PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-21 06:59:01 +00:00
Code Issues Projects Releases Wiki Activity
5,530 Commits 2 Branches 0 Tags
bb61584d826dc98b51e5c621e580ce50411d3318
Commit Graph

1020 Commits

Author SHA1 Message Date
paulino
f2bbb0f9e8 Adds to "vuln" category 2011-06-27 20:40:19 +00:00
paulino
5effe4c770 New version of http-trace. It addresses issues discussed: 
* http://seclists.org/nmap-dev/2010/q2/295
    * http://seclists.org/nmap-dev/2007/q3/327
    * http://seclists.org/nmap-dev/2007/q4/610

    Features:
* This version will always show you if TRACE is enabled (Current http-trace only shows headers that are different from the original response causing confusion in cases where TRACE is not reported as enabled because the host did not return any additional headers)
    * Supports redirects.
 2011-06-27 20:38:59 +00:00
paulino
4f60960b29 Adds http-majordomo2-dir-traversal to the repository. This script exploits a directory traversal vulnerability existing in Majordomo2 to retrieve remote files. 2011-06-27 20:22:25 +00:00
djalal
a1eb090664 Changed the script argument 'smtp-vuln-cve2010-4344.command' to 
'smtp-vuln-cve2010-4344.cmd' for consistency reasons.
 2011-06-26 19:01:09 +00:00
djalal
49774ecf10 o [NSE] Added smtp-vuln-cve2010-4344 script that will check and exploit 
two vulnerabilities in the Exim SMTP Server:
  o CVE-2010-4344: A heap overflow vulnerability.
  o CVE-2010-4345: A privileges escalation vulnerability.
 2011-06-24 15:37:53 +00:00
patrik
af03ca03a2 Removed prerule from script [Patrik] 2011-06-23 11:28:14 +00:00
patrik
67bac23e97 Added MS error code to error messages returned from the script [Patrik] 2011-06-21 22:52:40 +00:00
david
3b202e4597 Use java-rmi for the the Java RMI service name. Suggested by martin 
Swende.
 2011-06-21 00:03:16 +00:00
henri
a8f9bd8d35 trailing whitespace 2011-06-20 21:09:42 +00:00
henri
b2d1ac7580 Avoid bloating the registry by using variables to transfer information from 
the hostrule to the action function.
 2011-06-20 21:06:14 +00:00
gorjan
21ece8d864 Update script database for the ip-geolocation scripts 2011-06-20 12:56:34 +00:00
gorjan
f832a41301 IP based geolocation using the IPInfoDB web service 2011-06-20 01:45:35 +00:00
gorjan
6fad986e3a IP based geolocation using the Geoplugin web service 2011-06-20 01:44:10 +00:00
gorjan
9920668943 IP based geolocation using the Geobytes web service 2011-06-20 01:43:44 +00:00
gorjan
2e45420bed IP based geolocation using the Quova web service 2011-06-20 01:43:17 +00:00
gorjan
a616334868 IP based geolocation using a Maxmind database 2011-06-20 01:42:21 +00:00
patrik
5558837091 o [NSE] Added two new scripts broadcast-netbios-master-browser and smb-mbenum: 
- broadcast-netbios-master-browser attempts to discover master browsers in
    the broadcast domain
  - smb-mbenum lists servers registered with the master browser
  [Patrik]
 2011-06-19 18:47:19 +00:00
patrik
f4bf440b14 o [NSE] Added credential storage library (creds.lua) and modified the brute 
library and scripts to make use of it. [Patrik]
 2011-06-19 17:18:29 +00:00
patrik
0a3bf95897 o [NSE] Added a MySQL audit script and a rulebase that supports auditing a 
subset of the MySQL CIS 1.0.2 Benchmark. [Patrik]
 2011-06-17 06:12:01 +00:00
patrik
1d7b0c0d98 o [NSE] Added ipv6 support to the wsdd, dnssd and upnp libraries. Applied 
patch from Dan Miller that fixes errors in processing and sorting ipv6
  addresses in scripts using these libraries. [Daniel Miller, Patrik]
 2011-06-16 05:29:42 +00:00
david
010c8200e8 Standardize on the name rmiregistry for port 1099/tcp. 
This is the name used in nmap-services. It affects nmap-service-probes
and rmi-dumpregistry.nse. The inconsistency was noted by Gabriel
Lawrence.
 2011-06-15 19:14:46 +00:00
patrik
