on the following versions (the last one is from SVN):
55554/tcp open metasploit Metasploit Framework msfd 3.0-beta-dev
55554/tcp open metasploit Metasploit Framework msfd 3.0
55554/tcp open metasploit Metasploit Framework msfd 3.1-release
55554/tcp open metasploit Metasploit Framework msfd 3.2-release
for remaining services on campus has been exceptionally poor.
* Added LANDesk Management Suite Targeted Multicast Service
* Changed Microsoft-HTTPAPI (SSDP/UPnP) match to be more generic to
better match the errors it returns
* Added OpenVMS 8.3 Alpha telnetd
* Changed vmware-auth matches to slightly generalize them so they catch
more auth settings
* Changed Snap Appliance webadmin to catch cases where a non-401
response is given
* Changed a generic Apache match to use non-greedy .* to fix
capturing too much (more work/testing needed to fully fix)
We still have a few hundred services to go on my todo list; I'm still
working on them...
represents a significant portion of our total returned fingerprints.
I especially liked adding the X-ray machine...
Here is the "changelog":
* Added Tolis BRU (Backup and Restore Utility)
* Added HP Digital Sender Service client
* Added Apple iChat Server file transfer proxy
* Added PBS/Maui Roll Rocks Cluster service
* Added CommVault Galaxy data backup
* Added Ad-Aware SE Enterprise
* Added Pharos Notify printing client
* Added Apple Remote Events
* Added Novell Groupwise SSL match so the SSL tunneling works
* Added Novell Groupwise HTTP services (holy crap there are a lot!)
* Changed "Compaq Diagnostis httpd" to correct spelling and removed o/Windows/
* Changed winshell to include i/**BACKDOOR**/
* Added Bruker AXS X-ray controller status (I was tempted to set d// to death-ray :-p)
just the tip of the iceberg so there is lots more to come as I work
through everything.
Here is the list of changes:
* Added XML softmatch (commented out for the time being)
* Added Juniper Junoscript XML interface match
* Changed "ROOT SHELL" match to include i/**BACKDOOR**/
* Added FreeBSD rshd match
* Added IQinVision IQeye3 service matches (telnetd, fingerd, httpd,
logind rtspd)
* Added d/cluster/ as a new device type
* Added Ganglia XML Grid monitor detection
* Added Barracuda Networks Spam Firewall smtpd (default banner only)
* Added Serv-U SSL required banner (error 431)
* Changed Safenet to SafeNet in all locations
* Added SafeNet Sentinel Keys License Monitor httpd
* Changed "vsftpd or WU-FTPD" to a softmatch because much more than just
vsftpd and WU-FTPD match it
* Added Treck Embedded ftpd
* Changed Sony PCS-G70 telnet banner to be more generic so it can match
G50, etc
* Changed SubEthaEdit service to BEEP
* Added Apple Xgrid Controller (BEEP/ANTP protocol)
* Added dCache distribute storage node
* Changed the nessus match lines to anchor to the start of a line and
upped their rarity to cut down on false positives
* Added two matches for Dell OpenManage (one GetRequest, one HELP)
* Added HighPoint RAID Raidman web server
* Added Ruckus Media Player (Ruckus music service client)
