec
b940d201d4 Added http-proxy to shortport likely http services. 2012-06-21 01:32:22 +00:00
david
360ba052e9 AUTH_UNIX support for rpc.lua. 
http://seclists.org/nmap-dev/2012/q2/54

This patch is from Daniel Miller. He writes:

I've just finished enhancing the nfs-ls, nfs-statfs, and nfs-showmount
scripts so that they can run based on version detection information,
for cases where the portmapper is firewalled. For nfs-ls and
nfs-statfs, this required making a hostrule to check that both a
mountd service and a nfs service were detected. In the process, I
ended up adding the AUTH_UNIX flavor to rpc.lua, since the RFC states
that AUTH_NULL can only be used for the NULL procedure (and my Linux
nfs-kernel-server was enforcing that).

Other minor changes:

* If running privileged, attempt to bind to a reserved port. Many NFS
servers refuse to talk to source ports >1024, as a "security measure"
* handle an odd case in nfs-ls where READDIRPLUS does not return file
attributes. Chose to use all ?'s, but in the future maybe a direct
GETATTR call?
* remove reference to nfs.dirlist argument from nfs-ls doc, since it is unused
 2012-06-20 02:12:58 +00:00
patrik
c80a28f5f2 Add netbios name lookup caching code in order to avoid multiple lookups for 
the same host.ip.
 2012-06-15 21:26:26 +00:00
patrik
bb359adaa1 Played a round of nse_check_globals and fixed a bunch of reported problems. 2012-06-15 19:32:36 +00:00
patrik
38b26d0ccc fixed a bug in the pop3-capabilities script that would fail parsing the 
response from some servers.
 2012-06-15 18:32:40 +00:00
kroosec
f73e6665a1 Renamed Packet:ip6_set_len into Packet:ip6_set_plen for consistency. 2012-06-15 16:09:16 +00:00
kroosec
6f29a6a1d4 Fixed a bug in packet.lua library that caused tcp_data_length to have an incorrect size in IPv6 packets due to IPv4 packet length and IPv6 payload length fields being used the same way to calculate tcp_data_length. 2012-06-15 16:08:00 +00:00
kroosec
08e2f98ebe Added Packet:ip6_set_len(plen) function to set IPv6 payload length field. 2012-06-15 15:13:20 +00:00
patrik
cfdf67f8c7 Applied patch from Dan Miller that adds new suffixes and cleans up the 
blacklisting code of the httpspider; http://seclists.org/nmap-dev/2012/q2/737
 2012-06-15 10:17:09 +00:00
patrik
709fce67b1 Applied patches from Dan Miller to fix bugs in http and sslcert libraries; 
http://seclists.org/nmap-dev/2012/q2/696
 2012-06-15 10:07:32 +00:00
patrik
e6a42c9291 fix to get smb-enum-shares working on Windows 2008 and Windows 7 2012-06-13 20:35:50 +00:00
kroosec
2710e91ece ssl-fingerprints: Updated to use littleblackbox v0.1.3 database. 2012-06-13 01:02:54 +00:00
patrik
b96ffc0e14 fixed a global variable in http.lua 2012-06-11 21:02:41 +00:00
patrik
44b46bb148 Fixed global declarations in smb.lua 2012-06-11 17:40:21 +00:00
perdo
106c529dd6 While extracting forms from websites, field names are no longer converted to lowercase (the error was reported by Paulino). 2012-06-11 09:41:58 +00:00
perdo
54e73d555a Added a function that generates random strings to stdnse.lua. 2012-06-10 23:03:04 +00:00
perdo
8a049498d3 Added html forms 'parsing' routines to http.lua 2012-06-10 23:01:29 +00:00
patrik
71e26189f6 o [NSE] More Windows 7 and Windows 2008 fixes for the smb library and smb-ls 
scripts. [Patrik Karlsson]
 2012-06-10 22:40:02 +00:00
aca
78c48319cf Merged dns-nsec3-enum to trunk 2012-06-09 18:44:46 +00:00
patrik
bc0defc8ff o [NSE] Added SPNEGO authentication supporting Windows 7 and Windows 2008 to 
the smb library. [Patrik Karlsson]
 2012-06-09 12:17:01 +00:00
patrik
55572542ef Fix for bug in cookie parsing code reported by Ron Bowes; 
http.lua:757: attempt to perform arithmetic on local 'pos' (a nil value)
 2012-06-07 16:06:58 +00:00