cf873707cd o [NSE] Added minimal Service Location Protocol (SLP) library and the script 
broadcast-novell-locate that detects servers running eDirectory. [Patrik]
 2011-06-15 06:23:30 +00:00
batrick
dc9a35bc9d New system for silent require errors. Use the new function 
stdnse.silent_require. The Lua require function is back in its usual spot
(_G.require).
 2011-06-13 23:38:35 +00:00
djalal
caadf952e3 o [NSE] Updated the SMTP scripts to use the new SMTP Lua library. 2011-06-13 13:19:26 +00:00
patrik
5f00edd310 Re-worked the http-form-brute script, the changes include: 
- autodetecting form fields is now a bit more robust
- only the password field is mandatory
- HTTP re-directs are followed in case they're detected
- the detection of incorrect login attempts has been changed and supports
  two new arguments (onsucces, onfailure)
[Patrik]
 2011-06-12 18:52:51 +00:00
fyodor
9f04bd554b regen the script.db (there was no entry for mac-geolocation) 2011-06-08 06:06:07 +00:00
colin
76056816a1 Bugfix for favicon 2011-06-03 19:59:08 +00:00
henri
c04e5a4eb1 Minor typo fixes 2011-06-03 09:24:51 +00:00
gorjan
c53b07e451 snmp-interfaces patch for interaction with mac-geolocation through nmap.registry[host.ip][mac-geolocation] 2011-05-31 00:13:12 +00:00
gorjan
50cf271bba Cleaning up some residue Skyhook code. 2011-05-30 14:35:43 +00:00
david
f5f63ff734 Fix <code> tags in mac-geolocation.nse. 2011-05-29 21:56:08 +00:00
paulino
6d1aa1a449 Fixes false positive line when CakePHP is not present. 2011-05-29 17:25:12 +00:00
gorjan
0a72a5f5ac Adding the mac-geolocation script. Geolocation info lookup based on a WiFi's BSSID (MAC) address. 2011-05-29 09:51:43 +00:00
gorjan
0cd6ee2010 Separator "," in backorifice-brute.nse instead of ";" 2011-05-28 17:55:44 +00:00
patrik
873cf47611 o [NSE] Added the Netware Core Protocol (NCP) library and the scripts 
ncp-serverinfo and ncp-enum-users. [Patrik]
 2011-05-28 09:01:31 +00:00
patrik
8b78ccf469 o [NSE] Added ldap-novell-getpass, a script that provides support for 
retrieving Universal Passwords in plain-text from Novell eDirectory.
[Patrik]
 2011-05-28 08:48:26 +00:00
gorjan
ba533d84a7 NSEDoc update for backorifice-brute to present variables as monospaced 2011-05-24 15:24:29 +00:00
batrick
5a68e5f04a Set the math.randomseed value in nse_main.lua on behalf of scripts. 
Since Lua uses the C rand and srand functions, which have a static
seed for the entire program, we don't want scripts doing this themselves.
 2011-05-23 21:43:46 +00:00
paulino
1e0e438b09 Added http-cakephp-version.nse - NSE script for fingerprinting versions of CakePHP applications. 2011-05-20 09:25:22 +00:00
gorjan
1d13bf169b Remove the Summary comment from NSEDoc and Scripts Page 2011-05-19 19:28:30 +00:00
djalal
be338214a0 Update the script name 2011-05-19 18:32:20 +00:00
djalal
edda382a77 Add the smtp-vuln-cve2011-1720 script to the script.db file. 2011-05-19 18:31:34 +00:00
djalal
a3ff996c54 Rename the smtp-check-vulns script to smtp-vuln-cve2011-1720. 2011-05-19 18:19:56 +00:00
fyodor
20e03044bf Reran nmap --script-updatedb to catch new categories of smtp-check-vulns script 2011-05-17 17:43:35 +00:00
djalal
17414d4cb4 Remove the 'dos' and 'exploit' categories. 2011-05-17 16:27:36 +00:00
gorjan
5ac0a954f0 NSEDoc fix of snmp-brute. 2011-05-16 18:48:34 +00:00
henri
0706dc1b98 Removed trailing semicolons to keep style consistent 2011-05-16 08:44:29 +00:00
djalal
c1ba251135 o [NSE] Added smtp-check-vulns, which currently checks for the Postfix 
SMTP server Cyrus SASL authentication memory corruption (CVE-2011-1720).
 2011-05-15 15:57:10 +00:00
djalal
31310f43bc Add the backorifice-brute script entry to the script.db file 2011-05-14 13:12:18 +00:00
gorjan
b98ef466b3 Adding the backorifice-brute script 2011-05-12 22:40:54 +00:00